Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A912E791/19C68D063A0511ECA944051BC4F9AE02/FEE2E22E3A0811ECA0712623C4F9AE02.roa
File: FEE2E22E3A0811ECA0712623C4F9AE02.roa (raw, json)
Hash identifier: AA3SKfw+ALOZkerCTgPaihpFiK7h09Xv2w9BecldfpQ=
Subject key identifier: 63:3D:68:25:BC:68:A7:09:01:47:2F:0A:85:4A:D2:9A:D2:0E:82:8E
Certificate issuer: /CN=A912E791/serialNumber=C4D7B94B9DFB64F5C189272330DBDCAD2A7D016E
Certificate serial: 02C8
Authority key identifier: C4:D7:B9:4B:9D:FB:64:F5:C1:89:27:23:30:DB:DC:AD:2A:7D:01:6E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNe5S537ZPXBiScjMNvcrSp9AW4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912E791/19C68D063A0511ECA944051BC4F9AE02/FEE2E22E3A0811ECA0712623C4F9AE02.roa
Signing time: Thu 01 Dec 2022 03:52:31 +0000
ROA not before: Thu 01 Dec 2022 03:52:31 +0000
ROA not after: Sat 30 Dec 2023 00:00:00 +0000
asID: 147066
IP address blocks: 103.174.4.0/24 maxlen: 24
103.174.5.0/24 maxlen: 24
2400:7360::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 712 (0x2c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912E791/serialNumber=C4D7B94B9DFB64F5C189272330DBDCAD2A7D016E
Validity
Not Before: Dec 1 03:52:31 2022 GMT
Not After : Dec 30 00:00:00 2023 GMT
Subject: CN=638824ff-bd72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:99:db:0c:71:a8:d2:b0:ee:67:30:6d:b2:77:
20:00:e1:0f:85:0a:14:27:05:58:d7:53:4f:25:6c:
d0:23:4c:9b:90:7c:8f:25:31:c5:99:e7:de:ea:c7:
87:9d:6e:b6:fc:c0:ed:55:5a:dd:7a:1d:e0:26:ab:
5c:7d:9c:f0:49:62:d2:9e:9d:af:88:57:3a:c0:3b:
8b:89:50:60:7c:fc:f0:eb:0c:3a:36:a0:f7:95:83:
2e:f5:38:3e:3d:ac:3e:e9:29:b7:70:92:73:c0:cf:
ad:5c:77:7c:81:2e:14:c3:b0:b4:93:62:a0:71:6d:
95:c2:a9:43:20:69:ea:8f:25:f9:8a:85:5b:93:cb:
35:79:43:32:3f:5b:d9:3a:86:1c:5d:ac:7d:0e:5f:
68:f9:50:8d:f1:ff:eb:da:7c:ce:71:3e:24:c3:7a:
ac:e3:8b:56:e6:af:da:57:8c:5e:fc:7e:16:b7:3a:
38:51:29:5f:45:cb:82:72:f5:a3:85:84:97:33:c1:
32:38:03:f1:53:23:cc:bd:9c:e7:00:6c:92:4d:c8:
eb:67:09:c4:0f:53:4b:4e:b5:40:46:98:cc:fe:a3:
67:d2:34:78:8a:77:da:e8:05:32:b4:9a:63:db:90:
ea:8d:20:03:0f:7c:6c:38:9d:d5:ee:f9:22:e5:e5:
00:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:3D:68:25:BC:68:A7:09:01:47:2F:0A:85:4A:D2:9A:D2:0E:82:8E
X509v3 Authority Key Identifier:
keyid:C4:D7:B9:4B:9D:FB:64:F5:C1:89:27:23:30:DB:DC:AD:2A:7D:01:6E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912E791/19C68D063A0511ECA944051BC4F9AE02/xNe5S537ZPXBiScjMNvcrSp9AW4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNe5S537ZPXBiScjMNvcrSp9AW4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E791/19C68D063A0511ECA944051BC4F9AE02/FEE2E22E3A0811ECA0712623C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.174.4.0/23
IPv6:
2400:7360::/32
Signature Algorithm: sha256WithRSAEncryption
5a:34:74:26:b8:d4:e1:6b:a2:06:cc:de:63:8f:6c:8d:0b:bb:
e8:a2:15:c9:81:98:42:6b:a1:56:54:48:64:bd:9d:19:41:bc:
92:3d:68:c0:51:ee:d7:23:35:6d:28:ed:9d:4a:9d:08:f7:14:
b5:34:92:24:83:3b:bf:54:f9:92:82:ed:f8:98:a0:2f:34:21:
94:65:39:e3:0e:30:dc:7c:77:74:7d:d7:dd:65:8d:d7:53:18:
2f:1a:d1:79:22:20:0f:f4:84:48:24:f7:d4:60:15:54:ad:5d:
28:b6:63:e5:fa:db:0a:6c:f8:a7:8e:04:7d:2c:3a:52:43:27:
da:ad:9c:fb:9d:a7:3f:4e:79:1b:5d:3c:cb:39:54:9e:86:f0:
69:6d:2d:c7:13:ca:2a:43:53:ab:8e:12:c6:f6:45:e2:f2:0d:
a7:a1:db:2c:a1:fe:d1:00:ac:81:bf:b7:84:8d:43:e6:4c:aa:
45:2d:f5:eb:05:ea:57:d9:d1:c1:20:b6:83:be:6e:a4:6c:0a:
a9:1b:b3:ea:82:2a:5d:1d:af:46:05:8a:2e:b1:3a:d8:c4:7e:
8c:d9:b6:d9:70:95:ed:97:b6:44:89:71:f8:db:f4:9c:c1:9d:
70:e4:b6:06:f3:07:89:dd:84:a3:1a:e2:62:f3:8e:7b:94:51:
96:b9:ed:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:52 2024 by rpki-client on console-ams.rpki-client.org