Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/ED84BF168F3411ED93CC0E19C4F9AE02.roa
File: ED84BF168F3411ED93CC0E19C4F9AE02.roa (raw, json)
Hash identifier: LxNISQ1pvjtmx8Vq53YyOUSRqWzpXIkJdfAC2NPYxmc=
Subject key identifier: 8B:E1:66:B5:99:38:79:3F:77:34:5B:78:A7:B8:5A:7A:23:BA:2E:DB
Certificate issuer: /CN=A9129797/serialNumber=70BD1A5D9512BF6DE0BA69253DBBF01103E53A43
Certificate serial: 0F39
Authority key identifier: 70:BD:1A:5D:95:12:BF:6D:E0:BA:69:25:3D:BB:F0:11:03:E5:3A:43
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0aXZUSv23gumklPbvwEQPlOkM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/ED84BF168F3411ED93CC0E19C4F9AE02.roa
Signing time: Sun 08 Jan 2023 09:15:01 +0000
ROA not before: Sun 08 Jan 2023 09:15:01 +0000
ROA not after: Mon 01 May 2023 00:00:00 +0000
asID: 135413
IP address blocks: 103.132.248.0/22 maxlen: 22
103.132.248.0/24 maxlen: 24
103.132.250.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3897 (0xf39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9129797/serialNumber=70BD1A5D9512BF6DE0BA69253DBBF01103E53A43
Validity
Not Before: Jan 8 09:15:01 2023 GMT
Not After : May 1 00:00:00 2023 GMT
Subject: CN=63ba8994-0ae5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ec:e8:52:26:cb:80:07:49:87:62:f0:d1:2f:
82:73:dd:1d:89:72:dc:1b:28:2d:88:61:3d:d1:20:
04:ff:91:34:fd:d0:eb:d7:8c:f0:25:7a:fc:ad:4b:
15:55:9d:13:1a:be:91:98:b0:b0:91:90:43:71:18:
f1:86:17:90:eb:93:46:c0:96:00:7c:21:ee:96:a0:
37:5a:e1:3c:77:45:47:df:e1:be:42:ca:db:14:40:
87:da:ae:72:29:dd:8b:a5:2e:af:82:d5:a4:04:bb:
ee:e0:44:90:6c:28:8a:07:e6:63:b1:7e:ea:78:3f:
e0:07:71:6e:c7:11:ad:71:51:47:fe:eb:27:88:39:
46:c1:a7:5b:27:fb:d1:7c:01:d4:8d:47:10:a8:72:
c4:12:11:65:52:b4:3d:55:8f:03:32:1d:a5:4f:05:
d1:0d:8d:78:5a:a4:33:ed:7c:8b:08:73:13:9a:b5:
d8:0a:df:d9:eb:68:7d:a3:02:72:2f:2b:70:5f:37:
37:79:3d:38:ef:a5:47:09:9d:85:58:cf:89:26:b1:
3b:9b:33:a7:9f:c0:e7:1c:42:50:9c:90:c6:8d:be:
0c:f5:b2:11:65:82:73:0a:a9:1d:4e:1c:82:c0:a2:
0d:ac:7f:a6:64:bc:9e:6f:c9:bc:d1:8e:0e:31:bf:
f9:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:E1:66:B5:99:38:79:3F:77:34:5B:78:A7:B8:5A:7A:23:BA:2E:DB
X509v3 Authority Key Identifier:
keyid:70:BD:1A:5D:95:12:BF:6D:E0:BA:69:25:3D:BB:F0:11:03:E5:3A:43
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/cL0aXZUSv23gumklPbvwEQPlOkM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0aXZUSv23gumklPbvwEQPlOkM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/ED84BF168F3411ED93CC0E19C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.132.248.0/22
Signature Algorithm: sha256WithRSAEncryption
43:0d:a6:06:df:61:3f:04:22:22:77:9b:fc:25:24:c4:05:15:
64:f2:68:81:82:5e:10:98:49:23:fb:ed:41:3c:f6:f1:ab:ea:
59:cb:f5:e0:d5:83:00:ce:8e:7f:52:9b:ad:f5:6c:f9:1e:79:
03:09:d9:ae:b9:c0:b1:21:f2:c3:e6:c1:1b:e3:e7:47:b7:e5:
86:b5:df:7c:b3:26:26:c4:36:e5:46:66:13:dc:20:2b:61:64:
9a:7e:45:c0:28:90:8c:f4:91:5e:91:58:1a:00:ab:8e:7d:91:
32:8c:04:5f:fd:55:fd:f4:d5:a4:5c:73:57:23:1b:f2:7d:e1:
35:d8:f7:74:04:cc:ad:7b:7d:e0:c9:b3:5b:b9:43:7c:0f:62:
ab:de:80:6b:30:a7:5b:3c:19:1a:45:08:1b:c8:65:94:32:f8:
89:a9:7b:35:6b:3a:96:97:fa:d8:33:e5:29:94:f1:22:a8:ab:
fc:4d:ef:a0:8c:42:6d:b5:81:a8:75:33:de:93:0f:ab:91:49:
e3:dd:5e:8c:c7:5e:6f:df:27:76:37:c9:9d:b9:51:75:1c:ca:
e4:21:20:a9:d2:56:b5:cd:e3:48:3e:a6:63:77:fd:b2:64:b1:
5a:59:77:ad:2b:f3:e1:4a:a9:3e:8d:c7:18:01:e7:33:1f:fe:
92:cd:d9:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:49 2024 by rpki-client on console-ams.rpki-client.org