Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/DAE15A7248F911EC9F04C439C4F9AE02.roa
File: DAE15A7248F911EC9F04C439C4F9AE02.roa (raw, json)
Hash identifier: CcS2RgyDh/Mt65cyyvz7PDgLBgmPqkXqjVn09wN+d7I=
Subject key identifier: 79:50:44:FF:A1:FE:B5:19:71:B3:14:94:79:82:43:42:B7:B4:55:AD
Certificate issuer: /CN=A918B5FE/serialNumber=AB905DDC0AFBBD1549F66EFE8117AE15000A5E0F
Certificate serial: 0650
Authority key identifier: AB:90:5D:DC:0A:FB:BD:15:49:F6:6E:FE:81:17:AE:15:00:0A:5E:0F
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/DAE15A7248F911EC9F04C439C4F9AE02.roa
Signing time: Tue 12 Nov 2024 22:01:11 +0000
ROA not before: Tue 12 Nov 2024 22:01:10 +0000
ROA not after: Tue 30 Dec 2025 00:00:00 +0000
asID: 14618
IP address blocks: 204.48.63.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1616 (0x650)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918B5FE
Validity
Not Before: Nov 12 22:01:10 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=6733d026-33b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e8:37:1a:14:88:0d:dc:86:2e:77:d7:f7:21:
30:6f:1c:51:d0:9d:fa:4f:d1:76:57:c3:4e:19:16:
19:f6:2d:4b:03:7e:b7:a0:f3:61:45:1a:e7:1e:69:
d6:83:f9:23:0f:5a:33:6a:89:7e:a4:cd:37:5d:8e:
f9:f2:d5:9a:ee:7f:cb:af:5e:1f:fe:a1:f3:36:9f:
5b:35:6d:c3:e6:59:44:84:b5:28:94:2e:0e:d1:79:
e0:a1:93:bb:be:28:99:55:15:dc:63:71:be:79:df:
98:1a:94:04:27:53:09:97:e8:3e:26:17:70:07:41:
ce:ac:d6:62:17:40:e0:ce:5a:08:99:19:6c:9e:1c:
63:9e:9d:6b:97:16:c8:2f:e2:bd:e1:1e:3f:cf:c2:
0e:a8:ca:d8:20:c4:18:8e:33:f3:ed:c3:fd:a2:4d:
ea:ab:27:85:70:cc:13:c0:5f:59:d6:29:2b:34:ad:
c0:0e:3a:1a:37:fc:a1:10:d3:6b:58:60:5e:72:fb:
64:eb:36:83:dc:27:42:b3:e0:f5:f6:03:c8:00:fa:
a4:48:a8:ea:8f:c0:f0:b3:6b:5f:fe:cd:32:b8:66:
96:94:24:79:c0:65:a5:53:c5:98:08:70:e3:05:0f:
40:c7:e1:4f:eb:7f:6f:b4:a7:a5:6c:7b:4c:e5:84:
67:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:50:44:FF:A1:FE:B5:19:71:B3:14:94:79:82:43:42:B7:B4:55:AD
X509v3 Authority Key Identifier:
keyid:AB:90:5D:DC:0A:FB:BD:15:49:F6:6E:FE:81:17:AE:15:00:0A:5E:0F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/DAE15A7248F911EC9F04C439C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
204.48.63.0/24
Signature Algorithm: sha256WithRSAEncryption
16:c8:95:87:56:6e:79:a1:05:ff:52:d0:b3:3d:eb:b2:fb:29:
34:6b:28:80:07:d7:06:12:71:8c:06:ec:f0:77:de:16:42:3d:
c7:80:39:61:18:b0:46:99:40:31:a7:fc:7f:56:79:0e:40:ea:
d4:66:bf:96:4e:6a:a7:47:54:6a:08:0d:e4:6a:5d:d5:a4:25:
ff:d8:a4:4d:db:46:26:63:b7:c8:3d:19:aa:70:76:ea:56:fa:
d0:38:cb:77:a5:d6:7b:d2:83:f5:e8:6e:ec:ea:02:ef:28:a6:
a5:ca:dd:90:04:9d:65:ed:d3:ad:81:aa:4f:f9:d7:0f:cc:73:
b0:1f:13:b1:53:d7:64:c1:79:5e:e3:e9:26:49:7c:9b:44:6d:
4f:08:de:4b:7f:7a:d8:80:82:bb:4d:fc:ce:1f:87:61:82:86:
ad:63:46:88:ee:ff:7b:c6:c9:4b:89:a0:9b:d9:c7:a1:fa:3c:
3c:1a:06:ea:d7:78:02:51:57:2e:49:a4:37:9b:29:87:c1:22:
36:31:54:b0:13:b8:d5:c6:c6:d7:a6:b3:aa:83:fd:de:a3:02:
21:71:a2:9e:20:0f:d9:32:74:30:fe:bb:b4:c8:a6:20:82:eb:
d4:8c:4e:d2:e3:38:44:f4:cc:00:4a:48:02:cf:d8:1a:56:8c:
98:30:f3:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 00:00:36 2025 by rpki-client