Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/C4CE52B8020611EEB1187442C4F9AE02.roa
File: C4CE52B8020611EEB1187442C4F9AE02.roa (raw, json)
Hash identifier: p0nV5vNarWg61RIJr/WY5AaamfLXXTJYo4UqQEZ3PAE=
Subject key identifier: 29:2D:E7:08:6D:FF:CC:3F:B4:94:D8:B5:C4:E4:7F:46:2B:6A:B0:66
Certificate issuer: /CN=A912BBC9/serialNumber=D3B7215E1660A19EFD2E772F9BA7A7BDC6EE0D28
Certificate serial: 0794
Authority key identifier: D3:B7:21:5E:16:60:A1:9E:FD:2E:77:2F:9B:A7:A7:BD:C6:EE:0D:28
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07chXhZgoZ79Lncvm6envcbuDSg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/C4CE52B8020611EEB1187442C4F9AE02.roa
Signing time: Sat 03 Jun 2023 12:04:19 +0000
ROA not before: Sat 03 Jun 2023 12:04:19 +0000
ROA not after: Tue 31 Oct 2023 00:00:00 +0000
asID: 150683
IP address blocks: 103.141.158.0/24 maxlen: 24
103.141.159.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1940 (0x794)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912BBC9/serialNumber=D3B7215E1660A19EFD2E772F9BA7A7BDC6EE0D28
Validity
Not Before: Jun 3 12:04:19 2023 GMT
Not After : Oct 31 00:00:00 2023 GMT
Subject: CN=647b2c43-1203
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:0d:d7:e7:ef:ef:94:78:e3:68:09:1a:82:11:
8b:25:9f:2e:51:af:64:4f:fe:f5:1a:f5:c4:5e:53:
a1:2d:8a:f8:8d:48:5c:b9:a9:39:b0:41:42:4e:0e:
eb:f5:ae:34:57:5b:f5:f2:3c:f8:37:c1:8f:35:05:
09:f5:42:b1:aa:68:39:cd:67:98:6e:ad:1c:34:53:
bc:e0:e8:dc:dc:43:ed:12:8e:ff:71:b2:d5:10:8c:
1a:2f:8b:0b:7d:b5:00:47:69:9c:d7:2e:7b:b5:07:
fc:b8:d0:a0:6d:9b:fd:22:be:5e:98:af:f9:d7:fb:
f5:2a:47:ff:fb:1c:7c:c3:30:e1:63:8f:f3:46:0d:
ff:81:37:79:7e:d9:05:b1:7b:66:71:4f:10:e7:93:
38:72:76:0d:24:9a:bc:c4:72:36:08:72:88:74:5f:
4d:2e:7d:7b:d8:f8:9f:a4:52:6c:f0:32:ec:14:51:
a6:c8:00:a1:b0:72:ab:41:12:5f:af:8f:a2:31:27:
f4:02:5d:da:2b:05:54:b1:94:93:a0:e6:ae:a3:8e:
c3:b4:1c:ce:0f:9f:6f:6d:c9:c4:67:28:c1:90:15:
dd:8c:28:05:95:cb:58:84:4c:8f:0a:20:57:b9:f7:
59:16:a0:ea:1c:82:8c:ab:2f:20:19:f0:85:b8:a1:
d2:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:2D:E7:08:6D:FF:CC:3F:B4:94:D8:B5:C4:E4:7F:46:2B:6A:B0:66
X509v3 Authority Key Identifier:
keyid:D3:B7:21:5E:16:60:A1:9E:FD:2E:77:2F:9B:A7:A7:BD:C6:EE:0D:28
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07chXhZgoZ79Lncvm6envcbuDSg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/C4CE52B8020611EEB1187442C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.141.158.0/23
Signature Algorithm: sha256WithRSAEncryption
a6:e2:f6:ba:58:86:c0:7f:4e:30:aa:ec:98:84:d5:ae:ef:d1:
6f:80:45:d3:1c:58:ab:6e:ee:af:fd:e5:39:83:88:1f:fe:91:
57:71:2f:44:cc:ef:45:fe:0c:1f:64:63:82:79:55:d0:31:5e:
95:2f:72:b9:6e:f0:91:9d:3a:0e:09:18:08:91:2f:ea:85:dd:
f8:f1:c1:bc:3a:f6:28:bf:1d:09:d7:58:64:0a:51:ea:70:76:
13:a6:e1:61:45:49:ba:de:92:90:d9:b0:87:49:15:fe:43:f9:
6d:e7:9d:d9:d6:de:0b:69:13:e0:33:b2:ac:87:79:74:70:86:
32:33:a8:e4:dd:c0:7d:45:bf:4a:98:df:2a:e9:f7:f1:15:8a:
9c:7d:03:3e:f9:6f:56:12:15:2e:0a:6c:99:fc:95:3d:ac:64:
1c:c9:f6:7a:0a:6d:ce:0c:80:8a:ee:fb:08:3c:ed:cf:bc:fc:
81:a7:0e:49:c4:c4:9d:05:ac:91:ba:61:64:a0:ea:fd:81:2e:
c0:b6:04:e5:65:8d:ea:51:bc:4e:5f:e5:86:28:08:6c:c3:f6:
d1:66:57:6c:e8:b5:02:e4:31:5a:ff:9b:ed:a0:0a:cc:ee:e9:
21:48:2c:e8:94:5e:51:96:96:e7:04:3a:be:f9:29:ba:df:c1:
ee:35:e2:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:49 2024 by rpki-client on console-ams.rpki-client.org