Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/07D709041BF911EEB0ADA414C4F9AE02.roa
File: 07D709041BF911EEB0ADA414C4F9AE02.roa (raw, json)
Hash identifier: AXUN9t3zPA+gB5mj5h/LXwl+31g7HjYbcZpvtQI5Lxo=
Subject key identifier: 1D:B5:16:44:D3:C9:8A:B8:8E:72:3B:A3:DE:C2:89:77:6D:C2:51:F8
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 7529
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/07D709041BF911EEB0ADA414C4F9AE02.roa
Signing time: Thu 06 Jul 2023 12:31:29 +0000
ROA not before: Thu 06 Jul 2023 12:31:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 137000
IP address blocks: 103.173.214.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29993 (0x7529)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Jul 6 12:31:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=64a6b421-45e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:d4:a0:d9:6e:65:f2:3f:f3:fa:a2:5d:5c:9c:
1e:cf:66:a3:98:bf:42:0b:82:73:53:d6:d7:82:25:
8e:9a:38:a2:4a:8c:bb:1c:76:5a:4c:6d:27:9f:40:
79:eb:02:c7:56:dc:8c:54:6b:54:1b:a9:51:18:cf:
5b:b2:ef:84:ab:cc:88:4e:02:e5:56:f2:b8:7c:5f:
48:53:e7:59:36:59:7e:e4:28:ba:81:ea:bc:27:fd:
6a:14:bd:f4:b3:ee:a4:1a:43:7a:37:e9:05:62:0b:
92:4f:31:1b:91:d8:a7:e9:c2:df:7c:e6:07:1e:77:
a9:5e:a2:72:6f:4d:d9:6f:b1:e1:f6:46:f0:86:15:
a9:43:6d:65:4e:ac:20:48:2f:b0:8e:a2:66:f3:37:
56:5c:cc:58:4f:36:89:00:0c:9f:33:aa:2e:b4:51:
b4:9a:94:53:11:8c:a4:6d:20:00:3d:9b:e4:b7:66:
97:02:c2:89:a9:a6:c4:48:c3:07:0a:5f:83:1a:9a:
68:0e:3e:65:b4:69:54:2d:ca:78:da:6d:8f:ff:9c:
3d:44:d2:a6:5e:5c:01:bf:dc:d7:53:3e:44:ba:d1:
97:e1:5c:3d:6e:67:de:91:18:34:04:b3:43:fb:cc:
f5:66:a2:3c:a5:c8:a2:8b:13:6a:50:95:c7:66:c5:
46:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:B5:16:44:D3:C9:8A:B8:8E:72:3B:A3:DE:C2:89:77:6D:C2:51:F8
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/07D709041BF911EEB0ADA414C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.173.214.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:ba:5b:e6:83:0a:18:36:d8:78:9b:ea:52:7e:a7:8e:f6:b0:
99:1f:90:d7:8d:b3:e3:e7:c9:84:0d:dd:19:4e:3a:70:fb:ba:
80:22:5f:25:13:b6:92:28:db:42:d3:7c:cb:99:82:12:24:4c:
3b:b6:64:32:44:79:1e:1e:5a:0b:8d:9f:44:f3:0b:32:43:6e:
4d:a2:93:54:7c:30:13:16:98:6d:3e:57:af:f3:3c:45:cb:1f:
d5:a8:dd:e5:bb:61:aa:8b:f7:a9:bc:c6:6b:d8:67:58:1b:b2:
00:e9:25:c2:84:62:14:23:a1:3b:a8:69:f1:f5:82:b7:a9:bf:
7d:e0:bb:f2:d9:e0:99:c1:22:ec:26:65:a3:a3:3a:d2:47:db:
df:1a:6a:48:0a:b8:b6:53:6f:09:85:09:d2:4d:f3:69:22:a3:
4c:7b:60:cb:f3:0f:05:c7:87:47:ee:59:63:91:aa:c7:a2:7d:
f9:c5:be:83:bc:ed:aa:c3:58:5e:65:9e:4a:8d:c8:48:c0:d9:
25:f3:f7:d6:5e:35:85:5e:df:2a:d4:da:7c:33:6b:10:9c:b4:
a8:42:18:7c:9e:60:f3:5f:0d:42:be:48:61:d3:2a:34:90:2d:
9f:94:f2:e0:89:69:e8:5a:79:03:af:be:10:3f:be:e3:fd:71:
ef:1c:5c:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 02:14:33 2025 by rpki-client