Route Origin Authorization
$ rpki-client -vvf rpki.sub.apnic.net/repository/A91A61310000/0/34332e3235352e38332e302f32342d3234203d3e20323030303137.roa
File: 34332e3235352e38332e302f32342d3234203d3e20323030303137.roa (raw, json)
Hash identifier: S8rFfs7IoEg3XYYnsyLOBvR6RACIA3juzHhODPn7ChQ=
Subject key identifier: C3:6F:A6:D2:7C:36:EB:7E:1C:1E:CB:83:38:D5:2D:66:74:33:DF:23
Certificate issuer: /CN=A91A61310000/serialNumber=72EC0D8B386D96FBC741C05F3661CB7ADA8EB800
Certificate serial: 32187648498DE0973F8D14C133C40A6582B217CB
Authority key identifier: 72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer
Subject info access: rsync://rpki.sub.apnic.net/repository/A91A61310000/0/34332e3235352e38332e302f32342d3234203d3e20323030303137.roa
Signing time: Thu 12 Dec 2024 07:28:36 +0000
ROA not before: Thu 12 Dec 2024 07:23:36 +0000
ROA not after: Thu 11 Dec 2025 07:28:36 +0000
asID: 200017
IP address blocks: 43.255.83.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:18:76:48:49:8d:e0:97:3f:8d:14:c1:33:c4:0a:65:82:b2:17:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A61310000
Validity
Not Before: Dec 12 07:23:36 2024 GMT
Not After : Dec 11 07:28:36 2025 GMT
Subject: CN=C36FA6D27C36EB7E1C1ECB8338D52D667433DF23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:89:b8:95:80:0e:5f:ca:e7:dc:0b:da:be:2c:
7d:9b:a5:be:c3:d5:44:ba:c1:b7:50:f3:dc:90:82:
98:ee:c4:10:c7:75:cc:56:6e:a8:e0:12:ba:53:ef:
7e:42:c9:be:bf:2c:c6:46:d7:71:f6:e6:d8:54:f3:
8d:72:13:8c:89:a9:4a:34:42:d3:8f:f9:5a:30:2d:
20:f4:39:99:ed:65:80:f2:0d:ec:74:27:a9:fb:59:
3c:b5:bb:fd:f4:5f:76:c9:cf:b4:e9:60:03:eb:19:
8c:85:a8:e0:ef:52:75:ba:35:af:22:08:2c:56:3d:
6f:97:67:2e:ad:66:0f:6c:23:e0:74:1a:a3:23:f9:
e3:f6:53:41:a8:84:3c:41:0c:9a:23:9a:d8:33:15:
0c:d5:3a:d1:f4:21:aa:7b:38:00:9b:cd:71:35:fb:
ae:b2:1c:24:4b:14:d7:10:f6:94:de:55:34:17:8f:
81:92:35:77:cf:4d:19:74:55:58:b7:c5:d6:e6:e5:
d2:d2:7d:b9:d1:0e:df:75:d7:81:ad:b9:94:5c:0f:
c8:7f:34:de:5d:cb:ee:27:2d:18:60:62:c6:24:4f:
9a:0d:d5:f6:86:84:49:b6:85:e8:42:d2:60:80:87:
e6:48:53:6b:09:78:76:a4:81:6e:eb:ac:63:ae:b2:
d0:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:6F:A6:D2:7C:36:EB:7E:1C:1E:CB:83:38:D5:2D:66:74:33:DF:23
X509v3 Authority Key Identifier:
keyid:72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/34332e3235352e38332e302f32342d3234203d3e20323030303137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
43.255.83.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:9f:d1:4b:f0:dc:bf:06:3f:0e:0c:23:32:0e:0a:94:db:e1:
8e:c6:a5:03:fd:ef:55:c5:30:13:33:16:85:9c:44:fb:7f:8e:
ef:98:94:7f:2f:46:73:fe:da:fa:3f:b8:b4:9f:3d:38:0c:58:
97:d1:c1:4e:8d:8e:27:d8:a0:fa:02:1d:5e:99:f3:8c:90:21:
32:e7:4d:a4:87:ee:2b:c7:8f:2a:5e:ef:a3:5b:be:53:d4:44:
4b:53:fc:bb:a4:97:6a:4a:2e:5c:fd:24:de:e0:c8:f0:23:8a:
6c:e2:21:86:9b:43:53:98:2d:0f:d7:ff:0e:3c:ff:d5:03:2b:
5c:aa:6d:ad:a9:83:b1:0d:56:cb:db:f1:01:f2:23:8c:a2:a6:
cc:76:5a:d9:fb:de:34:45:c2:40:9d:08:65:fd:f2:7b:8c:cd:
8f:ad:ba:20:13:a4:c2:93:cb:d9:fd:03:4f:62:a7:0d:eb:a3:
9b:bc:e7:f1:69:d5:e3:47:91:6a:e2:68:f7:9d:d9:24:7c:f7:
26:31:b3:f8:ec:f7:72:3f:44:09:f8:50:4c:94:29:13:1f:62:
cf:ba:52:51:db:bc:51:15:77:40:64:34:a4:94:ea:91:06:18:
8d:e2:6e:74:f5:19:da:6a:35:c5:13:f5:20:0c:7c:0b:cf:ba:
68:f9:e9:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 00:00:41 2025 by rpki-client