Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/CB5FBF3E0D8111ECAFB55B79C4F9AE02.roa
File: CB5FBF3E0D8111ECAFB55B79C4F9AE02.roa (raw, json)
Hash identifier: 0PA4AB6kqBFgutqmzjBTGXpU2oS0wjJoWFckcfyqx9o=
Subject key identifier: 74:2A:98:96:71:23:33:93:77:07:DB:66:36:4F:CD:78:4D:58:10:E1
Certificate issuer: /CN=A91B9C52/serialNumber=7905553FECA59030D51918372F1EE17274949FB5
Certificate serial: 0289
Authority key identifier: 79:05:55:3F:EC:A5:90:30:D5:19:18:37:2F:1E:E1:72:74:94:9F:B5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eQVVP-ylkDDVGRg3Lx7hcnSUn7U.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/CB5FBF3E0D8111ECAFB55B79C4F9AE02.roa
Signing time: Sun 24 Jul 2022 14:51:24 +0000
ROA not before: Sun 24 Jul 2022 14:51:24 +0000
ROA not after: Thu 31 Aug 2023 00:00:00 +0000
asID: 55714
IP address blocks: 103.151.236.0/23 maxlen: 23
103.151.236.0/24 maxlen: 24
103.151.237.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 649 (0x289)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B9C52/serialNumber=7905553FECA59030D51918372F1EE17274949FB5
Validity
Not Before: Jul 24 14:51:24 2022 GMT
Not After : Aug 31 00:00:00 2023 GMT
Subject: CN=62dd5c6b-20db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:73:b8:87:cc:b1:2b:97:ae:5d:8e:8e:b6:43:
de:e4:01:61:a8:6f:a5:e3:5e:0e:28:00:93:ca:d4:
8a:5e:61:cb:70:2b:72:2f:4c:7e:9a:37:ea:bd:d2:
05:06:c1:6e:bc:58:0b:29:85:ad:fa:ec:fa:53:6d:
3f:35:e6:cc:c2:e0:7b:86:c4:81:e8:a1:c1:c1:1c:
a7:5f:12:10:f7:5f:d5:92:b8:bf:51:d0:d6:f7:e5:
3c:ab:82:6f:26:04:aa:95:87:9b:6f:76:10:5c:d0:
b4:b6:f8:03:f2:55:7c:f7:bc:63:a5:d7:4b:54:ab:
5a:8e:42:e9:57:81:0a:70:ab:5d:56:58:53:38:48:
96:41:13:6c:38:14:f1:34:2e:1c:b1:18:d8:77:e2:
c8:de:00:a5:a5:97:d3:0d:2a:3d:8e:6e:49:3b:18:
5e:7a:d0:0e:e9:4f:4c:13:85:b4:43:b3:e4:81:2d:
0c:47:d9:fb:7a:9c:7a:08:5e:0d:d3:5c:6e:45:64:
cb:bc:5a:72:56:3b:7a:6b:72:e3:a8:66:7b:9b:43:
c1:22:a9:9e:7f:30:a2:90:65:d5:b2:2f:34:00:bf:
e6:b5:dc:27:50:9b:68:59:d3:9e:a4:c4:90:53:e2:
b0:37:0a:0e:1c:3c:2c:e2:08:98:ca:40:fd:71:ee:
aa:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:2A:98:96:71:23:33:93:77:07:DB:66:36:4F:CD:78:4D:58:10:E1
X509v3 Authority Key Identifier:
keyid:79:05:55:3F:EC:A5:90:30:D5:19:18:37:2F:1E:E1:72:74:94:9F:B5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/eQVVP-ylkDDVGRg3Lx7hcnSUn7U.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eQVVP-ylkDDVGRg3Lx7hcnSUn7U.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/CB5FBF3E0D8111ECAFB55B79C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.151.236.0/23
Signature Algorithm: sha256WithRSAEncryption
a3:3d:73:11:ff:93:f8:55:08:71:99:17:87:0d:cd:14:2f:f0:
e8:48:40:c9:0f:89:09:1d:13:55:69:e6:02:75:db:e7:5c:ce:
ea:99:20:63:bd:ec:55:9e:fd:0c:8a:14:1e:b2:6b:51:d0:fa:
28:a3:b5:dc:d7:0a:98:b1:4a:ac:cc:a3:60:38:5b:b3:c5:76:
86:ca:42:31:1f:ae:02:3d:37:c0:d5:d1:08:c7:eb:d9:75:8e:
f6:99:5d:69:80:77:88:20:50:5c:03:61:1c:75:ed:a0:d6:02:
12:a0:01:3f:54:5e:19:8e:bc:5b:c5:86:4d:f2:61:08:52:6c:
0f:28:44:b4:36:73:47:c9:7d:f6:84:ed:cc:fa:bd:80:3d:7e:
6b:9c:cb:9b:50:8b:67:98:8e:1a:6e:f5:76:96:fa:4a:38:54:
b0:32:2b:5f:b7:12:84:7c:3d:9d:a0:ee:de:8a:b7:78:28:24:
85:c3:fe:db:27:0b:ce:b4:bc:bb:a3:98:57:f1:c3:f6:d0:4f:
7d:4f:7a:0d:dc:8b:80:a1:c9:12:3f:06:d6:c5:98:c0:0d:c6:
f1:56:d7:fb:b2:a4:8f:62:91:a3:0e:f9:b5:68:bd:b2:ae:69:
c6:88:44:93:9b:a5:16:bc:e0:0c:3c:d7:6d:19:dd:38:44:59:
e9:b4:75:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:38 2024 by rpki-client on console-fra.rpki-client.org