Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9192A7F/760E228E37DC11ECB5720A28C4F9AE02/B1608652B6AB11ED9B637F15C4F9AE02.roa
File: B1608652B6AB11ED9B637F15C4F9AE02.roa (raw, json)
Hash identifier: wN07YFuIR7KyC/Gx2NFw+nAoYTYyJpzCIFeP5NFIQdY=
Subject key identifier: DF:B3:55:E7:D8:C7:BA:8C:9A:E9:FC:16:6C:39:45:8C:89:35:64:5F
Certificate issuer: /CN=A9192A7F/serialNumber=67F37C50CA33CF4F508578D3ACCC6DAA4C518CB4
Certificate serial: 040B
Authority key identifier: 67:F3:7C:50:CA:33:CF:4F:50:85:78:D3:AC:CC:6D:AA:4C:51:8C:B4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z_N8UMozz09QhXjTrMxtqkxRjLQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9192A7F/760E228E37DC11ECB5720A28C4F9AE02/B1608652B6AB11ED9B637F15C4F9AE02.roa
Signing time: Thu 30 May 2024 10:42:45 +0000
ROA not before: Thu 30 May 2024 10:42:45 +0000
ROA not after: Fri 31 Jan 2025 00:00:00 +0000
asID: 46997
IP address blocks: 103.175.98.0/23 maxlen: 23
103.175.99.0/24 maxlen: 24
2400:a6a0:200::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1035 (0x40b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9192A7F, serialNumber=67F37C50CA33CF4F508578D3ACCC6DAA4C518CB4
Validity
Not Before: May 30 10:42:45 2024 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=66585825-8585
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:d0:39:c5:f2:e4:c8:ff:46:96:e7:93:63:d9:
12:57:d0:41:3a:23:31:56:9e:10:bf:1a:95:52:96:
49:4d:90:8b:3b:a2:09:da:a3:36:ad:20:d5:b2:7c:
97:0c:dd:14:24:0b:69:c7:1d:0c:a9:66:79:db:6d:
0d:e9:c4:ee:16:a8:d8:44:98:f7:05:43:23:49:9e:
9e:45:43:bc:c4:a7:4b:b5:3d:db:0e:04:d5:91:e7:
86:e5:98:cb:95:b4:96:2d:b2:20:7b:f6:38:4f:e3:
76:a0:e6:58:6e:3f:66:08:7f:9f:13:45:3e:2b:03:
54:25:1f:46:a8:c0:9f:93:a6:55:7a:e0:35:06:c8:
12:1d:be:9d:83:b5:4a:f3:2a:a4:fc:f6:70:21:11:
3d:2e:a7:98:39:eb:2c:d9:f4:c2:72:e2:af:a9:21:
fc:92:96:c1:40:f9:07:6a:c9:8f:96:db:e7:15:1b:
ad:38:5b:cf:a2:51:06:25:d2:a4:5e:43:1c:a0:ed:
5f:6d:7a:94:b1:d3:7d:c7:21:a7:6a:26:b5:58:e6:
f7:1f:38:f0:22:09:0b:12:05:cf:61:ca:1e:a2:91:
8f:10:5b:cf:f9:0e:3f:ac:b6:bc:9a:22:19:c4:67:
05:00:f9:42:39:c6:df:72:50:e4:2a:37:ac:cb:24:
f3:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:B3:55:E7:D8:C7:BA:8C:9A:E9:FC:16:6C:39:45:8C:89:35:64:5F
X509v3 Authority Key Identifier:
keyid:67:F3:7C:50:CA:33:CF:4F:50:85:78:D3:AC:CC:6D:AA:4C:51:8C:B4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9192A7F/760E228E37DC11ECB5720A28C4F9AE02/Z_N8UMozz09QhXjTrMxtqkxRjLQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z_N8UMozz09QhXjTrMxtqkxRjLQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192A7F/760E228E37DC11ECB5720A28C4F9AE02/B1608652B6AB11ED9B637F15C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.175.98.0/23
IPv6:
2400:a6a0:200::/40
Signature Algorithm: sha256WithRSAEncryption
a2:ff:37:04:40:ad:2b:4a:1d:e9:0b:5e:1d:0e:ec:c8:c8:f3:
a3:ec:9f:d4:4f:e3:ac:c6:fc:2c:55:87:0e:16:37:74:f7:b7:
1b:91:3c:35:5c:30:66:92:f1:3f:c9:a8:9f:bf:57:af:0b:0f:
8d:8a:a6:fa:02:a7:b0:a8:48:de:2f:08:c5:93:b5:0d:89:76:
7a:83:54:2f:fc:99:31:a9:24:44:0f:2a:8f:ab:e5:d6:0f:e8:
42:63:5e:f6:e7:c9:be:a5:72:e2:28:21:e5:58:06:8e:15:3f:
1e:19:2b:99:5e:1a:9d:27:56:72:6a:a5:5a:df:fa:03:a5:68:
03:97:47:e1:b4:ea:3f:e8:d1:69:e4:35:42:aa:dc:db:9a:cb:
e6:50:cf:de:a3:19:ed:43:d2:d2:45:4d:99:c8:4a:6a:bf:9e:
4a:32:2c:79:12:44:ef:5e:1f:18:99:94:a5:ee:01:bf:c0:cd:
03:f1:22:d6:6c:27:6d:26:7f:a1:11:1b:c5:69:a3:e3:b7:ce:
4a:43:f8:d1:2d:37:fb:a3:8f:de:b5:e6:f2:38:99:29:e6:f0:
5c:62:c6:2f:2b:1f:01:f9:c8:48:be:80:6b:ee:2e:b0:cb:39:
af:3d:f5:54:d5:b7:25:8f:62:5d:2b:b5:0d:54:e5:77:11:bb:
f4:8e:a4:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 23:30:25 2025 by rpki-client