Route Origin Authorization
$ rpki-client -vvf rpki.sub.apnic.net/repository/A91A61310000/0/34332e3235352e38302e302f32342d3234203d3e20323032363632.roa
File: 34332e3235352e38302e302f32342d3234203d3e20323032363632.roa (raw, json)
Hash identifier: y4HBpOHOB8CUf9/S7tMQfE6OqGcGtre2vFGZjVWXbWY=
Subject key identifier: B7:E3:E3:A0:84:D4:D4:41:54:8A:F7:06:FB:36:E2:7A:00:43:95:B2
Certificate issuer: /CN=A91A61310000/serialNumber=72EC0D8B386D96FBC741C05F3661CB7ADA8EB800
Certificate serial: 50052EDB3D5E1D8AFF478472EFE445CA6BF0009D
Authority key identifier: 72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer
Subject info access: rsync://rpki.sub.apnic.net/repository/A91A61310000/0/34332e3235352e38302e302f32342d3234203d3e20323032363632.roa
Signing time: Thu 11 Jan 2024 06:59:49 +0000
ROA not before: Thu 11 Jan 2024 06:54:49 +0000
ROA not after: Thu 09 Jan 2025 06:59:49 +0000
asID: 202662
IP address blocks: 43.255.80.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:05:2e:db:3d:5e:1d:8a:ff:47:84:72:ef:e4:45:ca:6b:f0:00:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A61310000
Validity
Not Before: Jan 11 06:54:49 2024 GMT
Not After : Jan 9 06:59:49 2025 GMT
Subject: CN=B7E3E3A084D4D441548AF706FB36E27A004395B2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:e3:49:30:d4:7c:4b:18:5b:1d:7d:3a:da:56:
4d:b3:d5:74:77:96:10:31:7b:1c:3b:aa:81:2d:76:
52:60:ca:7e:71:4c:dd:e3:e0:33:b6:41:e6:45:9b:
03:25:3b:31:a9:4f:ed:5a:90:b3:3c:af:7e:79:d1:
ec:b7:ba:45:25:d9:12:7a:7a:87:1e:1f:ae:f4:92:
77:f2:77:b8:22:c3:9d:98:b1:a5:e3:b7:eb:5c:c9:
a6:e6:e1:89:c8:36:7c:b4:a5:d9:af:28:90:9c:a9:
97:b5:38:c9:8d:a3:7b:47:0c:6e:62:16:d7:77:c9:
df:51:25:75:80:92:ea:19:e1:ac:27:59:52:2a:e5:
1a:7c:af:51:43:00:8a:4c:95:4a:5a:0c:d9:0d:41:
e4:30:13:ff:a7:94:89:bb:4a:14:0a:0a:29:7d:99:
a8:23:00:13:64:46:63:b5:00:63:5a:8b:aa:7b:a5:
49:d0:24:b6:03:3b:d6:fc:4a:9f:f2:5c:39:3b:45:
e9:b0:31:a0:1a:79:58:2a:2c:92:cc:c4:58:05:48:
26:d7:d3:8a:6f:b4:5a:2d:3d:81:42:81:0e:6b:30:
f4:89:b9:2e:d1:f4:8b:d5:6f:b3:8d:34:25:f1:3f:
b9:b4:13:72:28:cf:15:1f:bc:85:5d:f3:aa:e0:35:
23:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:E3:E3:A0:84:D4:D4:41:54:8A:F7:06:FB:36:E2:7A:00:43:95:B2
X509v3 Authority Key Identifier:
keyid:72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/34332e3235352e38302e302f32342d3234203d3e20323032363632.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
43.255.80.0/24
Signature Algorithm: sha256WithRSAEncryption
35:87:1f:c0:dc:fe:99:e8:a8:23:8e:e3:cd:7f:3d:1d:25:5a:
04:f6:28:32:db:9b:9c:6d:5a:64:ef:37:40:3d:6e:b3:d5:af:
14:c9:e8:4b:f9:c7:0f:cc:f7:85:95:e9:3f:e8:d9:2d:bb:d1:
20:a5:ab:0b:8c:4e:f5:d7:6d:ec:ae:ba:5b:da:a6:3c:af:bb:
46:60:27:89:ab:cb:21:6c:b9:91:5a:98:21:27:9d:2e:6c:e9:
5e:d5:2a:7f:08:1b:c8:57:da:3a:d0:3a:a1:d1:01:03:6b:60:
1a:94:22:9e:33:be:db:2a:44:76:6d:70:45:b0:a7:1e:26:0a:
8d:2b:45:5b:3f:3d:06:c4:42:f7:b0:40:dd:fd:69:c4:f8:99:
5c:ee:86:67:81:cc:aa:33:a6:47:f1:77:3b:e6:49:23:86:55:
5c:e8:a7:a6:79:87:ec:fe:b2:8c:ea:0e:79:bd:57:de:75:93:
29:57:7e:a2:c1:d2:a8:48:a0:32:60:6f:03:cc:50:de:54:10:
ed:40:97:d3:ba:2c:a7:8d:43:ab:a4:24:66:2a:02:bf:59:6d:
fc:db:72:4c:b5:c6:3d:e8:c0:12:1b:16:a5:ce:5b:c8:aa:c7:
a5:8e:ed:35:c4:14:fa:9c:c9:de:b6:f0:2b:aa:31:b2:c3:a7:
06:fe:4a:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 23:58:42 2025 by rpki-client