Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9168126/157F66EA800611ECB03A0E61C4F9AE02/E8C8CB50BF6111ECB6671571C4F9AE02.roa
File: E8C8CB50BF6111ECB6671571C4F9AE02.roa (raw, json)
Hash identifier: vdxyYTjOcrgmO9xN87lIwBJMiFHCzeAdr9AaCOAFGD8=
Subject key identifier: 7A:55:3F:9E:54:03:27:1F:6E:10:A1:B5:F9:85:D1:CF:40:7E:C5:E1
Certificate issuer: /CN=A9168126/serialNumber=D6A9FCCB36A0271CBC5F112BB7205A57B9F484F7
Certificate serial: A9
Authority key identifier: D6:A9:FC:CB:36:A0:27:1C:BC:5F:11:2B:B7:20:5A:57:B9:F4:84:F7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1qn8yzagJxy8XxErtyBaV7n0hPc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9168126/157F66EA800611ECB03A0E61C4F9AE02/E8C8CB50BF6111ECB6671571C4F9AE02.roa
Signing time: Mon 18 Apr 2022 21:52:58 +0000
ROA not before: Mon 18 Apr 2022 21:52:58 +0000
ROA not after: Fri 31 Mar 2023 00:00:00 +0000
asID: 149483
IP address blocks: 103.180.203.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 169 (0xa9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9168126/serialNumber=D6A9FCCB36A0271CBC5F112BB7205A57B9F484F7
Validity
Not Before: Apr 18 21:52:58 2022 GMT
Not After : Mar 31 00:00:00 2023 GMT
Subject: CN=625dddba-8a6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:a9:cf:bf:b3:94:5e:fb:b8:a4:4a:f8:ee:e3:
22:be:2b:81:ee:89:f5:f8:a2:fd:91:31:44:10:6f:
67:01:a6:fb:d2:5b:b5:1d:86:53:ac:63:11:46:37:
58:c4:89:99:62:e6:11:38:65:90:1d:3f:42:72:64:
e3:97:e6:7c:ec:1a:2d:7f:13:58:de:b3:38:9b:1f:
2f:11:0e:14:b3:ed:4b:57:8d:23:77:6d:37:3d:0c:
d5:62:26:05:fe:a8:0a:73:d1:00:1d:0e:68:74:3b:
ab:80:25:71:fb:25:04:58:f3:bf:c2:ce:ce:e4:fc:
63:0f:19:eb:cf:0d:cf:dc:15:10:a3:85:07:fa:d7:
7d:1f:67:a3:97:e8:cc:2a:9a:59:bc:81:f3:b2:d3:
a0:82:26:aa:35:d5:81:60:5b:b5:2e:9a:af:9a:04:
02:ae:5b:73:9d:fc:db:ff:10:44:12:21:e7:65:23:
b7:20:21:a4:4c:a7:d3:fa:5d:f1:51:7a:cc:95:c2:
9b:aa:95:3d:a8:e8:da:0f:9f:92:38:67:21:46:04:
44:1d:fa:9c:a6:eb:00:54:15:12:13:ad:a0:46:28:
f1:e1:a7:85:ce:5b:64:03:98:d3:39:fe:bc:31:2b:
a1:e7:09:45:0a:b4:52:36:c2:90:e5:be:ca:d9:0d:
37:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:55:3F:9E:54:03:27:1F:6E:10:A1:B5:F9:85:D1:CF:40:7E:C5:E1
X509v3 Authority Key Identifier:
keyid:D6:A9:FC:CB:36:A0:27:1C:BC:5F:11:2B:B7:20:5A:57:B9:F4:84:F7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9168126/157F66EA800611ECB03A0E61C4F9AE02/1qn8yzagJxy8XxErtyBaV7n0hPc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1qn8yzagJxy8XxErtyBaV7n0hPc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168126/157F66EA800611ECB03A0E61C4F9AE02/E8C8CB50BF6111ECB6671571C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.180.203.0/24
Signature Algorithm: sha256WithRSAEncryption
31:5a:9f:33:bf:a9:bd:77:c4:a5:76:ad:f5:71:81:8c:d1:3c:
95:99:9f:6b:a7:f1:a3:bd:35:6a:ed:c9:8a:60:74:90:29:df:
d1:dc:d2:16:6e:d7:25:d6:2b:f8:af:67:c0:66:f4:23:b9:a7:
4e:d7:5e:52:89:d1:4c:c5:49:01:76:6d:9a:73:1c:86:da:21:
07:0b:59:07:98:d7:01:cf:11:4b:9f:55:f1:f6:15:e8:67:2f:
2b:10:9d:f8:67:c6:88:7b:cd:46:b1:3f:0b:e7:7d:84:23:79:
30:92:ca:b2:a7:5b:45:84:23:62:d3:06:a7:79:15:9e:d3:f4:
27:64:09:9c:86:cb:c0:04:2b:7b:26:c5:41:81:52:82:cb:bd:
0d:88:fc:ff:46:eb:13:db:1d:69:84:69:8f:2c:f2:fc:5e:1f:
68:d1:30:33:79:03:d5:9c:50:09:fb:59:ca:49:49:78:14:d1:
6a:da:d3:46:6b:90:0c:45:8c:3f:a3:30:02:13:b5:cf:e6:5b:
67:06:e1:64:df:0f:e3:45:6a:f4:3e:8e:20:57:cb:22:93:36:
3d:15:22:f9:a6:87:21:82:04:8a:b7:60:6b:98:ca:3d:f8:ad:
19:a1:d8:ec:54:9b:b2:86:33:a7:94:a0:77:99:bd:77:8b:b3:
29:35:23:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:10 2024 by rpki-client on console-fra.rpki-client.org