Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/54F09E1CEFCD11EBAAD3E66CC4F9AE02.roa
File: 54F09E1CEFCD11EBAAD3E66CC4F9AE02.roa (raw, json)
Hash identifier: Mr4KxU8ysM5YLL7cm07mxKCSDQ73ubW5fWG75ruyBb8=
Subject key identifier: F2:B5:80:E2:A2:FA:25:8B:4C:3D:C0:A1:C1:CB:EF:45:85:EB:10:96
Certificate issuer: /CN=A917C59F/serialNumber=04BDBB60F6A660D1D2D01273490FCF09CC359B73
Certificate serial: 0334
Authority key identifier: 04:BD:BB:60:F6:A6:60:D1:D2:D0:12:73:49:0F:CF:09:CC:35:9B:73
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BL27YPamYNHS0BJzSQ_PCcw1m3M.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/54F09E1CEFCD11EBAAD3E66CC4F9AE02.roa
Signing time: Wed 28 Jul 2021 17:57:54 +0000
ROA not before: Wed 28 Jul 2021 17:57:54 +0000
ROA not after: Wed 31 Aug 2022 00:00:00 +0000
asID: 38493
IP address blocks: 103.151.212.0/23 maxlen: 23
103.151.212.0/24 maxlen: 24
103.151.213.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 820 (0x334)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917C59F/serialNumber=04BDBB60F6A660D1D2D01273490FCF09CC359B73
Validity
Not Before: Jul 28 17:57:54 2021 GMT
Not After : Aug 31 00:00:00 2022 GMT
Subject: CN=61019aa2-1627
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:79:7c:ff:eb:37:55:86:37:09:c1:eb:00:c3:
20:74:9c:0f:b7:d4:70:47:dc:31:f1:4b:55:8b:17:
ab:26:de:01:52:af:d9:4c:a5:09:f0:05:d1:c1:1b:
89:4a:fa:d3:27:4a:26:b0:e2:6a:d1:6d:b7:61:be:
e2:74:78:42:89:ea:56:42:1a:27:e1:2e:96:63:ad:
c6:67:6b:6f:dc:85:e3:d2:ff:3a:1b:84:25:db:0f:
69:1f:4a:be:1d:23:6c:a7:64:89:0b:77:90:0d:80:
62:e0:e9:39:2f:a6:2b:a3:70:f2:77:b6:98:e1:6a:
8f:c4:8a:08:eb:84:16:91:57:ef:16:f6:e2:f1:d3:
44:4f:ac:ff:fb:c9:1a:80:78:31:9d:a6:61:2a:96:
03:e1:b6:ae:ad:90:87:7b:d8:1d:9a:bd:d7:8b:03:
76:54:34:76:ad:ab:73:a6:a0:a1:58:80:41:78:21:
6e:aa:b6:8a:bc:b5:0b:1e:55:3d:ed:12:ac:8e:62:
3e:82:18:bb:0f:f4:03:6a:31:11:4b:17:dc:19:99:
7a:e8:7d:95:dd:b1:48:b1:2b:e7:58:16:2a:be:c8:
ab:48:de:87:f5:d4:2d:e4:7e:66:fe:e1:a2:ca:74:
2f:75:54:5b:99:19:71:9e:9d:15:eb:84:c6:c4:e8:
71:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:B5:80:E2:A2:FA:25:8B:4C:3D:C0:A1:C1:CB:EF:45:85:EB:10:96
X509v3 Authority Key Identifier:
keyid:04:BD:BB:60:F6:A6:60:D1:D2:D0:12:73:49:0F:CF:09:CC:35:9B:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BL27YPamYNHS0BJzSQ_PCcw1m3M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/54F09E1CEFCD11EBAAD3E66CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.151.212.0/23
Signature Algorithm: sha256WithRSAEncryption
c7:08:27:2a:b9:fc:5d:bc:af:45:7e:45:66:6f:48:cc:b4:f0:
d2:d4:df:73:7c:71:fc:ca:d7:3b:73:1a:ef:8f:02:d2:cd:9e:
29:29:01:2b:41:d2:ff:e1:22:49:92:76:bb:54:09:65:05:ed:
bf:16:0f:7f:10:75:b9:78:9c:bb:7c:9e:e1:7a:8e:b2:dd:a1:
22:53:1c:7e:c2:54:d2:54:f6:78:a8:48:fb:98:d7:29:77:17:
0e:0f:98:90:e6:91:7c:c0:19:67:17:db:ba:60:10:e6:33:d6:
14:26:84:fe:a2:54:8c:cd:46:b9:22:c8:e9:8e:ad:b0:be:2b:
99:1d:d3:51:09:11:25:c1:f7:58:c3:e1:54:ae:a4:b5:24:37:
4d:62:c4:96:22:92:ee:05:75:7f:72:2a:5e:80:e8:68:0b:ea:
61:18:79:fe:33:2d:7e:28:c9:ca:41:bd:61:1b:6b:db:81:90:
78:65:47:38:8e:4f:7b:29:0c:cd:52:02:88:49:ca:d8:cb:45:
50:fe:b0:ba:65:ac:bf:e1:06:3b:8d:63:49:b9:c3:86:f6:a2:
6c:1f:06:d2:f1:15:0e:f5:66:9a:be:2a:81:65:76:0f:cc:61:
43:4a:81:6f:d4:e1:cf:3d:62:5a:f6:b7:74:74:5b:c1:16:c7:
f5:92:09:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:22 2024 by rpki-client on console-ams.rpki-client.org