Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB94D/2C7162CC232811EB9FF6E91AC4F9AE02/81D72348232B11EBB2348B23C4F9AE02.roa
File: 81D72348232B11EBB2348B23C4F9AE02.roa (raw, json)
Hash identifier: a7MdMxFeYrNOuayo2yExYYUNllObfBGwl1IXCgsh4ko=
Subject key identifier: 12:C4:FB:B2:23:B5:A4:E6:93:01:AC:89:E5:43:8F:BB:A7:5A:83:81
Certificate issuer: /CN=A91BB94D/serialNumber=747C86C3CC14A77973805315408CDCA10A2147B2
Certificate serial: 06E3
Authority key identifier: 74:7C:86:C3:CC:14:A7:79:73:80:53:15:40:8C:DC:A1:0A:21:47:B2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dHyGw8wUp3lzgFMVQIzcoQohR7I.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91BB94D/2C7162CC232811EB9FF6E91AC4F9AE02/81D72348232B11EBB2348B23C4F9AE02.roa
Signing time: Fri 30 Aug 2024 23:31:36 +0000
ROA not before: Fri 30 Aug 2024 23:31:36 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 137443
IP address blocks: 103.153.100.0/23 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1763 (0x6e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BB94D
Validity
Not Before: Aug 30 23:31:36 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=66d25657-ed95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:ba:cc:a1:07:30:fd:2c:44:c2:0f:9b:f6:2e:
ee:25:a8:dd:92:2f:9c:5e:dc:3a:ba:2f:7c:4d:ca:
b5:d2:e5:b2:a7:3e:19:6b:f1:99:4a:ca:0f:59:1b:
ad:8a:32:14:c5:7a:c7:b1:18:16:4e:be:a0:9d:54:
2e:51:56:02:04:68:a6:72:b7:66:a1:82:d9:38:66:
15:c0:2b:f8:ac:56:b1:be:6c:ae:8b:cb:b8:42:fa:
6d:b5:06:41:13:0d:67:c4:72:1b:6c:cc:b1:d7:84:
95:c2:d4:29:81:86:ae:a2:5e:29:18:94:90:35:77:
46:93:1a:dd:29:16:14:b9:13:00:ec:f5:ba:79:da:
85:d2:5f:61:ea:70:d2:86:27:72:d4:2e:b2:48:c4:
d3:4f:ff:0f:a8:ba:ae:8c:e7:04:d5:6a:4b:ff:15:
9f:23:75:7d:9e:77:3a:2b:78:3a:1a:64:0c:88:54:
22:02:87:5d:75:bf:fc:41:73:d7:9b:7f:07:1a:a6:
27:08:89:1e:2e:e7:d2:fe:fd:f6:58:00:c9:6e:3e:
ea:3d:2d:cd:cb:da:27:53:3e:e5:6d:03:91:96:22:
0c:58:c9:c3:16:88:43:2c:ec:c5:c3:14:fe:b7:d3:
be:4d:53:16:8d:d7:c5:10:05:a2:cb:db:ac:a8:14:
0a:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:C4:FB:B2:23:B5:A4:E6:93:01:AC:89:E5:43:8F:BB:A7:5A:83:81
X509v3 Authority Key Identifier:
keyid:74:7C:86:C3:CC:14:A7:79:73:80:53:15:40:8C:DC:A1:0A:21:47:B2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91BB94D/2C7162CC232811EB9FF6E91AC4F9AE02/dHyGw8wUp3lzgFMVQIzcoQohR7I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dHyGw8wUp3lzgFMVQIzcoQohR7I.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB94D/2C7162CC232811EB9FF6E91AC4F9AE02/81D72348232B11EBB2348B23C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.153.100.0/23
Signature Algorithm: sha256WithRSAEncryption
10:ea:92:19:03:f2:ec:ff:75:25:5a:39:a4:48:07:e1:f3:29:
aa:c7:6a:05:c3:eb:ec:9b:8b:48:30:33:4e:8b:da:0b:46:61:
6f:6a:e5:92:25:79:c6:ab:09:3e:dc:22:c9:c7:a2:31:e5:bf:
5e:0c:cf:51:07:cd:d3:73:3b:27:52:6f:7a:d5:12:44:73:18:
7b:4d:03:ee:c7:d4:54:0f:81:c4:62:e2:bb:e4:61:0a:e4:00:
79:09:6f:19:e6:12:43:80:8c:ff:1f:19:f5:b8:be:22:eb:5b:
ae:52:d6:44:ce:82:4e:9a:8c:b4:c2:c7:83:aa:e0:ca:12:94:
5b:ae:47:5f:71:b4:4c:c0:33:be:d5:74:6a:04:9e:15:f0:28:
5a:75:e8:5e:36:d9:d1:cf:6e:4d:cb:ac:16:7b:a7:7e:9d:44:
98:41:ce:c0:53:86:ae:87:1a:fb:b9:3e:ae:4a:b5:68:e3:ee:
a8:4e:06:6b:f7:1c:6d:a4:81:1d:d3:08:75:01:97:12:62:03:
be:57:05:9d:d8:ee:4d:38:48:3c:2d:9a:63:b9:20:ff:94:26:
a0:5c:08:d2:05:db:2b:ae:2a:df:34:f2:1c:ca:f1:cb:ee:e3:
30:1a:b7:7b:dd:01:d0:ad:61:cd:91:0d:f8:0f:21:d6:a1:ff:
a3:4a:97:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 00:58:30 2025 by rpki-client