Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A914661C/770CBE2436A611ED8FC1702CC4F9AE02/12827B2E82E111EDB1071080C4F9AE02.roa
File: 12827B2E82E111EDB1071080C4F9AE02.roa (raw, json)
Hash identifier: 6er4lW0XGJ2MOtAtf2QbdznRwROhwfzgFTL7VGAKuro=
Subject key identifier: CE:BD:18:86:3E:3D:B7:88:63:E6:5F:58:AE:74:BF:87:C6:AC:72:91
Certificate issuer: /CN=A914661C/serialNumber=74AEB63F2F1DA957D65820964FF79DF0F593800C
Certificate serial: 6E
Authority key identifier: 74:AE:B6:3F:2F:1D:A9:57:D6:58:20:96:4F:F7:9D:F0:F5:93:80:0C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dK62Py8dqVfWWCCWT_ed8PWTgAw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914661C/770CBE2436A611ED8FC1702CC4F9AE02/12827B2E82E111EDB1071080C4F9AE02.roa
Signing time: Thu 19 Jan 2023 06:54:47 +0000
ROA not before: Thu 19 Jan 2023 06:54:47 +0000
ROA not after: Sat 30 Dec 2023 00:00:00 +0000
asID: 138998
IP address blocks: 103.7.4.0/24 maxlen: 24
2400:ac20::/32 maxlen: 32
2400:ac20:1000::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110 (0x6e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914661C/serialNumber=74AEB63F2F1DA957D65820964FF79DF0F593800C
Validity
Not Before: Jan 19 06:54:47 2023 GMT
Not After : Dec 30 00:00:00 2023 GMT
Subject: CN=63c8e936-e7f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:6c:17:ce:23:7a:9f:d4:05:c8:63:a3:cf:8a:
2f:ce:79:2a:31:64:53:0e:32:47:1a:2e:a1:ce:1d:
b7:0e:b1:e1:3c:09:bb:3a:c1:37:78:cb:9e:ae:b1:
d8:6b:fd:f5:d4:c8:c1:af:0b:d5:ce:33:4e:a3:d3:
12:4b:25:b9:0f:4c:7c:bc:69:e9:1f:e9:50:5e:7b:
77:f6:ec:60:4f:4a:1d:21:a8:db:cb:1c:9b:38:d2:
47:fd:ee:d1:c7:6a:dc:df:47:88:bc:87:4e:74:7b:
f1:33:12:e2:ef:39:19:1d:6d:a4:26:b4:51:ba:93:
f0:73:bb:21:a6:33:12:05:41:85:7a:74:f4:56:6c:
b8:a8:1f:c9:bf:fc:27:95:44:23:31:3d:90:b1:12:
d4:1a:52:e6:a2:7a:e7:95:42:19:91:3c:66:a1:61:
17:62:f6:0a:5f:0b:3b:a6:e8:ed:25:d7:76:e7:3a:
94:09:df:4f:8c:b5:db:ea:14:3d:6e:8c:56:32:f9:
1b:33:f3:f0:41:da:5c:61:ca:5b:f9:bd:94:98:44:
5e:1f:5a:8d:0b:db:dc:b9:64:b8:4f:b1:b2:45:48:
eb:72:05:94:3a:65:f6:19:06:6a:e7:07:2b:3c:e3:
1e:00:a9:ce:13:20:6d:49:d5:fb:07:1a:4b:6e:15:
a2:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:BD:18:86:3E:3D:B7:88:63:E6:5F:58:AE:74:BF:87:C6:AC:72:91
X509v3 Authority Key Identifier:
keyid:74:AE:B6:3F:2F:1D:A9:57:D6:58:20:96:4F:F7:9D:F0:F5:93:80:0C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914661C/770CBE2436A611ED8FC1702CC4F9AE02/dK62Py8dqVfWWCCWT_ed8PWTgAw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dK62Py8dqVfWWCCWT_ed8PWTgAw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914661C/770CBE2436A611ED8FC1702CC4F9AE02/12827B2E82E111EDB1071080C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.7.4.0/24
IPv6:
2400:ac20::/32
Signature Algorithm: sha256WithRSAEncryption
89:82:0c:9e:e0:9e:70:6b:5f:c3:4a:97:06:d3:93:e7:52:e2:
d9:d5:d4:59:15:74:9c:8e:04:cc:2d:c3:f6:6a:ce:6c:a3:f4:
af:52:fd:61:d4:07:6d:94:22:38:2d:63:90:82:bc:b1:49:96:
b1:85:30:2e:83:44:ac:90:74:f2:26:bc:6c:28:68:0a:be:d2:
80:74:e5:24:97:a2:2c:b5:55:51:6b:f8:f6:c8:4f:87:7d:06:
0a:11:17:f1:88:d4:62:71:f7:8c:1b:9c:dd:50:34:4b:a7:8c:
4d:79:ff:5a:e2:9a:9c:17:70:9f:51:23:83:d8:fd:02:cd:72:
f4:af:e4:a2:f0:65:57:9b:cc:3b:d8:ba:d3:2f:a1:fb:b1:35:
c5:2e:f2:cf:fb:7b:13:fe:35:50:68:7f:fe:62:51:a7:7a:ee:
8a:87:d9:c6:4f:17:7d:fa:0b:e0:6c:56:01:a4:70:bc:40:aa:
fe:95:45:ba:c4:81:d6:2f:2c:d9:56:49:b9:01:80:cd:f4:5f:
bc:b7:ac:31:21:ce:7b:4b:4d:96:e6:0b:0a:ff:55:0a:c7:c0:
bd:a3:5f:7e:4a:27:16:66:04:f1:40:91:44:f7:e2:55:a0:e0:
28:48:3d:8f:50:71:ca:ee:0f:2b:a6:81:5c:be:a0:b4:22:2e:
b2:10:79:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:57 2024 by rpki-client on console-ams.rpki-client.org