Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC510/EC31E258BD1111EAB380A722C4F9AE02/BF29525CE1BA11EDBB06AC74C4F9AE02.roa
File: BF29525CE1BA11EDBB06AC74C4F9AE02.roa (raw, json)
Hash identifier: oEa9MAuD50hIi2DUmpVq0HlZGgmQvLmYjVPJkLQWoVg=
Subject key identifier: 6B:54:D0:4A:84:53:B4:F2:07:6F:F1:AA:48:C7:A4:1E:40:D3:A8:B2
Certificate issuer: /CN=A91CC510/serialNumber=F61D9BA30AE355C803F80DCCF2C415DE007D7953
Certificate serial: 0726
Authority key identifier: F6:1D:9B:A3:0A:E3:55:C8:03:F8:0D:CC:F2:C4:15:DE:00:7D:79:53
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9h2bowrjVcgD-A3M8sQV3gB9eVM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CC510/EC31E258BD1111EAB380A722C4F9AE02/BF29525CE1BA11EDBB06AC74C4F9AE02.roa
Signing time: Sun 23 Apr 2023 09:39:31 +0000
ROA not before: Sun 23 Apr 2023 09:39:31 +0000
ROA not after: Tue 31 Oct 2023 00:00:00 +0000
asID: 24144
IP address blocks: 103.152.226.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1830 (0x726)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CC510/serialNumber=F61D9BA30AE355C803F80DCCF2C415DE007D7953
Validity
Not Before: Apr 23 09:39:31 2023 GMT
Not After : Oct 31 00:00:00 2023 GMT
Subject: CN=6444fcd2-7d29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:d6:3e:f6:b7:c6:4f:9c:26:52:96:4a:4f:32:
29:f9:c6:fa:db:20:7b:5c:a8:84:c2:df:b2:1d:17:
0b:16:dd:e5:f8:2a:9e:02:84:ec:49:31:9e:01:51:
46:02:89:87:22:3b:8f:d5:4e:5c:2b:bd:91:37:1d:
ba:2b:93:5a:bd:6d:a0:09:16:ee:59:f0:73:de:cf:
05:e3:65:1e:64:f8:dd:a2:5e:47:0c:b5:8a:c3:a4:
6b:84:03:15:e1:6f:51:8f:7e:f5:27:2d:6f:ce:10:
f6:48:0b:f4:c0:86:81:41:3c:f1:99:33:a7:5e:e8:
71:1b:6f:11:07:a9:13:a1:d6:91:ec:b5:d0:21:d7:
1b:62:e7:12:4e:66:ad:96:fb:80:fd:d9:ca:46:6a:
62:8c:03:6d:52:6a:63:b6:38:b3:a9:07:bf:77:6b:
13:29:ef:60:20:5d:36:4d:56:dd:05:2c:85:dd:06:
bc:95:af:68:d2:ff:26:5c:31:3b:c5:90:de:b5:31:
11:db:89:50:18:ca:06:90:b9:2f:e1:08:e1:b2:de:
0b:e1:d3:e1:49:e7:f8:2e:1a:61:ad:c3:c5:ae:99:
6a:70:3c:5b:18:32:c9:0e:c4:11:b3:03:66:00:04:
ee:94:85:44:bb:7a:3f:56:d6:49:fc:60:37:95:1f:
26:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:54:D0:4A:84:53:B4:F2:07:6F:F1:AA:48:C7:A4:1E:40:D3:A8:B2
X509v3 Authority Key Identifier:
keyid:F6:1D:9B:A3:0A:E3:55:C8:03:F8:0D:CC:F2:C4:15:DE:00:7D:79:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CC510/EC31E258BD1111EAB380A722C4F9AE02/9h2bowrjVcgD-A3M8sQV3gB9eVM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9h2bowrjVcgD-A3M8sQV3gB9eVM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC510/EC31E258BD1111EAB380A722C4F9AE02/BF29525CE1BA11EDBB06AC74C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.152.226.0/24
Signature Algorithm: sha256WithRSAEncryption
57:ba:0d:56:4e:a8:fd:fb:ab:75:fd:61:ff:01:37:62:d7:52:
0e:d7:6f:11:d8:f5:15:b8:eb:71:eb:7e:45:62:66:4e:2c:39:
be:c7:67:07:93:e4:59:04:12:90:d1:93:b3:4f:87:ab:61:0e:
1a:31:25:28:2b:70:08:b1:a6:54:27:a9:d0:a1:2a:48:03:e7:
51:0f:65:8a:fa:06:45:44:bf:83:32:71:52:c3:12:90:4a:d8:
d3:b1:8d:ba:2e:4d:9f:13:1c:48:6a:d5:df:6b:29:6e:4f:fb:
4d:a0:85:a7:a5:2c:1d:e3:e4:42:40:f4:47:b2:1d:6b:e3:e6:
72:d7:d5:bb:3e:cd:fd:9a:63:da:d0:ad:91:08:f4:9a:e0:57:
16:b5:9f:a4:1f:a5:80:bc:ab:b4:2d:a3:37:6f:ff:5a:43:ee:
29:7a:ba:72:6f:5b:6e:0c:ca:29:58:84:70:a9:f6:23:77:04:
4e:e4:33:be:6c:4a:45:41:4c:43:d4:ad:88:da:5d:24:dd:df:
2a:ae:bf:59:e3:4e:08:fb:14:b3:a6:48:1d:4b:b3:fd:30:c5:
66:aa:2c:ae:3c:89:4f:3d:0a:e2:a4:6e:55:9b:34:58:ff:ed:
59:19:b0:5e:2b:72:e4:d4:88:e8:72:2b:49:c9:c1:dd:eb:a8:
cc:7b:b6:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:41 2024 by rpki-client on console-fra.rpki-client.org