Route Origin Authorization
$ rpki-client -vvf rpki.sub.apnic.net/repository/A91905300000/9/3230332e312e36392e302f32342d3234203d3e2039393133.roa
File: 3230332e312e36392e302f32342d3234203d3e2039393133.roa (raw, json)
Hash identifier: HYKqNuiBE/DUFFDQyKmuMZ6wkcvhITNaHWFYsHIuJlA=
Subject key identifier: 66:71:A6:D3:69:17:7A:87:DA:65:54:AF:D5:7C:22:22:86:40:D9:80
Certificate issuer: /CN=A919B0BE0000/serialNumber=33F4082166A89FFF6F326AE09B44BFBEF1629FEB
Certificate serial: 59592A03DBDAC92EA08E1E7198C552841AE4C736
Authority key identifier: 33:F4:08:21:66:A8:9F:FF:6F:32:6A:E0:9B:44:BF:BE:F1:62:9F:EB
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M_QIIWaon_9vMmrgm0S_vvFin-s.cer
Subject info access: rsync://rpki.sub.apnic.net/repository/A91905300000/9/3230332e312e36392e302f32342d3234203d3e2039393133.roa
Signing time: Mon 19 May 2025 06:52:27 +0000
ROA not before: Mon 19 May 2025 06:47:27 +0000
ROA not after: Mon 18 May 2026 06:52:27 +0000
asID: 9913
IP address blocks: 203.1.69.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:59:2a:03:db:da:c9:2e:a0:8e:1e:71:98:c5:52:84:1a:e4:c7:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919B0BE0000, serialNumber=33F4082166A89FFF6F326AE09B44BFBEF1629FEB
Validity
Not Before: May 19 06:47:27 2025 GMT
Not After : May 18 06:52:27 2026 GMT
Subject: CN=6671A6D369177A87DA6554AFD57C22228640D980
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:8a:00:5e:d6:54:91:fc:c1:d3:99:69:fb:63:
92:65:36:aa:d4:50:63:1e:84:25:d6:81:3c:cb:4d:
eb:be:6a:c5:a5:55:0d:7d:eb:a0:5d:17:59:79:c0:
61:05:4f:39:53:bc:73:b1:e2:3b:65:de:5b:ad:a2:
5b:fa:3a:fc:d4:5c:89:c1:00:6d:37:8e:49:4b:44:
61:06:b7:1b:28:a1:67:32:90:a8:e4:65:3c:6e:4c:
4a:75:85:9c:f3:81:e9:b5:69:e7:42:85:cc:1c:85:
06:87:83:d9:d3:da:8b:ce:88:4f:40:20:c4:ba:25:
76:ff:d4:d6:d6:bb:1f:f3:cf:fd:4f:94:2a:72:42:
67:07:f1:18:98:6c:2e:87:0e:55:88:89:d9:66:7f:
5e:6e:28:64:fb:56:e1:70:c4:4d:08:32:31:a4:54:
e7:9f:ee:18:ab:9a:4f:4b:2b:62:f1:b0:47:c7:34:
b4:66:58:a1:e2:70:43:72:d7:66:ca:d9:65:a7:5e:
71:4c:d1:46:49:6a:fc:24:2a:46:0f:27:91:87:02:
b2:6a:27:1f:bd:ec:eb:30:5a:c9:70:1b:13:cf:66:
3f:e6:21:9b:4d:10:10:b9:d8:d1:a7:36:64:01:39:
1d:43:a1:09:27:bb:b7:f5:00:11:93:57:47:53:dd:
05:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:71:A6:D3:69:17:7A:87:DA:65:54:AF:D5:7C:22:22:86:40:D9:80
X509v3 Authority Key Identifier:
keyid:33:F4:08:21:66:A8:9F:FF:6F:32:6A:E0:9B:44:BF:BE:F1:62:9F:EB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.sub.apnic.net/repository/A91905300000/9/33F4082166A89FFF6F326AE09B44BFBEF1629FEB.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M_QIIWaon_9vMmrgm0S_vvFin-s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91905300000/9/3230332e312e36392e302f32342d3234203d3e2039393133.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.1.69.0/24
Signature Algorithm: sha256WithRSAEncryption
17:2f:52:f5:d9:f0:35:9e:20:e9:a3:35:b3:6b:ba:87:18:d7:
73:9d:b6:47:27:e4:0f:49:d6:b9:73:ea:ee:67:eb:64:84:9d:
c5:af:b9:2b:c0:3c:db:46:fa:61:44:c3:ca:d2:fb:d6:09:ec:
ae:de:69:c2:82:61:27:85:b6:46:58:bb:85:5a:6c:82:32:e2:
e1:73:2a:63:6e:c2:55:e8:92:a0:43:df:ab:3e:5c:16:cd:bf:
08:2b:89:b4:0c:30:cf:d4:ad:65:4c:c6:de:33:e2:52:05:28:
bf:8c:ce:64:58:c3:d1:a2:85:ae:8a:f3:bd:39:bc:ed:ca:32:
02:eb:53:b2:8b:22:98:d9:c3:9e:b0:70:f4:49:d7:88:a8:6c:
e5:76:8a:6d:96:83:7e:e4:88:d2:05:72:a3:4b:92:c3:6b:67:
d0:f5:60:35:a4:e6:3c:b0:ce:44:6e:1d:7a:dd:2c:d6:cf:43:
d0:7a:5c:c5:e2:f6:a1:5b:5a:ca:ae:03:ad:01:b4:cb:99:1d:
0a:3d:65:ee:7c:ae:ac:7b:f1:5c:56:76:10:f5:b2:27:01:bd:
17:fe:5c:9d:a9:e2:64:ef:c9:91:86:48:1d:0f:a0:1e:5f:02:
0a:52:9b:67:31:37:d7:e8:00:52:c4:80:73:19:c5:c7:b7:14:
23:92:40:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 2 07:14:51 2025 by rpki-client