Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/65EBC584F93111ECBD395279C4F9AE02.roa
File: 65EBC584F93111ECBD395279C4F9AE02.roa (raw, json)
Hash identifier: j/demm1vn35oOWWmJge54eAL8j2i8b8Puq0VpJTyLW8=
Subject key identifier: 04:FE:B2:24:A9:DD:98:18:64:C7:CF:91:97:D8:40:7A:71:32:27:8F
Certificate issuer: /CN=A91756B7/serialNumber=83D96F1DEA72A99D234B4456D6F6675DC7E6061E
Certificate serial: 0421
Authority key identifier: 83:D9:6F:1D:EA:72:A9:9D:23:4B:44:56:D6:F6:67:5D:C7:E6:06:1E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g9lvHepyqZ0jS0RW1vZnXcfmBh4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/65EBC584F93111ECBD395279C4F9AE02.roa
Signing time: Fri 01 Jul 2022 11:31:50 +0000
ROA not before: Fri 01 Jul 2022 11:31:50 +0000
ROA not after: Sun 30 Jul 2023 00:00:00 +0000
asID: 135000
IP address blocks: 103.165.158.0/24 maxlen: 24
2407:4ac0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1057 (0x421)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91756B7/serialNumber=83D96F1DEA72A99D234B4456D6F6675DC7E6061E
Validity
Not Before: Jul 1 11:31:50 2022 GMT
Not After : Jul 30 00:00:00 2023 GMT
Subject: CN=62bedb26-ff52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:a9:c3:87:83:3e:c3:e9:f6:d9:bc:81:f6:32:
d9:1f:6d:70:4c:da:eb:a2:c7:85:22:ab:0d:26:8e:
06:1a:e7:71:e6:ae:6c:3c:e8:53:b0:2e:85:40:e0:
58:0f:0e:a9:e4:f5:f0:24:8f:2a:dc:c6:65:c1:61:
fe:81:d3:82:ac:40:25:08:f6:80:97:5e:54:73:8a:
07:e9:12:9f:f6:a1:30:87:56:55:66:ac:b9:b0:04:
a7:e4:f6:11:2d:61:0c:21:94:5f:0c:60:31:a4:f8:
e4:64:fe:df:ea:5d:b0:9a:70:dc:73:7b:b2:75:9b:
80:4b:4c:f4:0c:85:c9:ea:18:43:f9:c0:fc:c1:be:
89:54:95:c9:46:5d:8d:76:ac:7c:66:18:5b:a0:18:
4a:ac:1b:08:af:8c:79:02:91:b4:ab:80:fb:43:00:
3c:9f:a3:24:00:e3:24:8d:7f:41:1a:bb:8c:69:19:
a1:0a:14:15:ac:e3:89:07:ef:ed:b5:e0:ab:b2:96:
1a:e6:c7:81:fa:36:90:40:ac:c0:de:19:bb:9a:a7:
b0:b8:0e:77:de:25:8c:4b:ba:f7:d0:de:ae:4c:67:
74:80:89:52:f9:ef:14:dd:f8:76:db:68:27:e9:8f:
1a:02:97:80:21:e1:54:f8:b2:b6:d4:0e:b0:1a:91:
08:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:FE:B2:24:A9:DD:98:18:64:C7:CF:91:97:D8:40:7A:71:32:27:8F
X509v3 Authority Key Identifier:
keyid:83:D9:6F:1D:EA:72:A9:9D:23:4B:44:56:D6:F6:67:5D:C7:E6:06:1E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/g9lvHepyqZ0jS0RW1vZnXcfmBh4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g9lvHepyqZ0jS0RW1vZnXcfmBh4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/65EBC584F93111ECBD395279C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.165.158.0/24
IPv6:
2407:4ac0::/32
Signature Algorithm: sha256WithRSAEncryption
aa:23:82:6c:14:23:d1:97:2a:5e:1f:d1:f7:c9:c2:03:be:5a:
c4:aa:b2:6d:8c:18:5d:a7:a3:58:02:9b:16:94:8f:2c:4a:ae:
af:44:d5:5a:47:c5:76:d2:8c:29:cf:9b:f6:e1:7a:a6:c9:b1:
a6:30:71:02:dd:3e:40:b6:de:e7:c1:11:de:8e:08:bb:a5:59:
94:fd:b4:b0:88:d0:00:72:2a:c6:c5:96:c4:46:3f:a6:29:90:
fe:66:22:e1:41:54:fb:c1:6a:b5:f7:80:da:01:3e:63:41:da:
03:27:40:be:3d:cd:3a:f0:2a:6e:bf:1c:fd:61:8e:10:a1:03:
b9:a1:9a:b4:0d:5c:dd:57:ef:b0:e3:3c:34:37:66:c0:5b:fb:
92:32:bf:69:04:83:1c:09:1c:73:5d:96:cb:90:35:6d:50:e2:
5b:af:3a:70:65:70:32:5a:c5:6c:54:dc:41:98:92:af:77:12:
60:8b:dd:42:7f:66:45:15:e7:18:e8:a2:ea:b6:0a:bb:6a:ac:
29:57:79:25:57:95:64:ec:05:22:06:49:14:f2:e4:3e:0a:fc:
51:e9:16:0c:15:89:15:01:3d:51:d8:2e:17:93:2d:62:85:60:
0e:a2:6b:e6:fe:72:cd:8a:45:48:65:46:eb:a4:4d:0b:c5:a3:
67:09:2f:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:12 2024 by rpki-client on console-fra.rpki-client.org