Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/A1F026EE162211EC9B4B6F77C4F9AE02.roa
File: A1F026EE162211EC9B4B6F77C4F9AE02.roa (raw, json)
Hash identifier: tHIIoMUsL9/019PZXAZsvJkvus2eyvQifDR6Yby06UM=
Subject key identifier: A7:2D:6D:A8:46:58:DE:23:51:61:0E:51:DA:1F:41:D1:B6:11:6B:09
Certificate issuer: /CN=A91D671F/serialNumber=B3C8F7E064DA9B5AA6EA796017EC60D28903782A
Certificate serial: 1475
Authority key identifier: B3:C8:F7:E0:64:DA:9B:5A:A6:EA:79:60:17:EC:60:D2:89:03:78:2A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8j34GTam1qm6nlgF-xg0okDeCo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/A1F026EE162211EC9B4B6F77C4F9AE02.roa
Signing time: Tue 28 Mar 2023 17:44:35 +0000
ROA not before: Tue 28 Mar 2023 17:44:35 +0000
ROA not after: Wed 29 May 2024 00:00:00 +0000
asID: 63526
IP address blocks: 103.109.237.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5237 (0x1475)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D671F/serialNumber=B3C8F7E064DA9B5AA6EA796017EC60D28903782A
Validity
Not Before: Mar 28 17:44:35 2023 GMT
Not After : May 29 00:00:00 2024 GMT
Subject: CN=64232783-4010
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ed:3b:fa:66:73:53:36:a9:5d:a5:88:ff:a8:
19:44:2f:4a:1b:7a:3c:6f:4f:99:5a:43:be:63:3f:
8a:a6:86:a9:6b:43:3d:be:2e:09:3a:d4:73:78:78:
1c:e9:d5:fc:68:f5:bc:22:e7:9e:f2:f6:61:d4:90:
cf:10:fd:d8:31:3f:85:13:98:85:5a:96:0b:0a:3d:
65:a5:16:b7:9d:60:e4:ea:95:8c:ac:5e:bf:f1:c4:
9c:16:3d:87:6e:4c:b4:13:fd:31:15:7a:00:86:07:
1d:f7:82:af:24:1f:9d:3d:24:30:90:1b:9d:5b:d1:
2c:e2:a8:8a:44:25:14:02:91:25:9d:6b:7d:45:0e:
51:d0:f5:42:ba:4f:41:c3:61:38:ed:38:ac:0e:44:
e2:b8:4d:90:df:ed:9e:d1:99:88:ca:5d:38:df:8e:
81:ea:63:23:b9:81:97:40:2a:53:be:1f:b8:9c:e9:
d7:55:57:60:81:e1:b5:2a:37:bd:e3:06:f5:98:fc:
93:c4:7d:01:41:30:eb:d9:9d:e7:09:54:02:62:81:
fd:62:8d:c5:34:10:fd:f5:2c:53:c6:b2:fc:3a:ae:
b5:03:7e:c6:42:7c:58:bc:66:e2:02:5a:44:71:43:
79:ce:61:a9:63:0d:cc:ce:8b:4a:3f:ff:5c:88:db:
74:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:2D:6D:A8:46:58:DE:23:51:61:0E:51:DA:1F:41:D1:B6:11:6B:09
X509v3 Authority Key Identifier:
keyid:B3:C8:F7:E0:64:DA:9B:5A:A6:EA:79:60:17:EC:60:D2:89:03:78:2A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8j34GTam1qm6nlgF-xg0okDeCo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/A1F026EE162211EC9B4B6F77C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.109.237.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:6c:a4:f8:f9:fe:ab:74:dd:70:3d:97:e9:90:fe:57:ea:5c:
20:8b:f9:1e:6e:a2:a9:65:e6:03:70:52:53:ca:b8:6e:53:0d:
58:72:e0:28:dd:97:80:af:71:8b:a5:2c:47:a3:fb:4f:4d:2b:
1a:68:b5:1a:7e:26:c7:a8:8f:75:09:4d:20:58:22:a5:db:de:
02:00:03:74:b4:a1:2f:c2:22:0e:d0:1e:b1:6c:b9:64:6a:8b:
42:cf:0a:ee:60:b0:42:d3:84:c8:a5:c7:a4:38:3d:95:c6:28:
ad:75:3f:11:37:96:28:67:15:e9:29:17:e4:88:42:95:c3:22:
ba:20:45:23:10:eb:64:ce:e0:9f:fe:4b:c7:61:89:fd:47:21:
15:18:d5:fd:e1:75:15:d3:29:42:5c:8f:44:7a:0e:34:b0:28:
00:d5:6d:9f:b5:27:3a:f3:eb:c1:6c:a3:0d:5b:1a:25:18:87:
36:49:56:68:19:22:90:cf:4e:af:13:13:b1:80:22:4c:e1:43:
43:c0:91:f7:49:2e:21:be:bf:39:e9:d7:fe:a3:4c:51:9c:f1:
29:99:4a:9a:04:cc:00:9f:0e:cd:e1:11:c4:c0:3b:df:e6:60:
4b:a1:59:73:53:b6:f4:03:46:db:a1:72:16:37:e7:d3:77:8f:
64:f6:98:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:42 2024 by rpki-client on console-fra.rpki-client.org