Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/9A85BB501D8211E2BC6417D708B02CD2/583C86380BB211ED8F05E427C4F9AE02.roa
File: 583C86380BB211ED8F05E427C4F9AE02.roa (raw, json)
Hash identifier: 7hb8peyViLHs7pUvHbdg5I6QacKj8JDlnsxAKAU1Zc0=
Subject key identifier: 95:F0:64:0E:F7:A9:A3:C5:48:5E:90:F9:04:A1:80:EA:29:51:39:29
Certificate issuer: /CN=A9149F3E/serialNumber=BF0E6F4EE0E17DDE8C4A24BF897D19B87AA5759F
Certificate serial: 341E
Authority key identifier: BF:0E:6F:4E:E0:E1:7D:DE:8C:4A:24:BF:89:7D:19:B8:7A:A5:75:9F
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vw5vTuDhfd6MSiS_iX0ZuHqldZ8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/9A85BB501D8211E2BC6417D708B02CD2/583C86380BB211ED8F05E427C4F9AE02.roa
Signing time: Fri 16 Aug 2024 14:40:17 +0000
ROA not before: Fri 16 Aug 2024 14:40:17 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 396982
IP address blocks: 165.213.55.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13342 (0x341e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9149F3E
Validity
Not Before: Aug 16 14:40:17 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=66bf64d0-8046
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:e4:4a:87:5d:95:e0:ad:bb:ad:44:96:18:2b:
f0:ed:6a:c2:69:30:8f:8a:3c:82:19:26:51:fd:2f:
58:1e:96:a3:5e:79:17:7c:df:a7:7a:18:df:2a:2b:
bd:7c:a2:9a:20:61:fd:2b:ce:0b:a7:cd:aa:85:55:
c2:e6:f9:e4:8b:07:68:bf:5c:e1:b2:64:6e:c3:c2:
55:c2:b2:35:4c:ef:9f:57:d9:cd:4b:77:de:70:4e:
cd:05:5a:1d:9e:4d:86:11:14:3b:2f:fd:9b:85:86:
1f:d1:2d:bc:d4:47:ec:0b:10:a0:f4:8e:1e:37:a3:
13:e6:d3:ca:e1:69:66:ed:90:13:76:55:19:0b:59:
10:05:39:3e:b5:b8:30:94:88:dc:6c:c1:26:57:26:
e4:52:d4:8e:07:65:1c:bf:97:64:54:01:a6:13:97:
9e:b4:5b:dd:04:b0:2d:a1:45:71:69:1a:b3:2e:0d:
cc:07:6f:51:4f:bb:10:a4:3b:b1:12:1b:1d:42:b1:
88:c6:a4:6f:03:3a:25:59:3c:6c:57:4c:46:3b:24:
ac:71:86:20:e7:bb:05:ec:1c:4f:2f:06:42:fb:64:
75:36:24:30:ae:7d:14:d4:36:e8:e0:e6:64:17:90:
e6:b7:f5:04:2f:23:bd:b8:70:76:63:1f:19:37:01:
0c:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:F0:64:0E:F7:A9:A3:C5:48:5E:90:F9:04:A1:80:EA:29:51:39:29
X509v3 Authority Key Identifier:
keyid:BF:0E:6F:4E:E0:E1:7D:DE:8C:4A:24:BF:89:7D:19:B8:7A:A5:75:9F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9149F3E/9A85BB501D8211E2BC6417D708B02CD2/vw5vTuDhfd6MSiS_iX0ZuHqldZ8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vw5vTuDhfd6MSiS_iX0ZuHqldZ8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/9A85BB501D8211E2BC6417D708B02CD2/583C86380BB211ED8F05E427C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.213.55.0/24
