Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9193D85/915325203FC911E9979BB83BC4F9AE02/335D3E9E4B1611EE8517195BC4F9AE02.roa
File: 335D3E9E4B1611EE8517195BC4F9AE02.roa (raw, json)
Hash identifier: hcclTSApLArmbO37/8Hfxi96+8MhVYK+vxw2uRjnApw=
Subject key identifier: 96:55:BB:80:D5:76:DC:CB:03:47:87:41:D1:75:BA:5C:9C:0A:53:86
Certificate issuer: /CN=A9193D85/serialNumber=BB07ED464B280D57FA771841F77F52EA7D507927
Certificate serial: 0EF6
Authority key identifier: BB:07:ED:46:4B:28:0D:57:FA:77:18:41:F7:7F:52:EA:7D:50:79:27
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uwftRksoDVf6dxhB939S6n1QeSc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9193D85/915325203FC911E9979BB83BC4F9AE02/335D3E9E4B1611EE8517195BC4F9AE02.roa
Signing time: Mon 04 Sep 2023 11:28:42 +0000
ROA not before: Mon 04 Sep 2023 11:28:42 +0000
ROA not after: Wed 29 May 2024 00:00:00 +0000
asID: 47674
IP address blocks: 103.136.40.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3830 (0xef6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9193D85/serialNumber=BB07ED464B280D57FA771841F77F52EA7D507927
Validity
Not Before: Sep 4 11:28:42 2023 GMT
Not After : May 29 00:00:00 2024 GMT
Subject: CN=64f5bf6a-6dbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:86:f4:bb:1c:9e:ec:b2:ea:c6:a7:cf:72:1f:
ab:50:6a:2d:62:e9:11:8c:89:12:40:3c:7c:66:88:
97:8b:86:3b:ec:b9:49:8f:40:ab:f6:13:4a:16:db:
c3:5d:48:d1:3f:60:c2:36:92:e2:58:57:db:35:0c:
ba:47:84:22:71:51:44:df:7d:3f:f9:77:c9:63:23:
f3:55:7e:5e:34:19:57:3f:44:45:f5:68:b1:ba:0d:
92:68:6f:c0:ba:b9:9a:4e:ca:83:8a:24:91:f6:4f:
31:b8:d7:e5:99:e5:ad:69:1d:35:44:90:f3:1f:34:
97:d0:d8:85:f4:89:d5:01:aa:c8:0b:da:71:b5:f2:
66:08:c8:ff:4b:23:cd:4d:4f:ff:dc:71:78:19:a4:
d2:59:3d:37:dd:34:a8:7b:2b:db:e1:b3:af:af:51:
f9:4e:90:ba:53:63:e4:ba:e7:df:92:31:a7:ab:ad:
fc:99:1b:2a:07:77:80:2d:5c:49:f5:24:70:e4:86:
6f:27:e4:1d:63:b9:ff:9d:e7:07:69:92:2f:32:d0:
d1:bc:bc:73:b9:39:bd:00:f0:a7:ec:3a:70:da:1f:
46:e0:4a:46:56:5c:ea:25:b2:47:44:34:21:00:1f:
45:cd:ba:4f:c4:31:c4:78:80:2e:dc:bc:15:38:ed:
8b:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:55:BB:80:D5:76:DC:CB:03:47:87:41:D1:75:BA:5C:9C:0A:53:86
X509v3 Authority Key Identifier:
keyid:BB:07:ED:46:4B:28:0D:57:FA:77:18:41:F7:7F:52:EA:7D:50:79:27
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9193D85/915325203FC911E9979BB83BC4F9AE02/uwftRksoDVf6dxhB939S6n1QeSc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uwftRksoDVf6dxhB939S6n1QeSc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193D85/915325203FC911E9979BB83BC4F9AE02/335D3E9E4B1611EE8517195BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.136.40.0/24
Signature Algorithm: sha256WithRSAEncryption
33:dd:8e:16:a2:46:59:55:12:78:ee:80:7b:eb:9f:e8:18:05:
ed:e8:a5:fa:cd:e4:13:2b:14:43:99:5f:fc:1e:67:1e:bc:1f:
67:bd:68:6f:fb:03:58:13:8f:47:be:36:f6:75:8f:4c:47:8d:
4c:b5:4e:1c:2c:df:b9:18:8e:76:b1:fb:1b:5d:0a:fb:d2:8b:
eb:4f:8d:df:12:6f:ec:48:52:6d:0b:d9:2f:68:9b:ba:6e:ab:
31:68:ed:02:7f:92:b8:46:27:59:4d:49:b1:c0:90:ec:09:aa:
a8:35:e8:6e:07:b4:41:da:aa:a8:03:7b:3f:1e:11:9c:69:ae:
69:29:a0:07:69:c0:e7:cf:11:2f:c0:2d:2c:e3:6d:6d:35:41:
7b:af:27:a5:3f:fb:04:80:d7:ae:85:dd:d3:12:09:c1:e1:34:
51:11:e9:b3:e0:b8:cc:d6:50:5d:ef:bf:b2:ef:da:bc:35:8c:
96:e9:69:a5:d7:6b:d8:33:ce:e0:ba:9b:f1:d8:6c:83:1a:d3:
35:17:88:0b:83:02:3d:8c:40:9f:11:bb:c9:75:bd:5b:80:61:
f6:42:09:6b:d3:0c:1f:52:19:02:f2:c8:68:e6:60:27:11:c9:
42:b6:84:fb:52:1e:70:68:57:bb:7e:64:2a:f8:31:b2:08:a4:
23:8c:de:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:34 2024 by rpki-client on console-fra.rpki-client.org