Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C05AD/95BE3BD61D3311ED96A10A60C4F9AE02/64157A003AD311ED90A7690EC4F9AE02.roa
File: 64157A003AD311ED90A7690EC4F9AE02.roa (raw, json)
Hash identifier: U+i+dlEJSAqbdBk4ly9O5DvVIqy2qkZWpvjk/ItsfsM=
Subject key identifier: 3F:00:89:CB:17:1E:7F:89:58:06:52:F8:D9:2E:10:55:E2:47:20:DB
Certificate issuer: /CN=A91C05AD/serialNumber=F512AD663A63326355CA8D8E9100B3CEAB3CB9FB
Certificate serial: 5A
Authority key identifier: F5:12:AD:66:3A:63:32:63:55:CA:8D:8E:91:00:B3:CE:AB:3C:B9:FB
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9RKtZjpjMmNVyo2OkQCzzqs8ufs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C05AD/95BE3BD61D3311ED96A10A60C4F9AE02/64157A003AD311ED90A7690EC4F9AE02.roa
Signing time: Fri 23 Sep 2022 00:05:11 +0000
ROA not before: Fri 23 Sep 2022 00:05:11 +0000
ROA not after: Fri 01 Dec 2023 00:00:00 +0000
asID: 138926
IP address blocks: 103.111.38.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90 (0x5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C05AD/serialNumber=F512AD663A63326355CA8D8E9100B3CEAB3CB9FB
Validity
Not Before: Sep 23 00:05:11 2022 GMT
Not After : Dec 1 00:00:00 2023 GMT
Subject: CN=632cf837-4643
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:d9:a1:f6:d4:94:99:fb:c4:ab:f1:5b:cc:f2:
28:08:dc:57:1e:f9:ae:1c:5c:57:de:6d:3a:cc:91:
f5:ec:f5:5f:c4:ad:4f:13:77:e1:05:11:39:92:a3:
df:18:0b:cc:e5:56:46:91:f4:1c:46:cd:c4:00:5c:
89:f9:6a:e8:f5:25:85:06:6e:b7:09:b5:b9:39:21:
0f:93:27:0a:db:76:e6:ac:bc:d3:34:38:2d:11:40:
d5:b4:14:12:5e:fe:ad:a9:eb:e4:43:73:f7:9e:2b:
b4:20:df:77:d7:c7:74:2d:af:5d:76:74:de:19:cb:
98:f4:02:fe:d1:ce:1d:27:fa:24:ed:4c:08:00:61:
4d:50:f4:20:94:30:e4:b0:a5:2b:66:84:a4:fb:ab:
16:9d:00:81:9f:b6:ee:9d:34:d6:28:ab:ca:d1:d7:
84:f2:f4:a4:39:07:50:7f:77:12:89:5e:7a:32:ae:
44:b5:96:cd:1d:d8:d0:ff:b4:dd:ba:af:37:4c:70:
bb:b6:39:d6:26:6e:ed:b5:23:d7:44:13:fb:e0:b7:
86:1e:b2:87:ba:0b:87:49:4b:f8:1d:c5:39:f9:9b:
f4:fc:95:05:34:d5:aa:5c:84:92:27:66:aa:28:48:
30:95:fb:76:07:86:e5:70:17:a5:0c:04:05:4b:b9:
6c:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:00:89:CB:17:1E:7F:89:58:06:52:F8:D9:2E:10:55:E2:47:20:DB
X509v3 Authority Key Identifier:
keyid:F5:12:AD:66:3A:63:32:63:55:CA:8D:8E:91:00:B3:CE:AB:3C:B9:FB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C05AD/95BE3BD61D3311ED96A10A60C4F9AE02/9RKtZjpjMmNVyo2OkQCzzqs8ufs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9RKtZjpjMmNVyo2OkQCzzqs8ufs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C05AD/95BE3BD61D3311ED96A10A60C4F9AE02/64157A003AD311ED90A7690EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.111.38.0/24
Signature Algorithm: sha256WithRSAEncryption
92:04:c6:36:d0:ec:da:31:ed:c7:7e:d4:f9:b0:40:e4:c6:b6:
14:6c:2b:e5:5a:76:f6:36:ac:b4:e2:00:93:84:da:da:94:ab:
59:c0:42:3d:7a:d2:74:e4:e7:82:cb:84:ba:2a:ef:4f:1d:28:
55:9c:49:73:29:24:c4:f6:d6:dd:c7:2e:51:b6:b5:23:90:af:
4b:47:88:d1:16:29:aa:59:4b:d3:a4:80:20:2c:23:19:64:2f:
f3:6f:b3:a5:d5:63:5b:0d:fa:9c:fe:23:b9:4a:7d:c9:c4:23:
ce:ec:2b:f5:bf:bb:7e:65:21:bf:9b:1e:3b:f2:24:ef:7f:30:
96:39:31:44:13:65:49:aa:78:9e:f4:c4:a5:c7:1e:7b:13:fc:
cf:07:b8:cb:33:17:5a:9c:aa:eb:e0:ec:bb:2a:e8:31:a7:0a:
cf:40:67:f0:ab:00:e1:8b:39:9d:b1:33:95:dd:9f:44:8b:62:
c9:6d:55:9b:8f:89:78:7f:28:f4:23:93:2f:8d:44:47:38:4c:
ee:87:2d:b6:ea:20:f1:bd:3f:b3:71:d2:fe:fe:e3:6e:a5:3a:
16:90:3d:d4:30:00:e7:3a:82:76:76:12:d9:4d:ea:ee:49:6a:
fa:81:f3:77:04:ea:5f:1a:5f:bc:b0:cc:98:ec:2c:01:63:40:
4a:76:b6:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:24 2024 by rpki-client on console-ams.rpki-client.org