Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/46CF79C6683E11EDA929A429C4F9AE02.roa
File: 46CF79C6683E11EDA929A429C4F9AE02.roa (raw, json)
Hash identifier: x/jwlpg6/o6BJ1+zhjayXQk2TDWdcz328MClhkm2XhI=
Subject key identifier: EE:FE:54:B6:B8:80:72:86:14:FC:50:A5:63:AA:98:00:43:3B:08:D4
Certificate issuer: /CN=A91A43EE/serialNumber=8EC333757E363A1711B00273250446FE1B4938DB
Certificate serial: 75
Authority key identifier: 8E:C3:33:75:7E:36:3A:17:11:B0:02:73:25:04:46:FE:1B:49:38:DB
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsMzdX42OhcRsAJzJQRG_htJONs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/46CF79C6683E11EDA929A429C4F9AE02.roa
Signing time: Sat 19 Nov 2022 19:13:41 +0000
ROA not before: Sat 19 Nov 2022 19:13:41 +0000
ROA not after: Tue 31 Oct 2023 00:00:00 +0000
asID: 51847
IP address blocks: 103.20.198.0/23 maxlen: 23
103.20.198.0/24 maxlen: 24
103.20.199.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117 (0x75)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A43EE/serialNumber=8EC333757E363A1711B00273250446FE1B4938DB
Validity
Not Before: Nov 19 19:13:41 2022 GMT
Not After : Oct 31 00:00:00 2023 GMT
Subject: CN=63792ae4-c124
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:3f:6e:b1:c6:bd:60:86:44:55:df:0c:03:43:
cb:c5:7d:70:f8:c1:d9:37:11:07:7d:01:65:a1:e0:
11:27:cb:61:bb:4d:58:04:50:a5:34:72:20:73:f1:
8e:65:5e:aa:10:84:3e:5b:7f:5a:fa:e0:38:af:3e:
aa:d6:3e:23:a9:18:f6:ba:e3:fb:2d:46:55:de:bd:
d7:75:a6:30:59:fd:11:4f:03:64:b9:da:97:ed:3d:
98:08:39:84:09:06:c2:68:d0:bf:08:c9:16:6c:56:
4a:4f:a3:19:60:9d:41:b8:3a:4d:11:f3:68:39:ae:
b2:d7:da:72:f4:40:4a:72:fc:ad:33:8e:ce:34:3c:
3e:28:0e:5f:e1:17:fe:4f:74:d3:86:e1:1f:b6:0e:
63:9e:0c:f0:8d:97:ab:23:eb:97:20:c2:30:20:c0:
08:70:6d:e9:63:b4:d3:de:88:fa:da:ba:f6:ed:5a:
5c:81:c1:65:10:75:54:0a:38:b5:1e:14:38:23:88:
3f:4f:6e:36:d5:0e:b3:82:4f:78:7d:06:3c:f4:1b:
88:ab:a7:11:29:b4:b2:96:3f:ff:c4:78:52:94:50:
92:2a:8d:92:96:8e:d6:c6:9a:d5:9d:58:ec:28:4f:
d2:77:30:8d:22:4e:42:33:14:af:ef:e1:b9:de:ca:
0a:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:FE:54:B6:B8:80:72:86:14:FC:50:A5:63:AA:98:00:43:3B:08:D4
X509v3 Authority Key Identifier:
keyid:8E:C3:33:75:7E:36:3A:17:11:B0:02:73:25:04:46:FE:1B:49:38:DB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsMzdX42OhcRsAJzJQRG_htJONs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/46CF79C6683E11EDA929A429C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.20.198.0/23
Signature Algorithm: sha256WithRSAEncryption
15:83:71:56:b0:03:99:72:de:5b:ee:8c:0a:2d:e9:d9:d7:42:
f2:a9:94:6e:8a:62:30:0d:a1:24:b2:3a:2e:76:9c:52:07:19:
5c:94:ed:77:9f:14:ec:eb:ef:f6:83:8a:b2:61:39:73:9b:8c:
64:30:e1:f7:cf:23:8e:87:dd:cd:2f:d7:64:dc:59:a9:79:9b:
db:3b:06:13:89:1b:69:ca:94:43:40:75:1f:54:78:53:de:e0:
3e:dc:bc:48:11:c4:20:f9:d3:9b:0f:b7:78:73:a1:e1:0c:e9:
85:65:82:f3:a6:f9:c1:2f:6a:f9:55:56:a0:97:6a:e1:6d:13:
21:3b:26:40:98:eb:85:22:05:c1:da:1f:bd:79:91:ab:45:94:
70:d6:84:5e:00:76:fd:46:2f:03:22:42:ed:d0:ec:b0:71:90:
b0:7b:06:8c:63:4e:61:f5:58:99:7f:21:2c:de:4a:00:14:fc:
75:25:2c:0e:3e:e4:bf:30:c0:2b:ce:07:96:c6:65:8b:71:3c:
83:fb:32:0b:ad:46:ba:64:7a:21:c1:6b:4e:cf:fa:5c:1d:e4:
9c:74:a2:03:5f:dc:ab:d8:f9:ba:0e:53:c2:81:80:df:78:eb:
70:e7:d2:b2:01:96:da:27:da:00:a0:f3:45:77:af:15:1e:09:
ef:c5:f1:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:36 2024 by rpki-client on console-fra.rpki-client.org