Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCF10/EC67333E609011EDA6791A0DC4F9AE02/FA78778E678511ED81F30F87C4F9AE02.roa
File: FA78778E678511ED81F30F87C4F9AE02.roa (raw, json)
Hash identifier: jBGCv9YrjKgGz5E9Cklq6+jot4VstuTuxLpmGgoYmJg=
Subject key identifier: 26:C9:99:00:D4:C5:00:37:A2:E1:4F:E9:58:63:CD:D2:5C:1A:93:4A
Certificate issuer: /CN=A91CCF10/serialNumber=B8EA71D04EC836E8180873C9E9D40CD2E3553701
Certificate serial: 0E
Authority key identifier: B8:EA:71:D0:4E:C8:36:E8:18:08:73:C9:E9:D4:0C:D2:E3:55:37:01
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uOpx0E7INugYCHPJ6dQM0uNVNwE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CCF10/EC67333E609011EDA6791A0DC4F9AE02/FA78778E678511ED81F30F87C4F9AE02.roa
Signing time: Fri 18 Nov 2022 21:14:25 +0000
ROA not before: Fri 18 Nov 2022 21:14:25 +0000
ROA not after: Fri 01 Mar 2024 00:00:00 +0000
asID: 150413
IP address blocks: 103.37.6.0/24 maxlen: 24
103.37.7.0/24 maxlen: 24
2001:df1:82c0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14 (0xe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CCF10/serialNumber=B8EA71D04EC836E8180873C9E9D40CD2E3553701
Validity
Not Before: Nov 18 21:14:25 2022 GMT
Not After : Mar 1 00:00:00 2024 GMT
Subject: CN=6377f5b1-8958
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:c4:be:17:e0:01:3a:c4:8e:8a:26:65:99:91:
a1:26:1d:96:d7:af:09:bb:b2:a6:b9:70:81:07:4c:
7c:b3:4c:e4:ba:7f:85:46:35:89:61:a4:23:99:53:
d6:86:1f:8e:cd:46:17:ad:c8:cc:2f:2f:2d:c6:ac:
1f:f4:2e:70:1e:54:ca:3c:af:20:1f:bb:74:29:a4:
4c:44:02:af:25:78:75:9a:f3:0d:80:79:b6:c0:dd:
3a:72:b7:1e:35:5e:c0:0d:da:cd:50:b7:f3:39:bd:
10:21:c3:3f:89:79:42:b5:d4:31:5c:d4:25:13:0a:
82:8e:cc:e9:28:0c:ea:54:b2:51:64:fa:f2:d7:15:
43:c3:b4:39:f8:ac:87:7d:b5:bf:38:6a:9c:2d:83:
e0:04:db:c5:5f:30:70:7c:fe:fc:52:28:68:a7:58:
f6:5a:77:97:e3:2b:94:55:ea:12:24:3b:01:91:b4:
db:bd:09:97:80:a1:1b:2c:b3:1b:0e:de:5e:d2:5f:
81:bb:e5:be:a0:88:85:b5:92:b4:ee:d8:d3:cb:fb:
b9:3f:28:73:98:0e:8d:a1:56:65:b3:8d:61:d0:1e:
d2:eb:a2:48:cd:87:bc:28:c9:da:b5:47:20:3b:e3:
b6:23:32:97:a9:7b:d2:57:40:5d:d8:ae:b3:88:6d:
40:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:C9:99:00:D4:C5:00:37:A2:E1:4F:E9:58:63:CD:D2:5C:1A:93:4A
X509v3 Authority Key Identifier:
keyid:B8:EA:71:D0:4E:C8:36:E8:18:08:73:C9:E9:D4:0C:D2:E3:55:37:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CCF10/EC67333E609011EDA6791A0DC4F9AE02/uOpx0E7INugYCHPJ6dQM0uNVNwE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uOpx0E7INugYCHPJ6dQM0uNVNwE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCF10/EC67333E609011EDA6791A0DC4F9AE02/FA78778E678511ED81F30F87C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.37.6.0/23
IPv6:
2001:df1:82c0::/48
Signature Algorithm: sha256WithRSAEncryption
79:95:29:fb:1d:f9:09:e5:14:10:85:40:f3:d6:51:94:0b:be:
4b:c6:1f:b5:10:36:1f:84:89:70:dc:5c:16:90:01:80:6b:61:
37:7a:62:08:0b:0f:c4:da:b0:35:8a:f5:53:a5:b1:5e:d7:c4:
b9:5d:ae:22:a1:da:cb:9f:57:4b:4b:eb:e7:94:50:74:04:cf:
8b:ac:77:7d:c4:58:fe:17:83:40:47:06:8e:0d:f6:cf:b2:51:
65:48:3a:a1:d8:28:f7:03:49:92:39:bb:3b:b0:df:95:b2:3a:
65:4c:76:1c:9a:a6:eb:ae:3d:5e:16:a9:d7:ab:da:b3:22:80:
e9:45:b6:82:fe:31:ab:bc:ef:40:d7:f6:cd:fd:0f:59:d8:d3:
f6:fb:89:29:4c:7f:d6:3c:b7:bb:16:c2:29:fd:9d:75:cb:8e:
82:2a:94:4e:d7:33:bc:d2:c9:a7:44:d2:11:84:c8:6b:8a:bf:
0f:e5:5e:c0:e0:5c:66:d7:15:09:99:3c:ea:d4:6c:1f:f8:25:
ec:dc:77:97:e6:b4:a2:29:62:77:17:66:52:52:97:72:e6:0b:
ab:19:1c:6b:da:a7:06:93:4a:3d:b1:b6:6c:2b:fb:b1:24:5b:
10:ee:0e:8d:96:e9:98:21:a9:3d:c4:73:16:a0:3b:06:29:98:
71:c5:ff:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:27 2024 by rpki-client on console-ams.rpki-client.org