Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A912D937/BF2DAB6A4DFC11ED94BD666BC4F9AE02/D90F4B684DFE11EDBF00BA6BC4F9AE02.roa
File: D90F4B684DFE11EDBF00BA6BC4F9AE02.roa (raw, json)
Hash identifier: S6qxFzlDyQzzwOpETE2bor4OEMErUdtYkWt7Fricxtg=
Subject key identifier: 91:47:C0:97:86:AC:66:9B:14:46:12:A4:6E:77:10:7F:46:0F:E3:88
Certificate issuer: /CN=A912D937/serialNumber=7B1C6E2F442D2D0DDEFA49940280C2D70EF2B14C
Certificate serial: 03
Authority key identifier: 7B:1C:6E:2F:44:2D:2D:0D:DE:FA:49:94:02:80:C2:D7:0E:F2:B1:4C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/exxuL0QtLQ3e-kmUAoDC1w7ysUw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912D937/BF2DAB6A4DFC11ED94BD666BC4F9AE02/D90F4B684DFE11EDBF00BA6BC4F9AE02.roa
Signing time: Mon 17 Oct 2022 09:34:08 +0000
ROA not before: Mon 17 Oct 2022 09:34:08 +0000
ROA not after: Wed 31 Jan 2024 00:00:00 +0000
asID: 138581
IP address blocks: 103.18.205.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912D937/serialNumber=7B1C6E2F442D2D0DDEFA49940280C2D70EF2B14C
Validity
Not Before: Oct 17 09:34:08 2022 GMT
Not After : Jan 31 00:00:00 2024 GMT
Subject: CN=634d2190-a23c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:bf:e2:52:2f:84:ce:69:5c:8a:17:8a:bd:21:
ea:fa:4c:0a:fb:9a:29:a8:68:38:62:8b:08:94:a5:
ea:9e:b8:cc:08:47:f5:b6:76:34:7d:28:1a:7e:21:
a6:fb:29:31:7c:5c:bd:4b:bb:87:ba:4f:d3:3a:17:
62:d1:98:fb:52:0e:bc:8c:a7:24:76:bc:4b:70:56:
69:04:05:b7:0a:73:3a:f4:85:f3:e2:d9:91:0e:5e:
f0:dd:7a:56:37:77:f3:81:b5:d8:1d:9e:68:8d:7b:
31:83:47:99:81:4a:00:cc:4e:0e:1a:81:fd:c1:2a:
2e:2c:e2:6e:43:a1:bc:b6:86:ad:16:7a:30:d7:ad:
83:b8:d0:cb:bb:c5:2f:36:31:81:6e:96:dc:f6:e9:
26:88:4b:a6:09:95:d7:ce:ad:fc:1f:72:0b:79:68:
80:06:5a:dd:2c:1b:e5:0e:79:9f:c5:65:bb:53:43:
7a:63:2b:e5:67:bc:bb:05:d2:a5:69:73:be:ee:b0:
9f:4c:43:2f:c9:ab:28:ab:bd:3f:a9:91:bd:5a:d1:
c4:30:dd:50:ea:0a:31:25:ae:3c:e9:08:b7:85:8d:
9e:14:6d:2d:57:2d:9e:22:2c:d1:fc:ff:3e:3a:40:
58:a5:64:66:4d:ad:05:95:f6:d4:6e:13:c4:e9:07:
53:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:47:C0:97:86:AC:66:9B:14:46:12:A4:6E:77:10:7F:46:0F:E3:88
X509v3 Authority Key Identifier:
keyid:7B:1C:6E:2F:44:2D:2D:0D:DE:FA:49:94:02:80:C2:D7:0E:F2:B1:4C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912D937/BF2DAB6A4DFC11ED94BD666BC4F9AE02/exxuL0QtLQ3e-kmUAoDC1w7ysUw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/exxuL0QtLQ3e-kmUAoDC1w7ysUw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D937/BF2DAB6A4DFC11ED94BD666BC4F9AE02/D90F4B684DFE11EDBF00BA6BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.18.205.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:54:a5:b5:87:96:7f:e2:27:f0:8b:2c:ea:10:e0:d2:50:fe:
38:e1:fb:1e:d8:ff:f6:fa:91:12:7c:d7:12:94:bb:dd:24:47:
ba:0e:e5:fb:b2:2a:69:97:b2:d3:83:6e:4d:13:83:51:a7:15:
f6:07:5c:fb:71:19:a7:57:c8:8d:0f:c4:d1:9b:be:a3:97:8e:
26:5f:bd:29:b0:6d:b3:36:00:41:13:14:2a:74:b2:0c:01:79:
8c:a5:64:fb:82:23:6e:2e:4f:f2:68:9d:c2:d2:60:62:c7:5e:
a6:51:82:0e:76:89:b1:42:db:a9:f4:41:a5:77:ba:07:c1:ca:
70:e5:9c:56:16:ca:31:24:54:76:de:45:30:04:88:ea:ac:89:
4e:21:38:8d:be:85:47:97:73:46:c3:e3:fd:12:63:a3:f2:67:
b3:a1:1b:e7:f3:50:c3:fb:8a:9c:8c:f6:63:dd:7a:96:4d:ce:
bf:30:06:4e:2d:fa:5c:e8:53:66:ae:31:f0:3c:57:5f:41:d6:
64:9d:33:7e:1a:c0:e3:56:b6:b6:c0:fd:e4:bb:ea:9c:5c:bc:
e4:73:74:04:5b:af:b7:02:6b:93:56:1f:32:37:66:ec:18:6c:
9c:c2:b2:74:82:9d:11:f4:f6:97:92:3b:a3:f6:e2:30:5d:02:
10:c4:88:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:50:58 2024 by rpki-client on console-fra.rpki-client.org