Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/55D32184877311EEADFC462EC4F9AE02.roa
File: 55D32184877311EEADFC462EC4F9AE02.roa (raw, json)
Hash identifier: ToYqINblwqYtYNyg1W7VqvVUva/cIjVwxsoZGOYaLjU=
Subject key identifier: 3B:5E:9D:AD:EF:DE:EA:C8:5B:8C:7B:B8:71:BC:60:03:2E:BE:EF:11
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 7E2D
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/55D32184877311EEADFC462EC4F9AE02.roa
Signing time: Mon 20 Nov 2023 07:06:33 +0000
ROA not before: Mon 20 Nov 2023 07:06:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 132930
IP address blocks: 103.180.110.0/24 maxlen: 24
103.180.111.0/24 maxlen: 24
103.181.199.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32301 (0x7e2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Nov 20 07:06:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=655b0578-e341
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:1c:19:33:8c:04:3c:80:94:ed:8d:c3:62:e3:
d2:f9:39:4e:a2:f9:1d:49:3f:63:8b:e2:c3:bc:f5:
15:78:b7:db:34:21:61:4a:48:e6:d4:6a:ce:93:04:
0e:76:3c:83:65:2a:b6:1f:32:7b:ff:a8:f7:d8:dc:
e7:c4:ee:89:05:b6:fc:f5:49:49:64:7e:75:4a:fb:
d4:6d:c1:c1:4b:23:ca:7f:47:19:dc:2a:b8:8d:56:
fb:45:a9:6c:d3:10:f6:7c:4f:71:41:ef:c1:8e:2a:
5d:bc:7d:e8:2a:32:44:7f:24:6a:18:52:01:a7:78:
19:9c:c8:eb:40:7f:84:a6:6e:2f:4f:ab:4c:50:76:
5c:74:00:8c:15:c6:0a:12:8e:e3:6e:d0:1c:b4:13:
b7:04:16:37:2b:a4:ff:93:ed:7a:c3:66:38:94:7e:
ae:d7:80:05:59:b8:8f:37:f8:2c:af:e7:88:08:db:
67:20:fc:ae:53:a8:92:b1:75:67:15:18:0f:d5:fa:
ed:20:7a:6b:cb:32:46:a9:65:ca:d5:a9:7f:bc:51:
61:5a:f8:72:a9:2f:38:00:30:de:6e:a6:f9:7e:ba:
cc:b7:e1:f2:07:7c:84:84:74:fa:4f:6b:2a:ce:d2:
68:72:b8:12:c8:ac:ba:6f:a5:74:97:46:81:ba:3b:
09:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:5E:9D:AD:EF:DE:EA:C8:5B:8C:7B:B8:71:BC:60:03:2E:BE:EF:11
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/55D32184877311EEADFC462EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.180.110.0/23
103.181.199.0/24
Signature Algorithm: sha256WithRSAEncryption
86:7f:d1:c4:09:f3:a0:40:a9:7f:bc:a7:ed:be:fd:13:5f:b6:
a7:79:db:bc:cc:c7:5e:9c:03:65:e5:59:1d:01:b6:4b:6f:ac:
3e:eb:1e:fe:46:a5:f9:94:70:b0:37:fd:06:6f:31:96:96:ff:
95:c5:2c:50:83:52:37:86:ab:6d:db:1c:18:58:b9:a4:63:a5:
d7:6e:89:53:e6:d8:86:08:ae:67:61:8a:18:38:07:e5:ea:d1:
a9:7b:42:ed:7c:84:15:af:fe:c7:d7:6e:86:4c:3f:c4:e8:0e:
9b:2a:10:5d:c8:f2:db:82:71:ec:08:f4:79:26:0e:83:96:1b:
6a:b0:54:39:ff:7b:39:a5:05:13:70:53:1d:8c:ba:87:36:a2:
4a:5f:14:87:3c:64:3b:75:29:d1:f3:4c:b6:84:02:cb:6a:8e:
fa:56:da:2c:03:63:c7:eb:a9:73:7b:a9:ea:d2:f7:53:ab:84:
3a:b3:3f:28:94:d4:ad:59:9c:50:39:fe:27:cb:01:6a:97:39:
2e:c6:ef:54:95:fe:dc:f8:cf:d4:e2:82:cb:d1:cd:63:5c:93:
e1:20:94:2c:da:b1:2f:ca:56:e1:e8:d7:74:b8:84:92:f0:44:
b2:71:cd:b8:71:00:fe:f1:7a:b1:e0:12:3f:b1:6a:09:63:66:
30:f2:15:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 13:39:09 2025 by rpki-client