Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/9EE451A08ABE11EFA0AEF447C4F9AE02.roa
File: 9EE451A08ABE11EFA0AEF447C4F9AE02.roa (raw, json)
Hash identifier: d2+7r39Eg9rjdbItDMc03X9V+mH89DguSdjx3CwlpWg=
Subject key identifier: 0B:CA:8F:DB:C3:85:58:F0:07:23:20:C5:D9:96:DD:60:6A:1C:BB:8F
Certificate issuer: /CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013
Certificate serial: 0673
Authority key identifier: ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/9EE451A08ABE11EFA0AEF447C4F9AE02.roa
Signing time: Tue 15 Oct 2024 06:27:58 +0000
ROA not before: Tue 15 Oct 2024 06:27:58 +0000
ROA not after: Mon 01 Dec 2025 00:00:00 +0000
asID: 14618
IP address blocks: 103.240.198.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1651 (0x673)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9139322
Validity
Not Before: Oct 15 06:27:58 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=670e0b6e-021f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:0f:f0:05:89:25:bd:99:8c:73:82:bd:1c:38:
6d:7c:f8:da:59:e8:b4:c5:cd:ae:e9:0a:04:2a:13:
d3:92:b3:ca:bd:b6:6a:cc:9f:01:89:df:88:d7:16:
f0:b1:ee:3c:90:24:6a:a8:d0:7e:cf:77:1e:b1:ee:
f2:45:05:1b:c0:38:cc:05:9f:63:ea:ed:d2:05:11:
75:4c:6a:7c:79:29:e5:ab:1e:2c:92:6c:f7:72:5e:
35:3a:07:16:8a:94:e5:79:59:3c:1d:71:a5:e6:51:
1b:c2:dd:37:e6:0b:41:d4:e4:52:75:6e:d0:52:9c:
8f:a7:ad:e8:fb:0d:ac:99:dc:66:17:1d:d1:81:f8:
47:59:db:6d:ee:db:6f:45:b0:1f:a7:57:0f:52:c7:
7b:a0:c7:36:c8:00:34:73:e1:16:52:ca:89:9e:72:
90:bf:39:29:38:a9:f4:a8:b1:48:f8:4a:5c:d5:f7:
e8:3d:86:72:7b:40:b9:bb:b3:d3:d3:d6:ea:b8:96:
1d:ef:b8:ff:92:30:a8:49:ef:ff:3b:12:e7:a9:c3:
18:3c:fe:cd:40:3c:ca:e5:6e:0d:76:1b:40:a4:9e:
41:c6:59:e3:5e:fe:04:79:fa:d1:bd:a5:a4:aa:1a:
6c:00:34:c0:72:b5:ff:02:2b:69:9d:8f:95:43:7f:
59:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:CA:8F:DB:C3:85:58:F0:07:23:20:C5:D9:96:DD:60:6A:1C:BB:8F
X509v3 Authority Key Identifier:
keyid:ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/9EE451A08ABE11EFA0AEF447C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.240.198.0/24
Signature Algorithm: sha256WithRSAEncryption
57:15:96:b8:c0:a0:74:34:c0:55:f9:c9:0a:75:1b:4d:a9:5b:
06:9f:c5:da:5f:7c:ed:46:0b:20:fc:5f:15:66:e7:d5:bd:b4:
1c:22:98:a3:bb:0e:a3:4f:fc:44:c3:4f:93:39:ed:ed:79:1b:
64:fd:56:b8:fe:9f:81:ae:8f:ad:0b:24:a8:f4:c2:4c:03:9d:
87:a6:46:07:50:04:29:ae:17:51:7d:2b:53:74:4f:d1:0f:3b:
a6:47:56:c8:77:ca:80:c6:ef:06:e6:6a:d6:43:12:23:66:4a:
ac:a9:00:46:73:5a:c5:d3:01:6a:91:3f:9f:72:b2:97:39:ee:
69:85:65:d6:16:5b:04:dc:a3:84:2a:67:26:81:95:e4:e5:7d:
3c:a1:34:74:70:11:1f:07:6c:b9:7d:8e:a3:8e:29:1f:9e:b2:
fd:9e:5b:9e:2c:32:5c:c2:e6:fd:6d:c3:0e:f4:8e:1e:91:77:
68:f9:38:3b:ce:1b:50:e2:90:cb:60:20:1e:1b:62:23:69:79:
bc:8d:91:02:2d:92:21:83:83:55:74:6b:e7:a7:77:6c:d3:ac:
07:cb:69:69:14:9a:be:d3:c6:d9:ce:d8:7b:88:7b:6c:07:7b:
52:52:02:11:4b:b0:16:c1:8b:4c:f9:57:1b:6f:2d:ad:6e:15:
0f:6f:9b:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 23:56:47 2025 by rpki-client