Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/01B5C496E23411EEB297852BC4F9AE02.roa
File: 01B5C496E23411EEB297852BC4F9AE02.roa (raw, json)
Hash identifier: u6CQJ1fOrhF2u+NzB3SRcH5mn0Hwnxrg7UQd+KN6c0w=
Subject key identifier: 85:D0:70:00:8F:19:4E:5B:A5:E8:C9:4D:C0:61:25:D3:65:FA:EE:4E
Certificate issuer: /CN=A917357E/serialNumber=8352A734E82144F322C50B728A4F765A33D72256
Certificate serial: 012E
Authority key identifier: 83:52:A7:34:E8:21:44:F3:22:C5:0B:72:8A:4F:76:5A:33:D7:22:56
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/01B5C496E23411EEB297852BC4F9AE02.roa
Signing time: Thu 14 Mar 2024 18:52:29 +0000
ROA not before: Thu 14 Mar 2024 18:52:29 +0000
ROA not after: Sat 31 Aug 2024 00:00:00 +0000
asID: 136969
IP address blocks: 103.151.47.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 302 (0x12e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917357E
Validity
Not Before: Mar 14 18:52:29 2024 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=65f3476d-f0d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:38:85:28:87:30:61:ff:b4:a7:db:ea:6e:d5:
0a:45:31:2c:c5:ac:7e:1b:3e:0b:6c:86:c4:79:16:
5a:21:1d:bd:6b:bf:f8:b0:43:e1:3b:34:70:82:ed:
f7:aa:11:3e:ce:03:09:d3:4b:1f:33:5d:6f:ba:98:
d1:9a:95:3b:f0:69:ce:de:62:a1:ca:38:09:b5:51:
e9:6a:63:64:0b:fa:e3:33:9c:ff:fc:66:8d:0e:20:
3e:7f:d3:31:0a:39:4a:fb:4a:d6:ca:a2:6e:9c:fd:
30:8c:9b:91:f1:a1:71:47:e5:0b:3d:7f:8d:b0:9b:
f8:ed:68:11:d0:1a:ba:58:1a:fa:16:3a:af:17:2a:
f4:1e:67:39:73:a1:a5:fb:6b:ba:95:13:04:d0:75:
c2:1a:19:90:b8:92:ab:2a:af:87:09:69:c2:32:5e:
7a:6e:05:5e:6f:00:eb:f2:41:2d:85:59:a9:28:83:
b4:97:fb:76:fc:81:a0:8d:0f:89:b8:a3:e8:19:cb:
81:dc:03:21:3f:e2:e8:05:da:53:60:ee:c2:c1:6d:
12:42:6c:09:09:cf:9f:4a:3f:00:6b:4d:68:64:ac:
76:03:98:b8:84:37:55:63:6f:7d:12:b1:cb:bd:8c:
18:27:fe:b3:69:a1:c7:a9:8d:73:d0:9c:d3:d2:e2:
32:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:D0:70:00:8F:19:4E:5B:A5:E8:C9:4D:C0:61:25:D3:65:FA:EE:4E
X509v3 Authority Key Identifier:
keyid:83:52:A7:34:E8:21:44:F3:22:C5:0B:72:8A:4F:76:5A:33:D7:22:56
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/01B5C496E23411EEB297852BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.151.47.0/24
Signature Algorithm: sha256WithRSAEncryption
40:36:05:f3:71:cd:ea:84:ac:50:d0:1a:99:de:1e:c5:2e:74:
18:99:47:f7:1d:dc:3b:c9:bb:e0:30:9a:67:5b:0c:ae:f3:45:
b0:7b:a0:d5:9f:87:74:1f:37:ff:70:6e:12:c5:dd:65:b4:a2:
5d:d3:9b:b1:ac:87:e0:aa:a2:35:a2:a5:3f:83:02:d8:e4:b4:
b2:cb:78:1d:52:fc:09:61:8c:71:1e:30:35:10:b9:a2:2b:38:
aa:a4:46:88:c1:1f:aa:39:76:00:17:f0:cb:f8:16:61:d9:c5:
c6:7f:c6:76:53:90:1f:80:24:9d:34:8b:0e:a1:6e:f3:ca:f7:
7e:6a:e3:a8:92:77:81:02:ee:de:0e:ee:62:03:38:b3:e2:d3:
28:5c:d8:98:9a:1e:07:1b:64:f8:ef:10:c5:ed:e8:11:ed:9d:
ea:7e:64:64:08:a3:7b:f4:82:21:f5:97:b0:87:c8:c7:45:b9:
38:d7:55:ef:61:7f:04:37:e4:62:5e:70:50:c7:84:a5:36:ce:
c8:84:9a:e4:1b:b7:7f:d7:41:9f:c1:97:42:45:22:95:70:4b:
e5:eb:ee:9f:f1:38:4a:58:ff:ff:4f:3e:33:9e:cf:fb:25:05:
65:28:a5:6f:ca:e6:88:5e:3e:8b:ce:e0:4c:3e:6a:b3:1e:13:
7e:bb:40:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:14:25 2025 by rpki-client