Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9187F7E/C763B5E010E911ED85CCEA37C4F9AE02/90CA136C0AEE11EE8A53445CC4F9AE02.roa
File: 90CA136C0AEE11EE8A53445CC4F9AE02.roa (raw, json)
Hash identifier: u5y6kDa+wlYUursVq1hY4NogvnWixVe1Qw09tJRUMIM=
Subject key identifier: 00:8F:25:57:08:4B:46:11:BA:9D:C3:C3:A6:34:D1:4C:93:10:2B:8B
Certificate issuer: /CN=A9187F7E/serialNumber=1A682941F8789C4CEA3CC33B6373E4947630BC84
Certificate serial: 0108
Authority key identifier: 1A:68:29:41:F8:78:9C:4C:EA:3C:C3:3B:63:73:E4:94:76:30:BC:84
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GmgpQfh4nEzqPMM7Y3PklHYwvIQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9187F7E/C763B5E010E911ED85CCEA37C4F9AE02/90CA136C0AEE11EE8A53445CC4F9AE02.roa
Signing time: Wed 14 Jun 2023 20:03:45 +0000
ROA not before: Wed 14 Jun 2023 20:03:45 +0000
ROA not after: Tue 31 Oct 2023 00:00:00 +0000
asID: 834
IP address blocks: 103.69.2.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 264 (0x108)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9187F7E/serialNumber=1A682941F8789C4CEA3CC33B6373E4947630BC84
Validity
Not Before: Jun 14 20:03:45 2023 GMT
Not After : Oct 31 00:00:00 2023 GMT
Subject: CN=648a1d20-a294
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:87:24:a0:0d:ef:9c:e4:39:a2:74:c1:fc:81:
48:b0:a2:2a:cd:37:1e:73:ff:c2:74:ca:31:4c:5d:
c1:32:58:19:b6:14:f9:53:12:ae:23:98:29:3e:c4:
32:06:b4:89:36:c9:9a:a2:e8:06:f3:80:9a:3f:34:
2f:ea:cf:a0:20:55:95:18:d4:25:bc:ac:44:77:94:
eb:7d:df:8c:ad:67:77:7d:39:71:e9:82:3d:7e:10:
84:a2:c7:79:b5:b1:16:c7:5b:04:6d:ff:42:32:4b:
e9:58:85:4a:7e:48:dc:83:2a:8a:f1:a3:96:72:d8:
06:97:5e:05:9d:0d:23:bf:5d:02:7a:48:47:96:a7:
f6:47:79:5d:9b:66:c8:5b:49:7a:3e:14:2d:88:c2:
cd:30:ec:0a:b9:fe:1e:7a:59:60:c5:07:be:26:a7:
1a:2e:b7:46:51:b9:3d:70:3e:63:48:3a:5d:a4:4a:
df:46:f6:ac:f0:90:21:58:8a:92:57:01:f9:de:51:
a0:a5:0b:59:18:ae:11:10:f1:1d:93:28:63:dc:ee:
c5:44:1f:bb:4c:4b:26:91:c6:32:bd:d0:94:40:b2:
8e:49:be:32:c5:1f:04:06:93:1e:26:84:b8:4e:0b:
ab:fa:74:31:b3:ee:17:dc:cd:98:ff:90:20:00:49:
6e:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:8F:25:57:08:4B:46:11:BA:9D:C3:C3:A6:34:D1:4C:93:10:2B:8B
X509v3 Authority Key Identifier:
keyid:1A:68:29:41:F8:78:9C:4C:EA:3C:C3:3B:63:73:E4:94:76:30:BC:84
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9187F7E/C763B5E010E911ED85CCEA37C4F9AE02/GmgpQfh4nEzqPMM7Y3PklHYwvIQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GmgpQfh4nEzqPMM7Y3PklHYwvIQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187F7E/C763B5E010E911ED85CCEA37C4F9AE02/90CA136C0AEE11EE8A53445CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.69.2.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:f9:d9:2d:95:98:c9:c1:cc:cb:90:d5:dc:f9:5f:a2:7d:2d:
0f:7b:d5:e2:e5:0a:74:20:07:ad:a8:9e:ca:d5:95:42:3a:77:
07:aa:9a:1b:53:50:d4:fa:8b:04:fe:8a:5e:43:a0:71:31:16:
a6:1e:49:95:17:2e:c8:ce:5b:95:42:65:26:f0:ad:24:5c:1b:
e3:b0:a3:d6:c1:9c:e2:8e:4b:9e:e2:84:6c:af:c0:84:91:69:
03:65:7f:bb:24:c1:4c:71:79:ef:0a:a7:dd:ea:da:7d:e3:a3:
06:5c:63:11:b9:b3:e2:6e:3f:5c:b6:90:62:d8:77:04:f8:23:
3e:0b:7b:10:e9:38:5b:53:e1:0d:cc:85:b5:19:5c:34:f8:0a:
36:f4:16:54:cf:12:86:a6:0e:b8:3c:72:e1:3d:77:dd:d9:5e:
11:ac:2b:a4:dd:e3:e3:ea:b6:5c:81:a3:c6:cd:66:6b:97:aa:
8c:c7:4f:99:46:72:17:d5:c2:d9:15:21:bd:48:09:ae:fd:79:
f3:9d:84:f7:4b:4c:66:02:b3:4e:6a:f3:03:03:29:eb:ce:f3:
2a:da:18:84:5f:e7:93:f5:54:66:3e:21:a2:56:5b:fd:cb:92:
54:e2:4a:b7:e7:a8:aa:cf:47:73:ae:75:1c:3f:59:4b:49:2c:
8b:e3:9d:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:14 2024 by rpki-client on console-fra.rpki-client.org