Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9187F7E/C763B5E010E911ED85CCEA37C4F9AE02/C37D696A10EB11ED9C882A38C4F9AE02.roa
File: C37D696A10EB11ED9C882A38C4F9AE02.roa (raw, json)
Hash identifier: 0ilxticB52SObPF3Nh3rzJSYS8XKwl8/y5f06i8oGl8=
Subject key identifier: 88:19:24:2D:E1:09:71:3B:AC:D7:8B:5E:70:6D:F9:E7:B8:38:0A:6C
Certificate issuer: /CN=A9187F7E/serialNumber=1A682941F8789C4CEA3CC33B6373E4947630BC84
Certificate serial: 02
Authority key identifier: 1A:68:29:41:F8:78:9C:4C:EA:3C:C3:3B:63:73:E4:94:76:30:BC:84
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GmgpQfh4nEzqPMM7Y3PklHYwvIQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9187F7E/C763B5E010E911ED85CCEA37C4F9AE02/C37D696A10EB11ED9C882A38C4F9AE02.roa
Signing time: Sun 31 Jul 2022 16:13:50 +0000
ROA not before: Sun 31 Jul 2022 16:13:50 +0000
ROA not after: Tue 31 Oct 2023 00:00:00 +0000
asID: 400384
IP address blocks: 103.69.2.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9187F7E/serialNumber=1A682941F8789C4CEA3CC33B6373E4947630BC84
Validity
Not Before: Jul 31 16:13:50 2022 GMT
Not After : Oct 31 00:00:00 2023 GMT
Subject: CN=62e6aa3e-ae85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:fb:2a:a9:dd:9e:f6:11:ff:25:54:34:96:ab:
9a:6f:cf:e8:90:3f:c5:6f:da:1a:0c:d5:37:f3:d8:
cf:25:4b:3f:d0:14:ce:f0:0c:c0:12:5d:94:82:1e:
51:1b:70:6f:57:60:ba:65:ac:3c:e3:85:96:87:e5:
d9:f6:d1:af:21:32:5a:fd:34:e9:f1:f6:fa:27:a3:
d4:e4:67:f3:3f:6e:e3:47:74:92:7a:80:fe:14:cb:
07:45:1d:95:fa:f5:db:fc:ad:d0:ff:6b:66:8c:0e:
b5:9b:b1:68:54:43:46:40:00:bf:18:83:ad:74:61:
54:d3:4e:20:d5:b9:c8:62:3c:6a:5e:7b:7a:3d:f2:
be:99:d9:8f:59:1a:51:89:01:62:27:73:f9:73:03:
ed:eb:53:1a:75:04:f7:25:df:be:64:32:65:e2:40:
3c:34:e7:e2:ed:d7:ec:8e:b5:6e:ca:bb:a0:f2:b4:
64:2d:ed:bc:6c:40:20:26:f0:b8:96:2c:34:d4:54:
9f:b2:2a:92:55:b1:d8:20:53:1b:40:c2:33:b1:66:
6b:9b:ad:37:7d:17:e9:bf:41:1f:22:67:46:eb:1a:
f8:5a:08:3d:c0:53:12:4c:2d:ae:f0:f7:cf:91:b8:
1b:db:1e:17:09:60:e4:fd:05:2c:f0:96:ca:16:3d:
86:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:19:24:2D:E1:09:71:3B:AC:D7:8B:5E:70:6D:F9:E7:B8:38:0A:6C
X509v3 Authority Key Identifier:
keyid:1A:68:29:41:F8:78:9C:4C:EA:3C:C3:3B:63:73:E4:94:76:30:BC:84
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9187F7E/C763B5E010E911ED85CCEA37C4F9AE02/GmgpQfh4nEzqPMM7Y3PklHYwvIQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GmgpQfh4nEzqPMM7Y3PklHYwvIQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187F7E/C763B5E010E911ED85CCEA37C4F9AE02/C37D696A10EB11ED9C882A38C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.69.2.0/23
Signature Algorithm: sha256WithRSAEncryption
7a:3e:78:40:7c:85:c3:17:cd:23:4f:d1:44:a7:3f:e6:c4:2e:
03:b8:b3:bf:26:29:c7:44:ee:82:67:3c:b0:7b:3e:e1:4a:dc:
9a:1a:0e:e1:7c:26:99:b7:ee:18:bc:6a:19:54:70:08:7b:15:
28:80:40:77:6c:f7:4b:a8:da:9b:70:a2:85:97:99:9c:da:03:
d6:a3:4d:8c:f4:dd:00:b7:19:43:ad:c8:cb:9d:0f:4a:d2:fa:
32:82:f6:6b:98:4b:2f:ef:9d:66:70:0e:b5:a6:68:5c:a4:ae:
5a:a2:07:90:2a:a6:28:74:2c:80:c6:23:0a:5b:a2:93:57:88:
09:e0:f6:85:f1:89:cc:54:8e:f5:7e:49:cc:2d:10:99:9a:fa:
66:22:48:93:5a:d2:0d:46:20:74:bd:aa:45:c6:95:e6:04:6e:
8e:40:74:43:8d:d2:46:20:4c:49:51:06:a8:11:2a:51:d9:8a:
5c:9f:b2:75:f2:b3:81:ea:b7:65:1e:9d:3c:5e:4f:e8:24:77:
5c:a7:bc:fc:b8:2b:dc:93:25:94:db:66:d0:c3:6b:92:4c:8f:
aa:92:83:3e:b3:50:a3:b6:0b:0b:28:91:ab:95:ec:9a:c8:93:
8e:e8:86:a5:a5:37:43:87:6d:f4:f1:31:e3:a3:ea:62:a6:21:
ae:47:c5:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:25 2024 by rpki-client on console-ams.rpki-client.org