Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5C70/23A0AC06910711EAA3E93A5BC4F9AE02/F0D3F54E87D611EC8232051DC4F9AE02.roa
File: F0D3F54E87D611EC8232051DC4F9AE02.roa (raw, json)
Hash identifier: OFhzXdR8a6lms3TALKZtFP6lX/ztkpQG9L0BhiN+n7Y=
Subject key identifier: 5F:A9:BB:44:5F:53:B5:2C:FC:E0:B2:F2:D3:06:57:84:36:D6:27:FF
Certificate issuer: /CN=A91B5C70/serialNumber=B8E549698953F65E71FB84B6D338C08AC1781A5A
Certificate serial: 0695
Authority key identifier: B8:E5:49:69:89:53:F6:5E:71:FB:84:B6:D3:38:C0:8A:C1:78:1A:5A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uOVJaYlT9l5x-4S20zjAisF4Glo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B5C70/23A0AC06910711EAA3E93A5BC4F9AE02/F0D3F54E87D611EC8232051DC4F9AE02.roa
Signing time: Mon 30 May 2022 22:22:59 +0000
ROA not before: Mon 30 May 2022 22:22:59 +0000
ROA not after: Sun 30 Jul 2023 00:00:00 +0000
asID: 137385
IP address blocks: 103.151.60.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1685 (0x695)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B5C70/serialNumber=B8E549698953F65E71FB84B6D338C08AC1781A5A
Validity
Not Before: May 30 22:22:59 2022 GMT
Not After : Jul 30 00:00:00 2023 GMT
Subject: CN=629543c2-1854
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:20:c3:20:91:7c:11:ed:fc:aa:1c:b0:8e:8a:
f9:d9:01:97:e0:50:22:7e:26:6b:e8:21:2d:18:b4:
59:a1:56:c8:fd:49:a0:c9:20:65:91:e4:48:58:6f:
f1:42:72:bf:24:3b:0d:c5:e6:65:f8:19:bc:cb:32:
79:f1:0e:33:97:c0:7d:b7:1e:e9:5b:31:fb:b5:16:
1a:c9:0c:75:b7:c7:8d:0f:1a:22:ad:4c:d4:f3:56:
70:5f:ad:7f:37:2d:2a:28:18:ff:40:53:73:de:02:
dd:65:00:d0:35:09:0c:93:43:d6:71:97:4d:cc:54:
f8:6c:d8:f9:a7:dd:c9:59:c5:5b:52:57:de:7e:73:
94:75:88:07:b3:95:8c:0f:46:cb:95:66:09:de:65:
bd:08:e8:c9:22:d9:c9:c1:01:2a:21:6e:cf:ae:ed:
34:35:85:1d:00:1e:cf:3c:17:1d:d4:1c:d6:87:56:
14:29:16:52:3f:64:5a:e6:01:42:c5:2d:8e:7c:7a:
6c:82:f9:00:fb:cc:10:5e:bb:4c:9b:f3:09:18:07:
68:65:25:72:a3:13:e3:cf:58:6a:1f:a5:c4:5b:f2:
bb:25:d3:d4:7e:27:ac:f3:f2:7d:26:97:9b:e1:c4:
7e:c8:94:12:7a:96:a3:68:2c:fc:d6:ab:b9:01:4a:
22:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:A9:BB:44:5F:53:B5:2C:FC:E0:B2:F2:D3:06:57:84:36:D6:27:FF
X509v3 Authority Key Identifier:
keyid:B8:E5:49:69:89:53:F6:5E:71:FB:84:B6:D3:38:C0:8A:C1:78:1A:5A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B5C70/23A0AC06910711EAA3E93A5BC4F9AE02/uOVJaYlT9l5x-4S20zjAisF4Glo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uOVJaYlT9l5x-4S20zjAisF4Glo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5C70/23A0AC06910711EAA3E93A5BC4F9AE02/F0D3F54E87D611EC8232051DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.151.60.0/24
Signature Algorithm: sha256WithRSAEncryption
70:63:f6:3c:e0:42:f4:a9:cb:17:d6:3e:10:d2:0d:9b:30:ac:
0b:42:17:b7:77:a9:0e:e4:dc:2b:4d:8d:99:0e:08:e0:c0:c1:
3b:cd:60:ed:90:3e:31:4e:d5:e8:c1:e6:9a:af:e5:95:08:eb:
5b:fc:c4:1a:ec:d2:24:77:ed:8c:e0:38:86:2e:70:bb:57:09:
df:67:92:95:ed:db:70:2e:6b:0b:90:6f:9d:33:10:1f:d3:bf:
4b:f0:f3:f2:ba:aa:b5:c4:19:a3:5d:47:03:14:d3:e8:ca:a6:
21:80:f9:11:87:08:c7:ee:c5:ae:85:f6:53:7e:ea:db:6b:ab:
1e:0e:cc:97:2d:86:d1:ce:40:8e:86:7e:af:7b:68:1b:e5:90:
ee:74:e7:7a:84:78:89:fe:5d:6f:74:56:d7:d9:72:d8:b4:54:
4c:b7:e4:ab:c0:7e:9d:71:2d:b0:69:3e:2e:b4:a4:fa:0a:b5:
df:e8:e5:04:48:d1:83:c5:37:fe:fa:eb:a7:f8:c4:c0:10:67:
7d:d1:2b:10:99:18:a4:08:86:6b:e0:ac:31:ca:ef:57:0e:12:
48:e3:31:62:cd:4a:50:7f:03:eb:59:e5:ee:1a:37:32:16:f0:
62:f7:a4:3d:03:b8:e2:15:96:08:e7:86:19:50:48:7f:6d:1b:
fc:1c:6e:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:57 2024 by rpki-client on console-ams.rpki-client.org