Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A27AB/6F6E9828310E11EE889FF03FC4F9AE02/81F0B9BE440411EEA221D00FC4F9AE02.roa
File: 81F0B9BE440411EEA221D00FC4F9AE02.roa (raw, json)
Hash identifier: pwC+TnrdtJTjlpqGee6/rhw2j6azfqF6aTp4ILG7x9s=
Subject key identifier: 9F:9D:35:15:18:41:52:20:E9:9E:FF:D0:2F:25:D5:73:4D:C1:99:30
Certificate issuer: /CN=A91A27AB/serialNumber=59D588125A716698738D1D1E9E6D8A68D7409B27
Certificate serial: 17
Authority key identifier: 59:D5:88:12:5A:71:66:98:73:8D:1D:1E:9E:6D:8A:68:D7:40:9B:27
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WdWIElpxZphzjR0enm2KaNdAmyc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A27AB/6F6E9828310E11EE889FF03FC4F9AE02/81F0B9BE440411EEA221D00FC4F9AE02.roa
Signing time: Sat 26 Aug 2023 11:34:25 +0000
ROA not before: Sat 26 Aug 2023 11:34:25 +0000
ROA not after: Fri 01 Dec 2023 00:00:00 +0000
asID: 15731
IP address blocks: 103.99.55.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23 (0x17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A27AB/serialNumber=59D588125A716698738D1D1E9E6D8A68D7409B27
Validity
Not Before: Aug 26 11:34:25 2023 GMT
Not After : Dec 1 00:00:00 2023 GMT
Subject: CN=64e9e340-8d1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:e2:51:57:00:20:cb:a7:cd:17:10:08:04:af:
ad:5d:4b:b4:bf:06:25:9a:37:12:4c:69:97:b8:90:
3b:ef:db:9e:ca:58:23:58:d6:76:0e:f2:04:fe:2a:
df:a1:c4:b5:58:56:22:c7:89:72:3e:5f:2b:46:c9:
91:b9:9a:17:40:94:e8:62:01:f0:06:ec:ca:58:f2:
4b:57:c2:d1:43:b4:5c:4e:0a:11:25:0e:cf:97:73:
bb:41:5e:4a:7a:81:92:48:75:51:47:97:55:11:e3:
75:ed:95:27:16:ba:d8:e0:71:a4:c7:d3:67:12:c5:
c0:24:0c:b6:c1:17:12:86:46:83:47:4a:bb:63:75:
83:73:09:42:cc:ad:80:8a:22:6f:c6:3a:39:24:ad:
67:5a:75:3c:df:42:5c:62:10:aa:3c:6d:2d:e6:1c:
7c:d0:b1:27:54:7d:48:3d:29:bf:d1:3f:7c:68:a0:
d7:a5:cc:ab:7e:ae:c1:0c:31:cc:b5:42:bd:51:42:
94:36:23:0d:88:1d:45:13:dc:e6:32:86:b1:c8:e3:
62:3a:aa:a7:e4:89:d3:79:17:30:c9:0a:e7:78:6f:
de:b7:e2:cb:71:a6:37:98:09:45:d3:e9:70:d6:96:
3c:1b:8c:13:0e:3f:4d:18:49:9a:16:89:ba:9e:95:
22:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:9D:35:15:18:41:52:20:E9:9E:FF:D0:2F:25:D5:73:4D:C1:99:30
X509v3 Authority Key Identifier:
keyid:59:D5:88:12:5A:71:66:98:73:8D:1D:1E:9E:6D:8A:68:D7:40:9B:27
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A27AB/6F6E9828310E11EE889FF03FC4F9AE02/WdWIElpxZphzjR0enm2KaNdAmyc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WdWIElpxZphzjR0enm2KaNdAmyc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A27AB/6F6E9828310E11EE889FF03FC4F9AE02/81F0B9BE440411EEA221D00FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.99.55.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:fc:6b:db:0f:1d:c9:b3:6c:13:0e:3f:92:e0:51:99:92:d9:
77:2b:37:0e:2a:b9:6c:68:db:2e:63:47:ef:61:3f:28:ec:fb:
cc:93:5c:ce:5e:f9:ba:0b:70:12:71:50:70:15:00:7d:0c:c2:
6a:39:fd:86:ef:c1:b6:69:ed:ff:aa:1d:97:1d:e5:be:2c:f0:
65:46:59:46:b1:78:da:f0:30:44:50:5e:27:8c:30:22:a6:eb:
7f:ae:e3:97:81:81:c2:03:2a:17:80:ef:49:9b:62:21:33:1c:
ec:28:c2:ce:bb:fe:30:7d:1f:cc:23:aa:09:18:f7:29:d5:36:
38:2d:2e:02:9d:df:f8:db:49:46:ec:98:41:6d:4f:81:b8:09:
2e:75:8b:f8:d5:80:d0:a1:ff:d6:76:3d:6f:12:80:c9:56:fa:
5d:9d:71:45:10:2b:98:48:b4:4f:04:bc:95:6e:97:88:38:b9:
af:90:d8:63:86:87:e3:d6:01:d5:f7:78:34:dc:a9:62:2d:f2:
9f:fd:4d:55:50:f5:b2:1f:09:cf:3e:8b:c8:e7:55:d9:f9:18:
5d:51:88:82:5f:0c:fa:28:f3:d3:97:ee:5a:01:e3:9f:d8:e1:
ce:65:4e:f5:5c:3f:05:91:cf:73:66:1b:fe:00:cd:0e:4a:7d:
b2:31:1f:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:53 2024 by rpki-client on console-ams.rpki-client.org