Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B98F0/8A1AE1F4672C11EA8393DF25C4F9AE02/746708E42D9411ECB9658E7FC4F9AE02.roa
File: 746708E42D9411ECB9658E7FC4F9AE02.roa (raw, json)
Hash identifier: rqw0X1Z2VFhDzeP9Q4E1pUAGMpG4Y+kXk/jU3Mk5ilk=
Subject key identifier: B2:D5:D3:42:24:6E:04:90:7B:92:50:0D:25:56:E7:D8:1F:60:CF:CE
Certificate issuer: /CN=A91B98F0/serialNumber=9ED2E1A2405C99EE75E7C3903DF7240CAAABFB25
Certificate serial: 05A7
Authority key identifier: 9E:D2:E1:A2:40:5C:99:EE:75:E7:C3:90:3D:F7:24:0C:AA:AB:FB:25
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntLhokBcme5158OQPfckDKqr-yU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B98F0/8A1AE1F4672C11EA8393DF25C4F9AE02/746708E42D9411ECB9658E7FC4F9AE02.roa
Signing time: Fri 15 Oct 2021 08:46:58 +0000
ROA not before: Fri 15 Oct 2021 08:46:58 +0000
ROA not after: Fri 01 Jul 2022 00:00:00 +0000
asID: 32167
IP address blocks: 103.149.144.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1447 (0x5a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B98F0/serialNumber=9ED2E1A2405C99EE75E7C3903DF7240CAAABFB25
Validity
Not Before: Oct 15 08:46:58 2021 GMT
Not After : Jul 1 00:00:00 2022 GMT
Subject: CN=61694001-e565
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:7c:1f:1a:e2:ff:1d:bd:bf:84:de:85:42:8f:
d7:8d:99:a5:5e:3a:f6:77:80:91:f6:2f:ad:de:15:
d4:64:fe:1a:e9:fe:da:8c:05:46:14:4c:a6:69:cb:
79:28:3b:01:6d:b2:41:8a:2b:36:ed:34:4f:56:16:
75:7b:fb:b7:d5:3f:79:16:13:f0:4b:88:a2:8a:20:
15:d7:7c:8e:b4:e6:4f:4e:5b:72:78:2e:d2:7f:0d:
88:39:3c:26:58:8e:bb:89:9e:5e:8a:5a:72:34:0b:
1a:03:ce:10:c1:a9:5a:7f:e4:11:52:9b:28:01:46:
81:85:99:e9:8f:91:5b:a7:54:e9:24:77:d6:fa:ba:
7b:38:e5:5d:ad:b9:bd:fe:cc:45:56:c4:fd:2d:f5:
1f:c5:0c:3d:a0:cc:fe:d3:71:44:5f:00:40:58:6f:
30:ed:f2:02:57:e4:fa:af:2e:50:42:b2:ed:19:5c:
9e:1f:7c:c9:06:f9:c1:3a:e7:fa:5d:a4:30:bb:6b:
c8:54:97:48:2d:0d:96:b8:41:76:c6:85:85:4c:e8:
13:c7:b6:b0:1e:38:6b:b4:e3:0b:e8:18:62:d4:88:
e1:52:09:d3:b4:93:3b:ce:a6:e8:14:a4:40:dc:86:
9f:b1:11:c4:c2:78:83:f0:7d:a8:35:27:50:33:f5:
2a:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:D5:D3:42:24:6E:04:90:7B:92:50:0D:25:56:E7:D8:1F:60:CF:CE
X509v3 Authority Key Identifier:
keyid:9E:D2:E1:A2:40:5C:99:EE:75:E7:C3:90:3D:F7:24:0C:AA:AB:FB:25
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B98F0/8A1AE1F4672C11EA8393DF25C4F9AE02/ntLhokBcme5158OQPfckDKqr-yU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntLhokBcme5158OQPfckDKqr-yU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B98F0/8A1AE1F4672C11EA8393DF25C4F9AE02/746708E42D9411ECB9658E7FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.149.144.0/23
Signature Algorithm: sha256WithRSAEncryption
27:1f:9f:87:34:f6:0c:56:1b:0f:f8:5a:7a:3a:73:82:22:d8:
ff:af:13:75:d2:07:9e:95:92:e3:3f:1a:f8:56:fe:74:1a:60:
2f:ed:5c:86:0b:d7:40:55:31:46:cb:ae:2c:2d:8d:37:03:36:
27:71:82:42:55:db:9a:46:37:ac:65:00:b0:bb:7f:a2:0a:8c:
f9:52:dd:0a:b4:28:db:21:da:f3:c6:fd:fb:e3:10:65:8e:cd:
bb:66:d4:c6:da:41:ab:c4:3d:34:6a:c8:b8:d6:d6:55:7c:d2:
1b:f7:84:30:d1:ef:59:4d:18:96:a7:ab:6c:19:18:a7:33:1d:
38:bd:d3:3e:75:d8:39:bf:19:45:05:c9:71:cb:64:cb:c2:4f:
e9:83:3b:c5:f8:cb:43:40:8d:54:c2:a0:57:eb:93:8b:b4:b6:
ff:0d:43:f6:72:a0:ec:f7:47:e9:85:1f:77:9e:bc:5e:55:21:
db:29:db:77:72:7e:24:c6:06:09:ba:7e:5a:59:33:b2:28:31:
90:99:d6:cd:c1:41:80:8a:8e:5c:e8:7a:33:6a:10:6b:87:e2:
a4:7a:c6:6f:54:10:8c:0a:75:2e:54:29:00:a4:bf:31:e0:a4:
4f:5e:b9:c0:20:13:9a:ea:5a:58:eb:3d:df:a1:1e:62:da:a9:
03:da:50:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:05 2023 by rpki-client on console-fra.rpki-client.org