Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9181C93/6D0F640E619711EEA62A3676C4F9AE02/DFB06A1A619911EEAB80227AC4F9AE02.roa
File: DFB06A1A619911EEAB80227AC4F9AE02.roa (raw, json)
Hash identifier: wLu6IgJAy9X/YTWlQBo0rWX63mROHb8Gb7H6uyUDHe0=
Subject key identifier: B3:5D:0A:BF:87:2E:0A:16:A5:D2:97:58:3E:51:13:89:14:19:21:F3
Certificate issuer: /CN=A9181C93/serialNumber=E73B2B5B4898E475FFE869B24D3485CEC87DD14B
Certificate serial: 02
Authority key identifier: E7:3B:2B:5B:48:98:E4:75:FF:E8:69:B2:4D:34:85:CE:C8:7D:D1:4B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5zsrW0iY5HX_6GmyTTSFzsh90Us.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9181C93/6D0F640E619711EEA62A3676C4F9AE02/DFB06A1A619911EEAB80227AC4F9AE02.roa
Signing time: Tue 03 Oct 2023 03:06:41 +0000
ROA not before: Tue 03 Oct 2023 03:06:41 +0000
ROA not after: Sun 01 Dec 2024 00:00:00 +0000
asID: 151795
IP address blocks: 103.77.178.0/24 maxlen: 24
103.77.179.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9181C93, serialNumber=E73B2B5B4898E475FFE869B24D3485CEC87DD14B
Validity
Not Before: Oct 3 03:06:41 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=651b8540-a3f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e5:85:d1:a3:f6:0a:d3:e1:71:d2:53:ab:d4:
6b:0e:45:4a:4b:87:af:18:81:f6:61:48:52:90:d2:
18:30:db:b0:10:62:32:2f:34:a0:ae:fc:75:77:8e:
85:a8:cb:88:35:a8:75:2e:75:d6:ef:72:d9:ea:64:
08:0d:e6:28:18:45:83:b6:78:dd:b3:8c:a3:29:91:
2c:f0:b4:6e:f2:70:f3:b0:30:56:a4:b0:88:47:4a:
5b:11:c8:f6:2d:eb:e3:cb:1e:b5:47:9e:7b:e1:a1:
cc:79:90:12:58:78:e5:7c:b2:99:f0:5b:04:ce:64:
c9:0a:0b:ef:44:be:47:80:81:d7:ed:45:fd:d2:41:
18:a1:33:40:1c:46:d2:be:60:55:2a:7d:7d:e7:2b:
61:53:e9:13:b0:a7:a9:71:15:9c:ec:64:99:00:83:
8f:d7:35:d1:a7:2d:8d:49:18:a9:e3:b0:3c:75:76:
10:2c:21:be:27:6e:5a:be:f5:61:b8:a2:6d:df:d2:
76:26:7e:b5:63:db:b5:db:bb:e2:c4:10:45:97:49:
11:5c:59:9c:49:6d:f2:ed:95:4e:5c:77:b6:03:42:
9c:36:39:fb:63:65:17:cf:a9:88:d6:13:a1:6d:bf:
aa:f9:9e:de:cc:e1:cb:4f:38:f9:c0:df:c1:e6:7b:
9c:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:5D:0A:BF:87:2E:0A:16:A5:D2:97:58:3E:51:13:89:14:19:21:F3
X509v3 Authority Key Identifier:
keyid:E7:3B:2B:5B:48:98:E4:75:FF:E8:69:B2:4D:34:85:CE:C8:7D:D1:4B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9181C93/6D0F640E619711EEA62A3676C4F9AE02/5zsrW0iY5HX_6GmyTTSFzsh90Us.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5zsrW0iY5HX_6GmyTTSFzsh90Us.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9181C93/6D0F640E619711EEA62A3676C4F9AE02/DFB06A1A619911EEAB80227AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.77.178.0/23
Signature Algorithm: sha256WithRSAEncryption
57:b8:18:5a:86:c0:a7:ef:db:ee:e3:7a:8f:76:04:5d:ea:29:
06:bd:8c:42:46:22:9c:d6:0d:0e:76:b5:f1:43:5b:56:a0:19:
7e:dc:8c:68:e8:d1:d4:e2:27:9d:2a:d2:04:74:97:e7:5f:93:
48:56:b8:ed:ed:f1:a0:9e:86:88:83:81:ee:e2:1d:df:3b:68:
a2:11:8d:7f:5e:f4:ac:23:ca:e8:48:db:08:d9:e9:69:04:0a:
e2:bf:af:93:84:42:40:32:0b:c2:c2:ae:e9:65:6c:ba:dd:c2:
ec:5d:cc:de:95:02:50:42:22:5c:c2:52:39:66:4d:81:49:f5:
30:d1:0a:15:47:76:85:ef:10:93:04:b1:c7:3c:c6:c3:2b:07:
f9:2a:79:8b:c2:68:3a:41:fb:2f:6b:bc:0e:77:ec:d1:65:76:
43:aa:b0:5b:d1:80:de:3c:e3:81:25:6e:1e:00:67:a9:32:d8:
9f:7d:16:33:7e:dc:5b:81:e6:2b:e2:d2:84:af:43:ed:19:b4:
09:6b:d6:40:4e:fc:83:35:bc:b7:fb:6c:37:bb:ec:76:1a:5c:
38:ce:f7:91:69:cb:0d:b6:27:51:36:96:05:b9:30:a5:ce:2b:
fb:d6:59:fd:ae:8f:ca:e7:39:25:aa:04:53:71:e0:8b:1a:39:
21:5c:c9:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 15:19:10 2025 by rpki-client