Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/BB6AC3585D7711EC8FD5622BC4F9AE02.roa
File: BB6AC3585D7711EC8FD5622BC4F9AE02.roa (raw, json)
Hash identifier: 8/4lVvHGkNImkIxo5knuk35HGqDHE1xW3Qqmp1HmvA8=
Subject key identifier: 50:73:E0:79:6D:F5:C5:45:A8:9E:11:1F:30:F9:AC:3C:C5:11:0A:0F
Certificate issuer: /CN=A917357E/serialNumber=3FC170E8DF5ADBFA1B6370B7450F28FAE0B35A18
Certificate serial: 01D0
Authority key identifier: 3F:C1:70:E8:DF:5A:DB:FA:1B:63:70:B7:45:0F:28:FA:E0:B3:5A:18
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P8Fw6N9a2_obY3C3RQ8o-uCzWhg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/BB6AC3585D7711EC8FD5622BC4F9AE02.roa
Signing time: Sun 31 Jul 2022 15:51:56 +0000
ROA not before: Sun 31 Jul 2022 15:51:56 +0000
ROA not after: Thu 01 Dec 2022 00:00:00 +0000
asID: 140732
IP address blocks: 103.151.47.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 464 (0x1d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917357E/serialNumber=3FC170E8DF5ADBFA1B6370B7450F28FAE0B35A18
Validity
Not Before: Jul 31 15:51:56 2022 GMT
Not After : Dec 1 00:00:00 2022 GMT
Subject: CN=62e6a51c-d9c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:37:85:a0:9d:59:0a:c1:22:f1:db:aa:23:a1:
33:d7:a4:dd:1d:f7:07:42:81:55:d6:dd:7e:b6:3a:
3f:56:50:a5:37:66:d1:c0:88:92:e5:cd:58:7d:d7:
32:8e:7b:ee:c7:54:a4:bf:15:d8:d5:16:6a:3a:d6:
e3:21:2a:4c:6e:71:8b:e5:65:27:40:22:c7:4c:56:
ac:98:b3:ef:d4:ab:31:61:17:ff:ff:e8:7e:15:f4:
59:59:d0:b8:c3:5f:a1:36:df:8a:cc:30:cd:39:f0:
02:0a:0c:3d:5f:33:8a:e1:ce:df:34:78:89:5a:76:
55:76:e0:d6:0b:d7:f2:a7:55:a6:92:a8:91:b8:41:
70:57:68:9a:7f:3a:24:d3:33:f5:ea:70:5e:e8:c9:
3c:72:5b:11:b6:4d:93:7a:d5:08:a9:a3:da:3e:ed:
b6:76:0b:0f:98:63:9b:32:02:9d:36:71:a7:5a:5a:
f8:ce:ed:b7:b0:67:35:78:fb:71:f0:7b:64:c4:68:
71:b6:9e:3c:4f:3d:43:4c:8a:9d:d3:5c:37:4d:91:
5e:98:39:fe:8c:8c:97:f6:2d:c4:08:9e:13:65:db:
74:eb:1e:2f:09:29:00:46:84:b9:3e:9d:65:0a:26:
43:49:49:0d:ec:76:17:a8:23:c5:1a:0b:28:1b:6a:
4e:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:73:E0:79:6D:F5:C5:45:A8:9E:11:1F:30:F9:AC:3C:C5:11:0A:0F
X509v3 Authority Key Identifier:
keyid:3F:C1:70:E8:DF:5A:DB:FA:1B:63:70:B7:45:0F:28:FA:E0:B3:5A:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/P8Fw6N9a2_obY3C3RQ8o-uCzWhg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P8Fw6N9a2_obY3C3RQ8o-uCzWhg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/BB6AC3585D7711EC8FD5622BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.151.47.0/24
Signature Algorithm: sha256WithRSAEncryption
32:5b:e3:e1:6f:aa:39:4b:44:3f:ac:ba:7b:1b:e5:19:c6:2a:
1b:6b:88:06:61:c4:37:0b:c6:e9:e5:13:8f:c8:1f:c1:bb:5d:
b3:a1:d3:c4:92:83:43:14:35:43:31:56:29:b1:5b:f7:e5:06:
71:b5:6b:8d:25:15:11:e0:26:1b:4c:17:20:94:ed:16:d3:a7:
44:dd:12:f1:20:58:5a:7b:d0:8f:64:9c:e4:72:bd:cb:cc:0e:
1f:0d:fa:c4:ef:21:5c:a3:f3:1f:d1:c5:5d:e5:94:43:f9:4f:
20:2f:aa:02:46:6c:62:b2:6e:36:fa:14:70:fc:85:4b:47:33:
92:13:63:43:88:41:fb:0e:8d:ac:8b:64:73:2c:ae:37:75:7f:
57:7d:17:17:79:65:26:05:1d:5e:b5:ee:e9:57:9d:f0:1e:5e:
77:39:17:62:9b:a6:02:d4:6a:ea:8c:ff:f3:ca:f9:aa:79:08:
e7:23:ba:15:28:66:39:f1:91:51:c5:e6:76:f7:b4:39:c9:93:
c8:5c:29:15:1c:a8:4a:7b:14:b1:e2:11:84:aa:c2:c1:ec:de:
5d:d4:75:fb:32:d5:03:b0:84:09:55:26:85:b2:c0:a0:35:e2:
6a:8d:50:46:1a:6f:b3:55:bf:47:c3:fc:22:10:82:01:0b:a4:
d9:c9:62:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:21 2024 by rpki-client on console-ams.rpki-client.org