Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A914A553/95C8A3E457A311EAA935C083C4F9AE02/0A7387A4834411EC8B56E409C4F9AE02.roa
File: 0A7387A4834411EC8B56E409C4F9AE02.roa (raw, json)
Hash identifier: ZoQegUGB7W4jX13ty4pouam/KsHi52HZet6gJNigczw=
Subject key identifier: 40:E7:88:76:0F:7D:F9:A6:34:E1:7C:AB:BD:52:36:23:24:B6:55:55
Certificate issuer: /CN=A914A553/serialNumber=AB4C3E35AEFC55B5BA358CA406ED9626A4220FD0
Certificate serial: 06CF
Authority key identifier: AB:4C:3E:35:AE:FC:55:B5:BA:35:8C:A4:06:ED:96:26:A4:22:0F:D0
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q0w-Na78VbW6NYykBu2WJqQiD9A.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914A553/95C8A3E457A311EAA935C083C4F9AE02/0A7387A4834411EC8B56E409C4F9AE02.roa
Signing time: Wed 02 Feb 2022 09:48:46 +0000
ROA not before: Wed 02 Feb 2022 09:48:46 +0000
ROA not after: Thu 02 Mar 2023 00:00:00 +0000
asID: 134552
IP address blocks: 103.79.216.0/22 maxlen: 22
103.79.216.0/24 maxlen: 24
103.79.217.0/24 maxlen: 24
103.79.218.0/24 maxlen: 24
103.79.219.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1743 (0x6cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914A553/serialNumber=AB4C3E35AEFC55B5BA358CA406ED9626A4220FD0
Validity
Not Before: Feb 2 09:48:46 2022 GMT
Not After : Mar 2 00:00:00 2023 GMT
Subject: CN=61fa537e-b103
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:32:c8:dd:a8:71:17:7f:a0:fb:6f:d8:24:0c:
93:73:dc:2b:ce:5e:b9:90:37:87:d3:86:d0:bb:b3:
df:2f:7a:9d:02:a4:6f:54:a6:0a:6a:20:e0:46:1d:
46:31:09:00:71:06:d9:a0:0c:b2:ef:6d:1c:1f:73:
ff:84:a1:17:4e:45:ba:9d:7a:42:a7:d0:98:ce:7d:
22:0d:14:b9:02:7c:b6:d3:84:54:78:f3:23:0a:32:
40:52:03:f5:ca:6b:ce:f4:09:96:61:c1:83:5e:50:
25:46:67:02:b2:5d:96:c1:6f:c9:aa:d3:61:26:44:
3c:8a:0e:c6:f1:06:0d:13:10:24:be:39:23:29:18:
40:84:10:ff:a4:c4:39:e4:1f:90:1f:f1:f6:43:b8:
15:66:58:38:e8:9d:ab:0b:99:aa:f1:de:14:21:5e:
b8:f7:f0:aa:07:44:8a:9f:24:92:9f:9e:5d:b3:86:
c8:4b:97:29:2c:d2:15:c4:fd:8f:c5:48:95:6f:84:
e4:18:3e:19:c5:97:56:c4:1c:71:df:31:f3:a5:25:
2f:97:b6:b5:6d:5d:86:24:6b:a3:1c:a0:88:39:61:
ef:29:72:24:f5:56:1b:e6:e9:7e:eb:41:ac:98:f6:
8f:92:22:05:73:36:8a:97:0a:a6:22:42:08:4e:4f:
8b:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:E7:88:76:0F:7D:F9:A6:34:E1:7C:AB:BD:52:36:23:24:B6:55:55
X509v3 Authority Key Identifier:
keyid:AB:4C:3E:35:AE:FC:55:B5:BA:35:8C:A4:06:ED:96:26:A4:22:0F:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914A553/95C8A3E457A311EAA935C083C4F9AE02/q0w-Na78VbW6NYykBu2WJqQiD9A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q0w-Na78VbW6NYykBu2WJqQiD9A.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A553/95C8A3E457A311EAA935C083C4F9AE02/0A7387A4834411EC8B56E409C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.79.216.0/22
Signature Algorithm: sha256WithRSAEncryption
a4:93:9a:da:d6:ce:68:73:ec:d0:06:cb:6f:c8:a2:95:2b:83:
2b:52:20:01:ee:6f:9d:8a:b7:ea:ef:84:73:b7:69:06:ff:b6:
d3:9b:f8:0b:cf:09:a1:7b:db:ef:5e:db:f4:5a:39:4a:e1:6c:
e9:ad:ee:37:99:8d:51:9c:03:1c:6f:d0:2a:c6:65:29:08:05:
33:da:50:f7:14:37:35:ef:39:ac:d8:52:9d:2e:42:bf:74:4f:
a5:0d:c2:e2:9b:3b:9d:10:2c:1b:39:cc:52:64:54:6e:23:fa:
0a:ac:0a:d7:ea:0c:3a:85:b4:d7:4f:22:54:df:7b:33:f8:56:
37:5a:1a:5c:5b:58:16:df:dc:b4:6c:85:96:b0:52:06:1d:42:
3a:66:5b:d2:00:0d:89:02:39:ed:81:68:a4:c2:96:4f:2b:5b:
64:f4:d6:6e:d0:cc:99:dd:fb:67:d7:84:7d:d6:00:bf:c6:29:
79:b3:a3:9a:0a:48:f0:10:26:9e:52:2f:46:d2:ff:7b:8e:3f:
82:90:92:05:09:1e:4b:c3:98:78:8d:d4:57:0e:7a:a9:77:b2:
17:7a:45:a0:98:84:97:8e:28:09:ec:45:87:e7:81:92:01:18:
7d:2f:7d:eb:52:56:34:27:76:49:d9:8a:7e:d6:37:47:c8:ff:
89:66:df:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:58 2024 by rpki-client on console-ams.rpki-client.org