Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC510/EC31E258BD1111EAB380A722C4F9AE02/AD35BE80E84911EBB07EFF37C4F9AE02.roa
File: AD35BE80E84911EBB07EFF37C4F9AE02.roa (raw, json)
Hash identifier: 3OfaWulQzjOHyMLoCYG9RywBeUDOeeFLdIw2ZTwa5p0=
Subject key identifier: 7A:5B:4A:F2:16:C0:3B:0B:FE:3B:F1:1A:22:63:CC:40:3D:24:7D:08
Certificate issuer: /CN=A91CC510/serialNumber=F61D9BA30AE355C803F80DCCF2C415DE007D7953
Certificate serial: 03A8
Authority key identifier: F6:1D:9B:A3:0A:E3:55:C8:03:F8:0D:CC:F2:C4:15:DE:00:7D:79:53
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9h2bowrjVcgD-A3M8sQV3gB9eVM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CC510/EC31E258BD1111EAB380A722C4F9AE02/AD35BE80E84911EBB07EFF37C4F9AE02.roa
Signing time: Thu 09 Sep 2021 23:28:26 +0000
ROA not before: Thu 09 Sep 2021 23:28:26 +0000
ROA not after: Mon 31 Oct 2022 00:00:00 +0000
asID: 17920
IP address blocks: 103.152.226.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 936 (0x3a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CC510/serialNumber=F61D9BA30AE355C803F80DCCF2C415DE007D7953
Validity
Not Before: Sep 9 23:28:26 2021 GMT
Not After : Oct 31 00:00:00 2022 GMT
Subject: CN=613a989a-abc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:bd:c1:2b:34:46:91:e7:34:ad:23:e1:e4:30:
35:93:81:b7:60:0b:14:47:36:1c:14:a2:05:12:24:
38:14:43:af:48:c4:c6:8b:56:e6:48:3d:72:84:38:
77:3e:e2:d1:ad:c5:22:5b:79:22:e8:57:a3:9a:79:
85:62:1d:4e:53:f5:15:a5:ad:59:a7:18:a9:34:1b:
21:00:06:82:5e:b2:fe:b0:4d:61:69:f0:9e:b1:eb:
db:da:d5:b9:da:1d:40:db:c1:27:81:df:99:74:6c:
18:b4:8f:ce:f4:2e:4f:fb:80:e3:0f:eb:dd:5a:b6:
02:8a:e5:34:31:20:ed:7a:5b:b6:28:b1:80:8d:a4:
e5:3f:17:66:cc:57:29:2d:43:77:9b:55:56:2e:cc:
9f:81:47:b5:71:c4:ab:1b:24:1e:31:fb:55:07:8d:
b1:36:61:06:51:27:f1:14:7c:d6:8e:99:8e:e2:77:
54:7d:82:76:34:37:9d:c1:ca:14:ab:94:3f:da:e8:
10:99:44:87:4d:9c:49:e1:48:01:92:a8:f4:87:65:
6c:3d:52:09:7b:0b:49:33:7d:3d:16:d8:c6:11:f7:
8c:ac:81:88:a5:85:09:91:5a:34:10:e5:c5:a5:d4:
e7:20:f7:ee:d6:f1:7e:38:17:b6:20:51:f4:b0:d0:
82:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:5B:4A:F2:16:C0:3B:0B:FE:3B:F1:1A:22:63:CC:40:3D:24:7D:08
X509v3 Authority Key Identifier:
keyid:F6:1D:9B:A3:0A:E3:55:C8:03:F8:0D:CC:F2:C4:15:DE:00:7D:79:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CC510/EC31E258BD1111EAB380A722C4F9AE02/9h2bowrjVcgD-A3M8sQV3gB9eVM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9h2bowrjVcgD-A3M8sQV3gB9eVM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC510/EC31E258BD1111EAB380A722C4F9AE02/AD35BE80E84911EBB07EFF37C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.152.226.0/23
Signature Algorithm: sha256WithRSAEncryption
95:d7:74:43:48:a9:cd:cd:81:3b:b5:33:f6:9a:84:1c:33:a5:
44:f0:d9:26:d1:71:37:a0:d9:25:60:46:53:f2:df:d8:bb:7d:
8c:d4:d6:97:b6:5d:31:6f:b6:c3:15:4f:5d:62:6f:14:88:94:
d0:c2:f9:4a:4c:a5:ba:1e:7b:05:bd:15:e9:d2:9e:67:96:d1:
df:a5:7e:13:91:14:fc:a4:c7:bd:78:8d:27:fe:d0:a3:16:ed:
1e:a7:a8:00:d3:0a:43:f4:a0:58:e1:9a:3e:53:fa:b1:49:83:
46:25:e9:91:c2:a6:b8:28:b8:d3:71:e9:4d:69:b7:49:85:6b:
de:49:27:0d:aa:e7:96:2f:33:77:aa:04:43:31:62:57:ce:82:
4c:d6:f5:fa:ae:09:e5:8c:f2:39:c6:74:b4:4d:92:be:e4:dc:
c7:b8:8b:2d:0f:d3:17:5a:80:e8:86:36:5c:e6:26:cd:a9:b6:
d5:70:d5:62:6a:76:7d:8b:e7:02:46:21:99:39:e9:9b:2f:03:
f7:a8:ed:43:e5:31:01:22:78:6d:57:5b:11:56:7f:6f:71:d6:
55:58:40:cf:ec:13:60:e9:6a:ea:f8:99:fa:46:33:e5:1f:ed:
29:79:ee:7c:bc:94:68:2a:5a:84:d2:b0:35:45:61:36:a4:83:
c6:94:70:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:06 2023 by rpki-client on console-ams.rpki-client.org