Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9131AC1/FE68D3C4B99011EB9ABE7E4EC4F9AE02/8B2EB646B99311EB921D0253C4F9AE02.roa
File: 8B2EB646B99311EB921D0253C4F9AE02.roa (raw, json)
Hash identifier: HWVtAItpFTqbcvuOQ+N/yVYdqKyegv753N1mqNjNPf0=
Subject key identifier: 33:60:29:89:7F:07:F1:0F:D3:80:46:C2:D9:C5:92:FC:EB:8A:33:BB
Certificate issuer: /CN=A9131AC1/serialNumber=9C9A747DE00AF45B88F7841128E89DB13D231729
Certificate serial: 04
Authority key identifier: 9C:9A:74:7D:E0:0A:F4:5B:88:F7:84:11:28:E8:9D:B1:3D:23:17:29
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJp0feAK9FuI94QRKOidsT0jFyk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9131AC1/FE68D3C4B99011EB9ABE7E4EC4F9AE02/8B2EB646B99311EB921D0253C4F9AE02.roa
Signing time: Thu 20 May 2021 17:48:11 +0000
ROA not before: Thu 20 May 2021 17:48:11 +0000
ROA not after: Wed 31 Aug 2022 00:00:00 +0000
asID: 142272
IP address blocks: 103.167.78.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9131AC1/serialNumber=9C9A747DE00AF45B88F7841128E89DB13D231729
Validity
Not Before: May 20 17:48:11 2021 GMT
Not After : Aug 31 00:00:00 2022 GMT
Subject: CN=60a6a0db-4638
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:40:93:e5:8e:c6:b2:fb:98:76:8f:2d:cd:c0:
b6:53:ca:71:a1:0c:80:fe:53:46:0f:3b:61:8e:c6:
b1:0e:fe:69:a9:b5:d4:ec:bf:df:31:64:3e:65:04:
23:c5:03:62:4f:61:84:37:10:8b:b4:39:dd:c7:bd:
98:87:c1:47:c9:66:bd:b5:28:ec:21:9f:94:a4:09:
e3:b4:d4:45:ca:f4:ee:60:7c:a0:ef:b0:34:67:3f:
0f:1e:f9:43:7d:ab:2c:d9:3a:86:c9:c9:bf:1a:71:
22:f8:09:4e:90:fa:fe:f3:b3:d3:56:0e:dd:1e:9d:
0c:b9:88:14:ed:4b:21:23:76:b0:55:b7:a6:eb:22:
e6:66:06:c0:e8:d1:5c:84:87:ae:fd:ae:93:fd:71:
21:d8:43:48:ee:3c:b1:65:b7:d8:49:74:fe:23:54:
db:d7:da:92:3d:61:ce:72:ba:40:4a:97:e8:86:23:
d8:65:fe:f2:28:99:5f:cf:5d:89:a4:29:d9:0f:ec:
8e:53:5a:12:96:30:f1:a1:8c:2e:87:ce:9a:cd:0f:
66:d0:67:97:a1:2f:05:87:90:3a:ca:91:48:68:70:
ae:59:79:20:2f:61:de:bc:ce:4f:40:71:77:18:f9:
40:fa:46:3c:23:43:cd:db:7a:74:72:88:e4:cf:55:
e8:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:60:29:89:7F:07:F1:0F:D3:80:46:C2:D9:C5:92:FC:EB:8A:33:BB
X509v3 Authority Key Identifier:
keyid:9C:9A:74:7D:E0:0A:F4:5B:88:F7:84:11:28:E8:9D:B1:3D:23:17:29
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9131AC1/FE68D3C4B99011EB9ABE7E4EC4F9AE02/nJp0feAK9FuI94QRKOidsT0jFyk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJp0feAK9FuI94QRKOidsT0jFyk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131AC1/FE68D3C4B99011EB9ABE7E4EC4F9AE02/8B2EB646B99311EB921D0253C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.167.78.0/23
Signature Algorithm: sha256WithRSAEncryption
45:a9:46:67:c7:ff:5f:47:e3:56:ef:9d:61:9a:84:21:18:11:
05:30:0c:e0:90:f1:d3:b2:53:35:a4:51:c8:86:8e:ce:fc:76:
34:4e:58:39:20:c3:e1:c9:1f:92:01:9f:17:ba:58:8a:0b:c2:
f2:cc:b1:c3:59:cd:a9:87:0d:95:94:7e:18:8e:33:41:dd:2e:
54:f3:32:6d:42:37:30:88:e5:a5:e9:8d:e8:07:1a:17:c7:4c:
ad:a4:7f:30:e4:45:7f:a1:34:ce:d3:74:bb:bf:c2:45:f0:bc:
9a:85:ba:80:f3:b3:cb:ea:db:d2:0f:cf:e1:d9:99:97:3e:ba:
d1:25:43:48:6a:ff:97:09:33:21:41:6b:42:cf:8f:f4:1f:4c:
a2:e0:46:20:38:82:92:b2:4d:d2:a7:f8:39:32:4e:e9:52:99:
ef:93:e6:22:fa:cd:76:ed:85:2d:65:cc:f2:1c:9d:23:6d:b7:
3a:41:8b:03:f6:42:5b:be:c8:e2:64:55:9b:72:fb:3a:ad:7c:
c4:9b:01:b3:28:b0:ac:03:48:a9:97:fe:49:1e:e5:60:05:3b:
9c:53:3c:14:bc:d1:14:2b:b6:01:39:6a:28:b4:c2:3e:f8:53:
ef:2e:b3:03:49:a9:3a:ca:e3:8d:7e:6a:cf:fd:36:f7:13:47:
c5:02:89:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:53 2024 by rpki-client on console-ams.rpki-client.org