Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A912E99B/733DA4E85B3311EB800CB80CC4F9AE02/0847F33C40E711ED819E7369C4F9AE02.roa
File: 0847F33C40E711ED819E7369C4F9AE02.roa (raw, json)
Hash identifier: SqsD+/5yzpi4MpH8loJkhJiogVFfR3fsV8p5uCGvgzo=
Subject key identifier: C3:50:2E:CA:3B:FD:94:DC:15:CC:07:E4:51:46:05:ED:C4:E4:F0:69
Certificate issuer: /CN=A912E99B/serialNumber=246F6A4BE15B00CFEC0DC399A5E8439F939C9174
Certificate serial: 04E2
Authority key identifier: 24:6F:6A:4B:E1:5B:00:CF:EC:0D:C3:99:A5:E8:43:9F:93:9C:91:74
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JG9qS-FbAM_sDcOZpehDn5OckXQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912E99B/733DA4E85B3311EB800CB80CC4F9AE02/0847F33C40E711ED819E7369C4F9AE02.roa
Signing time: Fri 30 Sep 2022 17:40:54 +0000
ROA not before: Fri 30 Sep 2022 17:40:54 +0000
ROA not after: Sat 30 Sep 2023 00:00:00 +0000
asID: 139088
IP address blocks: 103.152.101.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1250 (0x4e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912E99B/serialNumber=246F6A4BE15B00CFEC0DC399A5E8439F939C9174
Validity
Not Before: Sep 30 17:40:54 2022 GMT
Not After : Sep 30 00:00:00 2023 GMT
Subject: CN=63372a26-da37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:07:c0:d2:9b:08:15:80:84:e6:7f:8e:3f:89:
40:b7:10:0b:99:9d:7d:13:e8:99:5d:24:09:3e:93:
42:0a:70:6e:7a:ae:82:7a:19:54:58:be:e1:96:a1:
4a:c7:43:f1:b9:b1:8e:d9:4b:25:fa:d8:00:2a:f0:
c2:4a:68:b2:73:3b:5a:0a:19:eb:9d:bf:5f:d3:da:
47:1c:23:d8:89:ec:6c:87:7d:b5:dd:bd:64:8e:68:
17:02:38:2c:15:62:bd:86:d3:e6:01:9b:e2:bf:3d:
9b:47:ad:55:d9:6e:fc:31:0d:8d:f7:8c:7b:71:ff:
45:b3:48:81:2d:1d:ef:d9:bc:c5:22:13:de:90:4f:
02:e3:18:e9:09:ec:70:bb:e1:5b:95:4a:4d:3b:0d:
e2:ee:3f:d5:99:d6:01:74:9d:72:af:1e:bc:09:ed:
e9:39:90:a2:69:0d:39:77:d9:74:4f:f7:96:41:34:
0a:d6:26:70:0d:d2:23:4f:43:df:38:4e:78:2b:3b:
0a:74:16:3e:f8:71:11:8f:b2:5d:8f:64:e6:fe:ba:
ff:3a:dd:ec:9a:55:70:91:d9:37:e7:17:cf:52:be:
f7:12:0c:29:2e:17:a1:50:71:00:35:30:01:8f:a1:
74:05:1a:3d:76:57:1b:9b:e4:e6:f8:87:6f:c6:5d:
a1:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:50:2E:CA:3B:FD:94:DC:15:CC:07:E4:51:46:05:ED:C4:E4:F0:69
X509v3 Authority Key Identifier:
keyid:24:6F:6A:4B:E1:5B:00:CF:EC:0D:C3:99:A5:E8:43:9F:93:9C:91:74
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912E99B/733DA4E85B3311EB800CB80CC4F9AE02/JG9qS-FbAM_sDcOZpehDn5OckXQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JG9qS-FbAM_sDcOZpehDn5OckXQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E99B/733DA4E85B3311EB800CB80CC4F9AE02/0847F33C40E711ED819E7369C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.152.101.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:d2:13:d7:10:1d:f3:3f:20:c7:91:60:87:76:89:1d:eb:b9:
a5:52:95:38:b2:66:cd:d8:9c:5f:7b:a5:95:12:c8:14:02:c8:
bd:e1:13:95:1c:5d:17:77:6d:8e:1c:12:4d:1a:dc:89:d5:17:
29:82:e2:c5:39:93:15:b1:2d:ff:46:b5:01:d2:ae:0c:49:41:
17:5e:2a:57:e0:63:de:de:b5:00:8a:fb:19:47:6d:a2:4f:68:
13:f8:b8:67:77:19:d9:ab:11:7b:d5:2f:73:bb:4d:99:52:d7:
8d:df:b1:3e:5b:22:de:12:c9:54:aa:c9:b1:b7:9b:f7:63:81:
7e:f4:05:b3:9c:c1:2b:73:ec:3a:ca:05:2a:5a:76:30:83:2a:
a5:64:0f:b3:de:e2:31:f6:4a:b2:12:e8:51:5c:85:dd:b8:6d:
0f:d7:43:d4:35:8a:d9:44:c8:69:84:a9:45:3b:55:23:68:63:
36:fc:f9:ce:99:e4:cd:55:79:75:c1:0e:cb:c2:c7:c0:7b:ad:
b4:d8:de:c9:0f:9e:31:a6:d4:11:c5:0a:6e:6f:db:6b:93:88:
8f:20:e6:26:aa:37:5b:dc:90:f6:b7:03:22:13:de:e0:ab:7f:
2d:99:bf:d1:ab:e1:5b:81:58:16:92:3f:7f:43:9e:cc:8b:ef:
43:fb:e4:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:50:58 2024 by rpki-client on console-fra.rpki-client.org