Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A93BB/9451D3724A0411EDB6EA9576C4F9AE02/7AAC8132506811EDA4492E54C4F9AE02.roa
File: 7AAC8132506811EDA4492E54C4F9AE02.roa (raw, json)
Hash identifier: j3nO2CUZwN7f63np9gBWn626hZNPF2GElIm6tBaTCEo=
Subject key identifier: DF:AB:37:85:F1:93:0D:1D:8C:1C:75:71:22:A3:11:CC:16:83:59:85
Certificate issuer: /CN=A91A93BB/serialNumber=F3E5E256D2EC5CA67F8A19BE5A1B2829B137581F
Certificate serial: 08
Authority key identifier: F3:E5:E2:56:D2:EC:5C:A6:7F:8A:19:BE:5A:1B:28:29:B1:37:58:1F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8-XiVtLsXKZ_ihm-WhsoKbE3WB8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A93BB/9451D3724A0411EDB6EA9576C4F9AE02/7AAC8132506811EDA4492E54C4F9AE02.roa
Signing time: Thu 20 Oct 2022 11:15:18 +0000
ROA not before: Thu 20 Oct 2022 11:15:18 +0000
ROA not after: Fri 01 Dec 2023 00:00:00 +0000
asID: 137453
IP address blocks: 103.151.74.0/23 maxlen: 23
103.151.74.0/24 maxlen: 24
103.151.75.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8 (0x8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A93BB/serialNumber=F3E5E256D2EC5CA67F8A19BE5A1B2829B137581F
Validity
Not Before: Oct 20 11:15:18 2022 GMT
Not After : Dec 1 00:00:00 2023 GMT
Subject: CN=63512dc6-e581
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:2a:c1:8b:7a:fd:3d:0b:4f:a0:fe:c5:f0:ca:
fc:60:c2:30:09:6d:88:be:0d:e2:ba:1b:a9:0d:63:
d8:81:7d:24:3d:67:68:0d:5e:c0:8a:1e:1e:0b:76:
8f:94:35:03:e3:75:d6:99:11:19:5c:20:03:90:3b:
f2:eb:1c:75:d4:92:e0:a3:41:4d:ac:6b:a2:18:73:
0b:ac:72:ac:1d:42:7c:be:e8:b7:6b:0d:93:fb:87:
fb:be:24:c6:2a:25:e6:29:58:5f:68:c0:12:68:cf:
d0:f0:34:87:ca:45:b3:35:22:ea:0e:a3:db:7d:e6:
3b:21:c6:bf:e9:02:c8:2e:23:32:67:22:d6:48:5c:
d8:fc:b6:97:5b:b6:a8:37:da:fc:f9:c5:b4:0f:b9:
00:a7:72:0d:d4:f0:5e:62:3a:6a:80:62:95:93:ec:
15:51:03:90:d8:68:c9:6e:95:da:01:bc:f1:52:b0:
4d:d0:58:ae:6b:63:da:d5:9e:55:5b:d7:80:37:56:
48:c0:1e:e6:7e:95:c4:71:a9:64:cb:55:d8:8f:ce:
b1:b4:63:aa:ba:99:7d:ac:a8:9d:83:63:d4:4e:3c:
ab:e8:50:e7:d5:fb:7b:06:60:78:0a:69:ac:fa:ed:
04:88:93:ea:b4:b2:99:f9:5c:7a:45:57:a7:ec:6a:
3d:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:AB:37:85:F1:93:0D:1D:8C:1C:75:71:22:A3:11:CC:16:83:59:85
X509v3 Authority Key Identifier:
keyid:F3:E5:E2:56:D2:EC:5C:A6:7F:8A:19:BE:5A:1B:28:29:B1:37:58:1F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A93BB/9451D3724A0411EDB6EA9576C4F9AE02/8-XiVtLsXKZ_ihm-WhsoKbE3WB8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8-XiVtLsXKZ_ihm-WhsoKbE3WB8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A93BB/9451D3724A0411EDB6EA9576C4F9AE02/7AAC8132506811EDA4492E54C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.151.74.0/23
Signature Algorithm: sha256WithRSAEncryption
20:e7:01:53:ef:a0:4a:e6:0c:fa:8c:44:f2:42:1c:b2:86:0a:
ad:43:7e:7a:54:9f:3b:70:2a:46:b0:39:b2:1b:6f:8e:ca:dc:
12:67:a6:27:b7:ca:d9:29:20:21:27:0a:36:32:51:a7:11:96:
53:5e:c6:aa:57:f4:9c:76:15:79:c4:a6:e9:2a:93:0e:24:0a:
94:c4:ff:23:95:42:0e:3a:de:98:e0:b3:fc:1c:3a:66:84:49:
95:a1:73:b7:17:dc:44:6e:b8:5a:ae:ec:00:4f:af:19:05:d5:
87:6a:41:da:23:73:95:2e:80:2a:78:52:95:91:e9:ca:79:74:
88:af:b4:e5:33:72:64:7d:18:4e:fe:84:f9:16:5c:47:46:72:
85:ed:54:9d:ee:15:2e:27:40:e7:c0:b1:d4:cb:43:89:4f:5e:
28:68:81:9d:99:06:b1:19:bb:8e:1a:91:da:e2:df:b9:49:b1:
46:06:68:4e:6f:7c:46:eb:9e:a1:3c:7f:50:48:8c:f5:22:24:
77:b2:e5:a8:a5:4c:33:9d:74:dc:d8:70:80:e3:13:c0:b1:dc:
4b:71:80:68:16:bd:d8:25:65:b2:75:3b:3b:65:98:32:dc:15:
0d:47:ae:f8:b7:c5:64:26:c3:ae:08:12:b0:d2:a0:0b:38:24:
9a:fd:67:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:37 2024 by rpki-client on console-fra.rpki-client.org