Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/75A2369A765011EF80A15851C4F9AE02.roa
File: 75A2369A765011EF80A15851C4F9AE02.roa (raw, json)
Hash identifier: yWFFsU3rHcnRZEvX+F27/UfseDkBr726QLJRxL6Wp9k=
Subject key identifier: 12:40:08:B7:79:68:9A:2C:9C:3C:6A:61:F6:29:6C:53:AE:D5:ED:E2
Certificate issuer: /CN=A91510AD/serialNumber=E1E6908A16EC813DAA0BD64797AE9DBDEB092257
Certificate serial: 3541
Authority key identifier: E1:E6:90:8A:16:EC:81:3D:AA:0B:D6:47:97:AE:9D:BD:EB:09:22:57
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/75A2369A765011EF80A15851C4F9AE02.roa
Signing time: Thu 19 Sep 2024 06:29:01 +0000
ROA not before: Thu 19 Sep 2024 06:29:01 +0000
ROA not after: Mon 30 Dec 2024 00:00:00 +0000
asID: 214669
IP address blocks: 175.29.16.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13633 (0x3541)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91510AD, serialNumber=E1E6908A16EC813DAA0BD64797AE9DBDEB092257
Validity
Not Before: Sep 19 06:29:01 2024 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=66ebc4ad-e723
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:07:a4:f2:88:51:38:dd:ad:83:7e:88:17:26:
a0:fc:85:af:84:f0:cf:25:38:74:f7:7e:8f:37:2c:
92:01:27:93:38:07:40:3a:57:80:df:18:c1:5d:53:
d4:80:90:b1:65:bd:07:f3:31:e1:5a:1c:5d:06:3b:
65:c7:da:ba:79:b0:66:40:ea:cf:68:67:fd:37:f0:
f6:c8:b3:1f:ff:78:1b:14:7b:7b:42:1e:27:9c:61:
26:86:8f:68:7a:33:86:fe:d3:05:c3:bf:1c:b3:7e:
9a:de:16:67:2f:08:8b:9f:05:4a:5a:88:82:81:58:
a4:24:b2:5e:fa:96:08:d5:3c:b3:d0:74:05:0b:d9:
75:22:65:91:d6:8a:12:06:a7:aa:f4:b2:11:ec:20:
4b:f6:c3:03:49:53:c3:d6:53:60:bf:47:9e:43:e9:
b5:dc:65:37:60:d8:5c:28:00:f0:c0:14:41:0f:d7:
fd:bc:77:a2:a9:7e:2c:ac:29:8c:7b:67:cc:9c:94:
8e:7b:b6:57:38:40:2d:c5:87:bf:78:cf:86:aa:91:
22:6c:02:77:75:b3:ba:3a:e9:1f:7c:13:bd:09:26:
c0:b8:ee:14:cc:19:27:19:4e:37:90:ca:06:7e:94:
9b:97:bc:d8:42:0c:73:1f:c3:93:8a:be:ad:76:9b:
87:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:40:08:B7:79:68:9A:2C:9C:3C:6A:61:F6:29:6C:53:AE:D5:ED:E2
X509v3 Authority Key Identifier:
keyid:E1:E6:90:8A:16:EC:81:3D:AA:0B:D6:47:97:AE:9D:BD:EB:09:22:57
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/75A2369A765011EF80A15851C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
175.29.16.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:1e:0c:e3:d1:19:18:32:7c:64:00:5c:12:15:58:45:f1:37:
17:20:31:fb:65:18:d0:7d:b8:95:78:00:e3:98:09:cf:2d:29:
f6:d7:45:d4:51:f3:28:61:30:c4:35:4f:8a:6e:81:1b:32:c7:
6a:5d:de:47:c6:c6:fc:11:65:c5:5f:a0:86:f9:2b:5d:18:85:
15:38:bd:b5:0f:1f:64:e8:63:0f:db:27:00:27:e1:76:f6:a4:
d2:5a:6c:00:87:d8:fe:98:a2:d0:ce:68:2e:d2:88:52:3e:85:
1f:bc:fb:35:22:3d:d3:93:f4:38:09:1f:c8:8c:7a:10:30:41:
38:13:82:76:b5:aa:5d:3a:2e:1b:f2:15:d4:2b:33:cc:bd:10:
b0:98:de:85:35:4e:e5:83:a5:17:c2:70:b3:92:fe:63:5d:68:
2c:08:b3:f3:78:8c:d0:0f:08:3b:87:69:73:23:a6:3e:f5:f1:
ef:a8:f8:00:c2:b9:ff:86:18:48:62:82:3c:24:c6:cb:5f:87:
bb:bf:68:a3:87:9c:f3:5e:02:71:d8:a7:68:18:05:6d:a6:f1:
86:59:ba:28:92:f8:fc:a7:58:8a:de:eb:4d:9c:64:78:12:c3:
c5:f9:ea:c5:5e:7b:29:a5:32:a2:8d:d7:ad:47:7e:fe:68:9c:
83:e8:35:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 13:57:26 2025 by rpki-client