Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/E1191B1666F111ED8E04175FC4F9AE02.roa
File: E1191B1666F111ED8E04175FC4F9AE02.roa (raw, json)
Hash identifier: tx4p9zCPm6Xt0sBi1IDdgQucROjFceEpBXjq9PpPbxY=
Subject key identifier: 0E:B7:6F:18:16:B7:5C:D8:5D:F5:EB:E6:1B:28:FC:8C:A1:E2:33:28
Certificate issuer: /CN=A911636A/serialNumber=5C9CC1142A907560CD99F06E5DD02DE4E22E9445
Certificate serial: 02
Authority key identifier: 5C:9C:C1:14:2A:90:75:60:CD:99:F0:6E:5D:D0:2D:E4:E2:2E:94:45
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XJzBFCqQdWDNmfBuXdAt5OIulEU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/E1191B1666F111ED8E04175FC4F9AE02.roa
Signing time: Fri 18 Nov 2022 03:34:17 +0000
ROA not before: Fri 18 Nov 2022 03:34:17 +0000
ROA not after: Sat 30 Dec 2023 00:00:00 +0000
asID: 150434
IP address blocks: 103.40.156.0/23 maxlen: 24
2400:c360::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911636A/serialNumber=5C9CC1142A907560CD99F06E5DD02DE4E22E9445
Validity
Not Before: Nov 18 03:34:17 2022 GMT
Not After : Dec 30 00:00:00 2023 GMT
Subject: CN=6376fd39-7da8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:cd:25:d2:c9:b8:c0:ae:79:12:84:8a:a9:2f:
f2:8a:f4:03:cb:74:c6:1d:8e:17:d8:8a:79:fe:e7:
28:7b:b4:12:fa:8d:9d:0d:30:a7:c9:48:c9:a8:c8:
10:b5:d4:a4:85:8c:2b:ba:89:5c:49:ab:18:8a:a4:
28:21:4f:83:d9:4b:5f:7b:be:85:32:47:d1:48:4a:
5f:54:73:87:6b:1d:a9:3b:f7:3c:b9:45:f9:16:83:
f4:5f:ea:26:3a:86:24:e8:dd:3e:c9:17:6a:c1:02:
5c:4f:98:44:88:6c:57:1e:ec:04:b3:15:03:57:44:
e4:7f:d2:40:d0:b3:6a:9d:de:e7:5e:4d:49:d4:2b:
11:bb:08:2a:5c:81:de:36:cf:3a:c7:c5:c7:23:7b:
23:b2:8d:0d:20:22:b8:22:0a:15:11:06:60:4c:07:
7e:c6:50:47:7a:d2:df:8a:e3:f4:40:3e:48:e5:87:
15:d7:96:7b:88:c1:57:32:3d:8f:ac:8e:ab:1e:b5:
45:9e:a5:d5:c2:e8:6a:a1:7e:da:98:6c:d2:01:b1:
e3:28:61:d5:ed:3f:83:57:81:ae:c0:13:ed:36:c1:
b7:64:ec:3a:3d:17:c8:17:c6:5f:7e:25:4f:04:cd:
2d:cb:7f:fc:aa:de:05:62:a7:ff:4d:c7:ad:6f:f2:
b7:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:B7:6F:18:16:B7:5C:D8:5D:F5:EB:E6:1B:28:FC:8C:A1:E2:33:28
X509v3 Authority Key Identifier:
keyid:5C:9C:C1:14:2A:90:75:60:CD:99:F0:6E:5D:D0:2D:E4:E2:2E:94:45
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XJzBFCqQdWDNmfBuXdAt5OIulEU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/E1191B1666F111ED8E04175FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.40.156.0/23
IPv6:
2400:c360::/32
Signature Algorithm: sha256WithRSAEncryption
a9:01:b0:be:d9:d2:6c:31:0c:3f:83:97:82:0c:71:26:6d:7b:
74:59:80:0f:8a:45:05:8e:77:6b:3f:14:01:2e:d5:0d:d0:ee:
fa:64:11:df:85:49:4c:f0:fb:c3:33:9c:b0:5d:f2:5c:94:bf:
03:95:38:93:e5:e1:87:c0:3f:d3:15:87:a8:9b:de:b4:f6:6d:
bb:92:95:6f:2b:81:53:26:d4:d5:e4:78:e8:c3:1f:46:16:81:
39:64:0a:0f:7d:17:cc:64:d8:5a:1e:71:53:f1:56:be:07:3a:
19:29:49:c7:1e:f1:bd:78:a1:e1:1c:ef:36:d6:d2:2f:af:fe:
69:ee:e7:a8:bb:23:84:03:cd:a5:c6:e0:3d:fe:0c:91:10:81:
7c:77:4e:b7:db:b4:8e:89:8c:4b:b2:c8:bc:9f:e7:78:7f:4b:
0a:89:a6:7a:35:c6:da:06:46:20:ec:19:2c:36:5b:45:c5:a9:
f9:c3:4e:19:09:f8:4e:ee:cb:74:05:14:61:36:d1:41:4a:6e:
66:7d:df:01:64:50:1b:86:5b:6a:3e:86:6d:05:3c:f1:ce:12:
19:d9:36:0f:5c:26:0d:27:75:5c:7d:ba:ae:08:05:67:0d:23:
66:99:13:b8:81:7a:92:cb:3a:ab:0f:9d:33:0a:63:bf:dd:41:
c1:43:40:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:50:55 2024 by rpki-client on console-fra.rpki-client.org