Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/A7A72BF24B0611EF91534014C4F9AE02.roa
File: A7A72BF24B0611EF91534014C4F9AE02.roa (raw, json)
Hash identifier: 5X86twqvrwj9rAMXwE7dxiHPJmnmzTIw/q2mjxKYTMU=
Subject key identifier: C4:E1:18:5E:20:80:27:01:69:91:6D:DD:3C:EA:6A:30:F8:60:98:B5
Certificate issuer: /CN=A918C661/serialNumber=1EC42C1B69E16F5F37C73D81BF9FAB1F4BA42329
Certificate serial: 0A11
Authority key identifier: 1E:C4:2C:1B:69:E1:6F:5F:37:C7:3D:81:BF:9F:AB:1F:4B:A4:23:29
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HsQsG2nhb183xz2Bv5-rH0ukIyk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/A7A72BF24B0611EF91534014C4F9AE02.roa
Signing time: Wed 06 Nov 2024 20:09:50 +0000
ROA not before: Wed 06 Nov 2024 20:09:50 +0000
ROA not after: Sat 31 Jan 2026 00:00:00 +0000
asID: 14618
IP address blocks: 27.124.61.0/24 maxlen: 24
182.173.70.0/24 maxlen: 24
182.173.71.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2577 (0xa11)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918C661
Validity
Not Before: Nov 6 20:09:50 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=672bcd0e-7868
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ef:db:fe:f1:7a:7b:61:6c:7b:db:9e:c4:b7:
70:1b:d2:8c:03:2e:e3:ba:4d:e3:fd:98:b6:7f:0b:
67:f5:f2:9d:07:0d:f1:26:f2:dc:f4:13:a5:9b:9e:
84:48:56:4a:6c:46:8f:2d:6c:38:75:ec:14:4d:ec:
49:35:37:92:32:f9:10:65:bd:4a:81:63:57:17:43:
9b:cd:cc:b0:54:7d:83:11:fe:40:36:b1:c4:91:8e:
13:c3:fa:67:da:bf:b9:2f:bd:55:9c:df:b7:90:9a:
1e:fd:d8:12:8b:52:c6:2e:55:8f:71:59:e0:f4:2b:
ec:cc:c7:60:40:bc:74:95:6b:ef:a5:2d:de:7d:df:
33:66:9b:63:c9:d4:12:61:9e:3b:ab:2e:71:af:39:
19:8d:06:ee:2e:3f:b4:a9:e3:6e:4a:69:a1:78:5b:
5d:ef:d8:65:49:4c:5f:a1:8c:cf:f8:de:48:cc:b4:
3b:04:9b:ad:90:97:ba:a6:89:d3:aa:0f:bd:14:79:
fc:68:17:43:c0:1e:d0:89:51:32:17:6a:34:94:5d:
62:83:c3:e7:8a:78:dc:5f:d2:b3:b6:01:58:0c:e2:
e0:2c:b6:3a:44:19:70:88:80:49:10:23:17:bb:70:
50:26:55:06:56:d3:31:1d:4c:b5:c2:96:2c:95:4c:
1c:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:E1:18:5E:20:80:27:01:69:91:6D:DD:3C:EA:6A:30:F8:60:98:B5
X509v3 Authority Key Identifier:
keyid:1E:C4:2C:1B:69:E1:6F:5F:37:C7:3D:81:BF:9F:AB:1F:4B:A4:23:29
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HsQsG2nhb183xz2Bv5-rH0ukIyk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/A7A72BF24B0611EF91534014C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
27.124.61.0/24
182.173.70.0/23
Signature Algorithm: sha256WithRSAEncryption
