Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0741/77C9168EBD1211E990F4BF2CC4F9AE02/42DA890A92BB11EBA70CA681C4F9AE02.roa
File: 42DA890A92BB11EBA70CA681C4F9AE02.roa (raw, json)
Hash identifier: mut4EFmroZvoJ0sNhllulYrRdO0uLYiIBxirTaPH6zs=
Subject key identifier: 63:E9:BF:C6:DC:5B:27:D3:52:53:AD:79:CD:20:16:8D:D8:FF:F7:D4
Certificate issuer: /CN=A91C0741/serialNumber=37EAEDA4242D50962B87B4A207AC4C344B33060C
Certificate serial: 07B3
Authority key identifier: 37:EA:ED:A4:24:2D:50:96:2B:87:B4:A2:07:AC:4C:34:4B:33:06:0C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N-rtpCQtUJYrh7SiB6xMNEszBgw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C0741/77C9168EBD1211E990F4BF2CC4F9AE02/42DA890A92BB11EBA70CA681C4F9AE02.roa
Signing time: Sat 24 Apr 2021 07:14:02 +0000
ROA not before: Sat 24 Apr 2021 07:14:02 +0000
ROA not after: Sun 01 May 2022 00:00:00 +0000
asID: 132335
IP address blocks: 103.83.192.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1971 (0x7b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C0741/serialNumber=37EAEDA4242D50962B87B4A207AC4C344B33060C
Validity
Not Before: Apr 24 07:14:02 2021 GMT
Not After : May 1 00:00:00 2022 GMT
Subject: CN=6083c539-8b5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:1a:9f:33:77:2a:04:54:17:32:34:1e:14:0c:
16:48:bc:dd:9d:dd:b8:d3:9d:ee:fc:06:b8:51:b6:
d2:89:b5:72:4d:c3:f4:a6:37:64:da:af:c1:24:9f:
b0:6e:7b:e4:8f:01:fa:48:dc:e7:87:6e:cc:6a:6e:
bc:6e:eb:9c:a3:b7:84:20:e5:bf:8e:f3:d0:f0:c5:
87:29:bc:03:7f:80:fc:36:0c:e8:b2:1a:53:dd:27:
39:2c:d3:3c:3a:cc:74:c8:54:7c:ac:04:e2:ef:f6:
78:81:37:7f:26:c1:e3:92:64:77:ac:5d:01:d2:a9:
0a:01:b6:c3:f8:50:38:d5:f7:96:cb:18:b2:66:2b:
90:14:dd:ad:cd:f3:c4:0e:60:e6:0c:74:a3:ca:57:
94:a6:c7:a6:55:f8:c8:1e:43:25:ea:30:43:2a:13:
9b:a4:db:1d:1f:f0:18:43:6d:b3:92:b3:54:76:cb:
29:5f:64:c0:e0:a3:19:19:04:d0:ec:18:1b:50:a1:
c5:48:3e:bd:19:6d:55:70:3f:f8:17:91:cc:bc:b4:
a1:c4:d5:96:08:c3:ec:43:b0:ee:87:a1:0d:4c:09:
21:35:b3:6f:fc:bc:68:bf:1b:6b:24:3f:50:ef:a2:
4f:ae:42:99:23:df:09:18:4c:58:8a:95:61:85:dc:
d0:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:E9:BF:C6:DC:5B:27:D3:52:53:AD:79:CD:20:16:8D:D8:FF:F7:D4
X509v3 Authority Key Identifier:
keyid:37:EA:ED:A4:24:2D:50:96:2B:87:B4:A2:07:AC:4C:34:4B:33:06:0C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C0741/77C9168EBD1211E990F4BF2CC4F9AE02/N-rtpCQtUJYrh7SiB6xMNEszBgw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N-rtpCQtUJYrh7SiB6xMNEszBgw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0741/77C9168EBD1211E990F4BF2CC4F9AE02/42DA890A92BB11EBA70CA681C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.83.192.0/24
Signature Algorithm: sha256WithRSAEncryption
14:90:20:99:20:e7:67:ea:45:02:42:6b:6e:1e:22:72:55:7a:
dc:42:5c:31:43:32:30:0b:75:7a:74:21:cd:37:c7:96:61:2f:
1a:e1:74:a0:4f:42:d7:be:61:b4:9c:0b:a8:75:45:5e:5d:e4:
08:02:d5:90:01:c1:63:53:33:55:d5:e6:18:dc:5f:78:9d:ce:
f2:ed:42:99:be:ee:b5:e9:c3:27:6e:ae:0a:14:7d:01:c6:60:
89:c1:f8:ec:78:ee:5d:56:96:b0:a6:be:7c:ad:16:c8:d2:f4:
ea:8f:92:52:13:f1:eb:6e:bd:23:3d:19:e2:37:b3:a8:65:a6:
6c:ee:aa:9e:d0:2f:ac:93:bc:71:00:77:d8:94:bd:5c:b2:38:
f0:6c:05:de:c9:0c:58:60:75:7f:2a:76:b5:87:91:f1:bc:5b:
65:62:3e:f5:17:13:b0:30:d9:95:44:2f:72:ae:98:ac:f0:af:
76:97:43:24:a2:1b:cc:44:79:87:2e:e7:d8:dc:a1:16:a5:30:
26:67:1b:4f:aa:71:4d:46:85:9d:fd:f5:36:ee:e8:e4:5d:3d:
a2:ae:cb:75:e6:08:64:a7:9b:4d:f7:d9:66:05:2a:96:64:a0:
2c:0c:f1:82:c9:c6:bb:90:2c:69:4b:4b:5b:4a:62:50:5d:43:
44:d0:b8:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:06 2023 by rpki-client on console-fra.rpki-client.org