Signature Algorithm: sha256WithRSAEncryption
18:ff:b9:ae:5b:d7:bb:69:35:9f:30:c7:92:8a:93:2e:e1:e7:
b2:f8:73:28:1e:da:0f:b0:9e:05:95:b1:9f:b4:12:52:df:fc:
88:7f:de:00:95:42:2c:0c:8c:35:2f:cf:82:73:f1:52:47:45:
25:f1:0a:ce:eb:c4:a3:52:45:9f:0d:8b:9d:ae:57:7e:56:4d:
d3:7a:8a:d5:ed:7b:5d:66:96:5d:50:30:d4:48:51:e6:a2:b3:
b3:e4:d7:61:27:f5:46:df:c3:6c:fc:88:48:e9:4a:db:a7:c1:
cc:d4:ed:29:bc:b8:11:b2:6e:17:2c:8e:aa:67:d5:7d:b9:c9:
ef:d5:26:60:8f:4c:9c:c9:ca:3a:c1:19:bd:d9:46:fc:e0:75:
a0:c8:25:f1:71:58:c4:93:dd:f4:00:b4:f2:58:4f:7b:c4:a7:
7b:08:f7:c5:04:20:a8:ca:53:82:67:d1:10:59:e8:8b:b2:ab:
b1:08:30:87:69:39:aa:bf:48:f8:98:a2:5b:f9:6c:b9:04:f3:
39:a3:93:29:ec:08:8b:a6:46:b5:97:b9:39:f1:ca:e2:d5:c4:
eb:33:a2:8c:38:ab:f5:f9:43:ce:3a:f3:27:48:c9:2b:68:d9:
57:7a:23:fc:f2:1a:b3:32:9c:ff:ba:11:49:de:b0:ca:51:e6:
cb:5d:5c:47
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICNB4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NDlGM0UxMTAvBgNVBAUTKEJGMEU2RjRFRTBFMTdEREU4QzRBMjRCRjg5N0QxOUI4
N0FBNTc1OUYwHhcNMjQwODE2MTQ0MDE3WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NmJmNjRkMC04MDQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAx+RKh12V4K27rUSWGCvw7WrCaTCPijyCGSZR/S9YHpajXnkXfN+nehjfKiu9
fKKaIGH9K84Lp82qhVXC5vnkiwdov1zhsmRuw8JVwrI1TO+fV9nNS3fecE7NBVod
nk2GERQ7L/2bhYYf0S281EfsCxCg9I4eN6MT5tPK4Wlm7ZATdlUZC1kQBTk+tbgw
lIjcbMEmVybkUtSOB2Ucv5dkVAGmE5eetFvdBLAtoUVxaRqzLg3MB29RT7sQpDux
EhsdQrGIxqRvAzolWTxsV0xGOySscYYg57sF7BxPLwZC+2R1NiQwrn0U1Dbo4OZk
F5Dmt/UELyO9uHB2Yx8ZNwEM9wIDAQABo4IClTCCApEwHQYDVR0OBBYEFJXwZA73
qaPFSF6Q+QShgOopUTkpMB8GA1UdIwQYMBaAFL8Ob07g4X3ejEokv4l9Gbh6pXWf
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS85QTg1QkI1MDFE
ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi92dzV2VHVEaGZkNk1TaVNfaVgwWnVIcWxk
WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL3Z3NXZUdURoZmQ2TVNpU19pWDBadUhxbGRaOC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NDlGM0UvOUE4NUJCNTAxRDgyMTFFMkJDNjQxN0Q3MDhCMDJDRDIvNTgzQzg2Mzgw
QkIyMTFFRDhGMDVFNDI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBACl1TcwDQYJKoZIhvcNAQELBQADggEBABj/ua5b17tpNZ8w
x5KKky7h57L4cyge2g+wngWVsZ+0ElLf/Ih/3gCVQiwMjDUvz4Jz8VJHRSXxCs7r
xKNSRZ8Ni52uV35WTdN6itXte11mll1QMNRIUeais7Pk12En9Ubfw2z8iEjpStun
wczU7Sm8uBGybhcsjqpn1X25ye/VJmCPTJzJyjrBGb3ZRvzgdaDIJfFxWMST3fQA
tPJYT3vEp3sI98UEIKjKU4Jn0RBZ6Iuyq7EIMIdpOaq/SPiYolv5bLkE8zmjkyns
CIumRrWXuTnxyuLVxOszoow4q/X5Q8468ydIySto2Vd6I/zyGrMynP+6EUnesMpR
5stdXEc=
-----END CERTIFICATE-----
Generated at Fri Apr 4 21:53:31 2025 by rpki-client