ad:14:36:84:ef:fe:c8:3c:65:d1:45:0a:2f:79:e8:2c:0d:da:
39:5e:e6:04:2c:ee:ed:8c:db:ae:5c:6e:23:35:0e:a3:48:23:
83:27:54:2b:f3:0f:d0:13:0e:ea:da:ad:0d:fc:36:76:f0:68:
35:2d:90:1c:3a:20:54:e7:71:75:cf:18:be:e4:89:f6:be:bf:
01:46:ae:63:0c:b5:98:c1:f2:ac:2e:5d:f0:9f:28:69:75:3d:
ff:3a:c9:5d:5c:8b:37:9e:12:2d:8b:95:29:79:3e:3d:df:00:
61:4c:69:65:10:64:a9:1d:33:91:24:25:c3:b4:83:8a:bc:99:
79:5f:b0:52:86:25:84:8e:6d:dc:48:ca:90:ef:2d:56:1d:6f:
02:69:81:f4:59:82:01:aa:e9:78:20:ad:0f:92:df:82:7a:8c:
71:e0:f5:6d:45:6d:dd:20:28:d4:44:5a:17:75:a7:17:f3:ea:
47:3d:ba:d2:c9:64:d6:6c:13:3a:b0:4a:fd:5e:4d:26:6a:46:
bf:fe:3b:00:0f:1c:25:df:52:1c:0c:6f:0b:3b:b4:99:f4:05:
20:8b:81:dd:cf:e4:f2:d4:33:eb:7e:02:ba:a3:0f:c2:42:cf:
f6:27:1f:23:2f:ab:81:bb:da:9e:a4:7b:c9:b9:49:c9:b1:ef:
be:b2:e0:26
-----BEGIN CERTIFICATE-----
MIIFdzCCBF+gAwIBAgICChEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OEM2NjExMTAvBgNVBAUTKDFFQzQyQzFCNjlFMTZGNUYzN0M3M0Q4MUJGOUZBQjFG
NEJBNDIzMjkwHhcNMjQxMTA2MjAwOTUwWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NzJiY2QwZS03ODY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAvu/b/vF6e2Fse9uexLdwG9KMAy7juk3j/Zi2fwtn9fKdBw3xJvLc9BOlm56E
SFZKbEaPLWw4dewUTexJNTeSMvkQZb1KgWNXF0ObzcywVH2DEf5ANrHEkY4Tw/pn
2r+5L71VnN+3kJoe/dgSi1LGLlWPcVng9CvszMdgQLx0lWvvpS3efd8zZptjydQS
YZ47qy5xrzkZjQbuLj+0qeNuSmmheFtd79hlSUxfoYzP+N5IzLQ7BJutkJe6ponT
qg+9FHn8aBdDwB7QiVEyF2o0lF1ig8PninjcX9KztgFYDOLgLLY6RBlwiIBJECMX
u3BQJlUGVtMxHUy1wpYslUwcTQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFMThGF4g
gCcBaZFt3TzqajD4YJi1MB8GA1UdIwQYMBaAFB7ELBtp4W9fN8c9gb+fqx9LpCMp
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzY2MS8wQkJEOUVBMjgz
NkQxMUVBQjRBMkQ3NkRDNEY5QUUwMi9Ic1FzRzJuaGIxODN4ejJCdjUtckgwdWtJ
eWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0hzUXNHMm5oYjE4M3h6MkJ2NS1ySDB1a0l5ay5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OEM2NjEvMEJCRDlFQTI4MzZEMTFFQUI0QTJENzZEQzRGOUFFMDIvQTdBNzJCRjI0
QjA2MTFFRjkxNTM0MDE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E
FjAUMBIEAgABMAwDBAAbfD0DBAG2rUYwDQYJKoZIhvcNAQELBQADggEBAK0UNoTv
/sg8ZdFFCi956CwN2jle5gQs7u2M265cbiM1DqNII4MnVCvzD9ATDurarQ38Nnbw
aDUtkBw6IFTncXXPGL7kifa+vwFGrmMMtZjB8qwuXfCfKGl1Pf86yV1cizeeEi2L
lSl5Pj3fAGFMaWUQZKkdM5EkJcO0g4q8mXlfsFKGJYSObdxIypDvLVYdbwJpgfRZ
ggGq6XggrQ+S34J6jHHg9W1Fbd0gKNREWhd1pxfz6kc9utLJZNZsEzqwSv1eTSZq
Rr/+OwAPHCXfUhwMbws7tJn0BSCLgd3P5PLUM+t+ArqjD8JCz/YnHyMvq4G72p6k
e8m5Scmx776y4CY=
-----END CERTIFICATE-----
Generated at Sat Apr 5 00:00:29 2025 by rpki-client