Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9190960/9C6F7BEA619411EBBFD2AA2AC4F9AE02/ED534930C8B511ED9A1D817EC4F9AE02.roa
File: ED534930C8B511ED9A1D817EC4F9AE02.roa (raw, json)
Hash identifier: cWc+J1TIBwheicFkr/uWy0LuYQxsGfxktq1Xam8BBXI=
Subject key identifier: 1C:A5:7B:2E:B7:26:83:0C:4B:5F:35:6E:F3:FA:47:AD:FB:55:18:D2
Certificate issuer: /CN=A9190960/serialNumber=2A900734C5E3B93ACA9470E3F5ADDADC2F215B31
Certificate serial: 0647
Authority key identifier: 2A:90:07:34:C5:E3:B9:3A:CA:94:70:E3:F5:AD:DA:DC:2F:21:5B:31
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KpAHNMXjuTrKlHDj9a3a3C8hWzE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9190960/9C6F7BEA619411EBBFD2AA2AC4F9AE02/ED534930C8B511ED9A1D817EC4F9AE02.roa
Signing time: Mon 14 Oct 2024 22:22:13 +0000
ROA not before: Mon 14 Oct 2024 22:22:13 +0000
ROA not after: Tue 30 Dec 2025 00:00:00 +0000
asID: 8075
IP address blocks: 103.155.245.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1607 (0x647)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9190960
Validity
Not Before: Oct 14 22:22:13 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=670d9994-27c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:ed:5c:46:36:92:84:6d:48:e0:a1:43:d2:6d:
7d:4c:88:aa:41:86:bc:3b:a8:e2:f5:b3:9a:0b:8a:
1f:a4:b4:09:bc:d5:dc:b2:5b:3a:d9:dd:fa:02:67:
c9:61:17:73:fe:42:b1:73:76:35:cc:9d:05:df:7b:
e6:86:8b:9d:7c:25:55:4e:b9:cb:c7:31:5b:ca:8f:
36:44:7b:88:35:a0:71:43:74:00:93:05:dd:fe:c6:
f2:4b:9c:d6:0e:93:5f:93:5e:a6:da:b0:31:76:13:
8c:11:c8:58:44:a6:e1:32:bb:bb:79:13:af:f4:a7:
e7:72:4b:ab:cb:ba:c5:c4:ac:4e:40:21:e8:7b:26:
b2:8c:eb:67:00:2e:61:0a:0b:e5:58:7b:3a:f1:a5:
51:9d:c4:44:1d:2e:3e:9a:9a:89:9f:bc:96:16:43:
a9:90:16:39:1b:12:08:39:e7:24:63:bd:97:d2:8c:
d1:95:3a:88:23:f9:c1:16:0b:5c:34:ed:bc:01:b3:
0b:16:ce:56:e7:37:12:8e:53:d2:b4:44:ca:63:65:
3b:07:0f:4c:72:3c:00:ee:f1:56:15:bc:8a:77:f1:
7f:fd:19:03:80:5d:a2:2e:cc:e9:37:ed:9d:c8:a3:
5f:e0:da:fe:f4:aa:f0:b5:4e:ef:b4:33:8c:91:a9:
d8:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:A5:7B:2E:B7:26:83:0C:4B:5F:35:6E:F3:FA:47:AD:FB:55:18:D2
X509v3 Authority Key Identifier:
keyid:2A:90:07:34:C5:E3:B9:3A:CA:94:70:E3:F5:AD:DA:DC:2F:21:5B:31
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9190960/9C6F7BEA619411EBBFD2AA2AC4F9AE02/KpAHNMXjuTrKlHDj9a3a3C8hWzE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KpAHNMXjuTrKlHDj9a3a3C8hWzE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9190960/9C6F7BEA619411EBBFD2AA2AC4F9AE02/ED534930C8B511ED9A1D817EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.155.245.0/24
Signature Algorithm: sha256WithRSAEncryption
32:71:bd:8b:5e:f1:55:35:cf:46:09:2f:f8:9d:02:72:e7:e0:
84:9e:43:8a:6c:8d:67:81:26:ca:48:2f:17:25:56:cb:4c:27:
51:94:27:bf:3f:4a:a9:8e:94:f4:72:df:56:c0:d7:60:99:fe:
04:42:43:5c:7a:2a:72:9d:0e:e3:2e:da:bc:56:fe:9d:c3:28:
79:94:58:2e:71:e6:09:cc:c3:df:ca:05:ad:a9:a2:54:5b:c7:
4e:b2:f7:af:11:5c:41:5c:22:cd:a0:c3:06:a6:fb:60:d1:4b:
b5:6a:4b:5c:6a:dc:19:d6:15:5b:f6:81:9b:2a:e7:17:71:0b:
f9:40:f4:10:a3:eb:e6:80:e8:7d:96:52:cc:c8:3e:f7:48:22:
fc:f4:03:c7:b1:ae:56:ae:b9:15:25:ca:40:10:64:eb:2b:7f:
38:70:5a:4f:36:15:c1:ec:87:18:b0:7a:7f:2f:ab:d8:09:dc:
6b:dc:b0:59:7f:81:03:83:c9:74:96:4a:91:93:80:a4:ef:b6:
88:fe:e7:dc:b5:29:d4:a3:56:d0:4f:e1:5f:52:1d:ba:8e:aa:
70:6d:fd:9c:8c:b6:7b:d4:5b:7b:37:4f:ef:ec:24:11:f9:89:
98:64:0c:b1:7f:98:0e:45:b7:f7:82:d3:b0:bf:09:62:56:99:
22:ba:c9:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:59:30 2025 by rpki-client