Route Origin Authorization
$ rpki-client -vvf rpki.sub.apnic.net/repository/A91905300000/9/3230332e35372e32332e302f32342d3234203d3e2039393133.roa
File: 3230332e35372e32332e302f32342d3234203d3e2039393133.roa (raw, json)
Hash identifier: 9vPoyR5h4XW7VzKPshTgyqTHm+x238aD7PNshnOSJtk=
Subject key identifier: 17:9E:B8:7F:34:7E:5B:EF:DB:26:2C:D5:5D:7F:B6:E0:DE:E7:F5:B0
Certificate issuer: /CN=A919B0BE0000/serialNumber=33F4082166A89FFF6F326AE09B44BFBEF1629FEB
Certificate serial: 0CC676796B8EBE13E1557A103F876E51FE8C5C98
Authority key identifier: 33:F4:08:21:66:A8:9F:FF:6F:32:6A:E0:9B:44:BF:BE:F1:62:9F:EB
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M_QIIWaon_9vMmrgm0S_vvFin-s.cer
Subject info access: rsync://rpki.sub.apnic.net/repository/A91905300000/9/3230332e35372e32332e302f32342d3234203d3e2039393133.roa
Signing time: Mon 19 May 2025 06:52:49 +0000
ROA not before: Mon 19 May 2025 06:47:49 +0000
ROA not after: Mon 18 May 2026 06:52:49 +0000
asID: 9913
IP address blocks: 203.57.23.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:c6:76:79:6b:8e:be:13:e1:55:7a:10:3f:87:6e:51:fe:8c:5c:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919B0BE0000, serialNumber=33F4082166A89FFF6F326AE09B44BFBEF1629FEB
Validity
Not Before: May 19 06:47:49 2025 GMT
Not After : May 18 06:52:49 2026 GMT
Subject: CN=179EB87F347E5BEFDB262CD55D7FB6E0DEE7F5B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:77:e0:df:4c:6e:c9:07:5f:96:80:af:ad:65:
3e:10:33:0a:1e:d7:6b:36:ed:dd:2d:c0:e8:b8:21:
98:78:70:c8:e6:18:55:31:60:46:4a:87:28:d8:66:
b2:0d:28:22:bd:d3:c9:ee:06:b2:3d:df:88:9c:c2:
c3:4e:12:7c:ee:d2:f4:f8:f4:0f:9d:6e:43:fa:24:
67:24:0a:b9:b5:e0:6a:48:36:6e:e3:a4:d9:00:b0:
fc:71:0b:31:fe:41:cf:5f:8c:84:2a:23:a5:e1:02:
4f:ae:83:7f:ca:22:9c:eb:ac:48:5c:88:37:fa:71:
9f:cc:03:08:1d:7f:92:60:a9:b8:26:33:f4:6e:7d:
b3:1f:f7:e7:8b:3e:2a:cd:1b:5d:2c:6c:38:43:fe:
b8:9f:99:36:4a:a6:56:2d:e7:85:c9:99:3e:47:d2:
fc:55:e0:bd:5f:bd:31:9d:50:94:2f:62:fb:31:c0:
89:ff:0d:4d:f6:3d:bc:df:bc:a3:a6:eb:f0:24:80:
37:fe:de:c3:8b:a1:88:00:2d:20:39:31:53:2b:68:
aa:a0:68:f9:54:92:11:c8:0f:3f:c6:12:c6:22:a9:
ea:53:3e:14:67:6f:78:20:18:5c:b9:c7:33:5d:78:
1a:6f:8e:1a:ef:b1:32:16:8c:03:c6:ce:ca:13:68:
b5:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:9E:B8:7F:34:7E:5B:EF:DB:26:2C:D5:5D:7F:B6:E0:DE:E7:F5:B0
X509v3 Authority Key Identifier:
keyid:33:F4:08:21:66:A8:9F:FF:6F:32:6A:E0:9B:44:BF:BE:F1:62:9F:EB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.sub.apnic.net/repository/A91905300000/9/33F4082166A89FFF6F326AE09B44BFBEF1629FEB.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M_QIIWaon_9vMmrgm0S_vvFin-s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91905300000/9/3230332e35372e32332e302f32342d3234203d3e2039393133.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.57.23.0/24
Signature Algorithm: sha256WithRSAEncryption
58:d5:85:3b:ff:34:94:de:50:b6:6b:d2:5a:ab:6d:bc:c6:42:
e6:f1:3b:4d:43:20:c1:45:49:68:99:4b:6b:38:8f:bc:ad:04:
04:91:4d:09:a6:fb:07:3b:31:63:cb:71:94:77:d6:25:11:f2:
6f:78:fb:e2:6e:dc:7a:ff:ce:00:15:37:31:c5:0c:68:1c:27:
a6:90:5d:ad:53:97:5b:09:90:e4:61:df:4b:23:7d:46:cf:ac:
c1:6e:a9:43:fa:db:77:46:de:8d:7b:79:68:17:c7:d6:3f:7e:
65:70:a9:3a:35:ac:a8:5e:73:97:99:f7:16:66:40:50:6d:65:
65:f2:18:6d:41:b1:38:f5:35:36:ef:b4:f0:14:1f:cf:e1:6a:
f3:6c:ef:a3:85:d2:2c:6a:73:fe:02:16:07:77:00:7e:02:d7:
56:ee:4c:c9:28:ff:8e:44:33:bd:a7:d0:ce:c7:8c:a3:c6:b0:
7d:11:db:15:a9:ea:76:2e:68:72:d2:de:3d:b0:21:66:8d:fe:
20:f9:67:48:d5:ed:28:80:32:d2:12:ff:7c:c9:e0:e4:99:b0:
76:55:b1:64:03:eb:fa:d7:fb:15:06:39:b3:44:6a:59:2f:58:
af:6b:e4:4e:3f:68:55:e3:fa:3e:0a:ff:22:ba:4e:75:4c:4f:
73:9b:3e:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 2 07:10:24 2025 by rpki-client