Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8D33/59626710477711EEA6BD537EC4F9AE02/433BC76E477811EEB175181EC4F9AE02.roa
File: 433BC76E477811EEB175181EC4F9AE02.roa (raw, json)
Hash identifier: +9m8aN+zaKzKah8tkxulKpNwpnPeINIr8LLQ8NTKK7g=
Subject key identifier: 35:33:6F:55:19:01:48:18:3F:1F:D6:21:6C:52:8B:6F:DC:E3:D6:27
Certificate issuer: /CN=A91B8D33/serialNumber=08D68CF4500745375FF2CC584BA5FBE577BEE33F
Certificate serial: 04
Authority key identifier: 08:D6:8C:F4:50:07:45:37:5F:F2:CC:58:4B:A5:FB:E5:77:BE:E3:3F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNaM9FAHRTdf8sxYS6X75Xe-4z8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B8D33/59626710477711EEA6BD537EC4F9AE02/433BC76E477811EEB175181EC4F9AE02.roa
Signing time: Wed 30 Aug 2023 21:00:34 +0000
ROA not before: Wed 30 Aug 2023 21:00:34 +0000
ROA not after: Wed 31 Jan 2024 00:00:00 +0000
asID: 15290
IP address blocks: 103.190.70.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B8D33/serialNumber=08D68CF4500745375FF2CC584BA5FBE577BEE33F
Validity
Not Before: Aug 30 21:00:34 2023 GMT
Not After : Jan 31 00:00:00 2024 GMT
Subject: CN=64efadf2-5f0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:1b:63:f3:01:a8:39:53:a0:7a:00:be:9a:a8:
58:0c:72:89:a0:c8:29:42:8c:ad:49:7c:51:f3:b6:
4d:22:38:55:81:dd:fe:15:e1:70:46:88:01:f6:23:
8d:db:97:3d:c8:5d:e4:70:1e:d6:e9:c5:94:cc:72:
72:14:34:4e:ba:cb:e7:32:35:69:3c:7a:0e:75:5e:
bd:f0:f2:d0:f4:98:b7:51:c1:af:15:ca:a6:7c:45:
4c:27:1d:fc:f4:a3:d4:65:63:a5:7d:84:67:4b:13:
c9:f2:98:ae:46:42:df:12:12:d4:e7:4e:85:57:36:
49:a9:3a:63:92:b6:0c:56:e2:cf:95:8d:53:ec:31:
b2:03:74:b3:99:ed:05:cb:c8:cb:53:38:65:b7:3c:
42:54:17:3a:b8:5c:6f:28:f3:c6:37:df:93:d2:cd:
7a:17:10:70:04:df:3d:f0:ee:bb:9f:61:57:eb:96:
e6:ae:ea:ba:ac:b3:8e:ca:eb:09:fc:bc:76:78:f0:
d6:d2:db:fa:7c:70:20:1e:4d:2b:a6:64:06:53:68:
9f:4a:37:7a:e4:64:21:fc:b6:fa:05:03:d2:62:77:
59:b1:46:d5:e8:98:c3:d2:be:f6:18:9f:17:05:1f:
df:5c:87:8d:4f:8c:d7:8d:4b:7f:15:68:78:ba:db:
97:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:33:6F:55:19:01:48:18:3F:1F:D6:21:6C:52:8B:6F:DC:E3:D6:27
X509v3 Authority Key Identifier:
keyid:08:D6:8C:F4:50:07:45:37:5F:F2:CC:58:4B:A5:FB:E5:77:BE:E3:3F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B8D33/59626710477711EEA6BD537EC4F9AE02/CNaM9FAHRTdf8sxYS6X75Xe-4z8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNaM9FAHRTdf8sxYS6X75Xe-4z8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8D33/59626710477711EEA6BD537EC4F9AE02/433BC76E477811EEB175181EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.190.70.0/24
Signature Algorithm: sha256WithRSAEncryption
41:68:33:cd:57:cf:5d:77:4c:e1:3a:5a:35:5c:86:c3:fd:b8:
ba:2d:e6:75:89:62:59:15:60:13:b6:48:83:b3:20:70:42:e9:
c5:ac:04:55:de:8a:25:a6:3c:11:86:c4:dd:e8:01:e7:46:55:
0e:a4:0e:b1:00:5e:67:96:9b:2c:e3:a3:53:1d:df:b1:0a:62:
0a:29:ce:52:4e:34:a8:25:41:76:6e:04:0c:df:e9:9a:3f:45:
bf:6e:09:6d:5c:ed:c2:1b:d4:a6:e3:aa:09:16:3d:45:85:a5:
08:ca:f9:a0:07:94:ce:44:ce:87:cf:b9:a9:7a:cb:57:ed:d9:
46:dd:41:9b:7d:a5:ad:2b:00:07:77:0f:05:73:5d:aa:26:71:
56:2b:0c:ab:ff:3e:d5:62:ce:d6:d2:ff:33:85:48:62:8d:8a:
a3:17:60:13:4f:8d:16:53:d9:de:d1:71:db:6e:84:69:0f:be:
9a:b2:a1:02:55:e5:b8:06:36:2d:93:0a:39:bb:75:27:e3:35:
43:05:11:4d:8f:18:e9:b2:21:6b:64:cd:d2:62:a3:3c:9b:ce:
38:88:c5:d1:0c:3f:b1:13:11:33:46:14:24:2d:5a:ae:b9:b0:
f1:8b:a8:b3:d0:1c:6a:e3:21:57:34:34:c6:a2:cc:f9:75:92:
9b:1f:ee:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:38 2024 by rpki-client on console-fra.rpki-client.org