Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/B929B380E7F411ECBF3F6952C4F9AE02.roa
File: B929B380E7F411ECBF3F6952C4F9AE02.roa (raw, json)
Hash identifier: 2KBn4wNXSMLL088D+rmDfwWleI8iJQCGcjE5r9UqftE=
Subject key identifier: 30:2C:78:F8:65:D4:D3:85:FB:AA:88:F2:D3:20:BD:94:EB:99:06:56
Certificate issuer: /CN=A91D8100/serialNumber=2BDF5CB3228BEC873ECEE75D6758354653823492
Certificate serial: 058B
Authority key identifier: 2B:DF:5C:B3:22:8B:EC:87:3E:CE:E7:5D:67:58:35:46:53:82:34:92
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K99csyKL7Ic-zuddZ1g1RlOCNJI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/B929B380E7F411ECBF3F6952C4F9AE02.roa
Signing time: Mon 29 Aug 2022 23:39:11 +0000
ROA not before: Mon 29 Aug 2022 23:39:11 +0000
ROA not after: Tue 31 Oct 2023 00:00:00 +0000
asID: 140930
IP address blocks: 103.153.154.0/23 maxlen: 24
2406:4740::/120 maxlen: 120
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1419 (0x58b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D8100/serialNumber=2BDF5CB3228BEC873ECEE75D6758354653823492
Validity
Not Before: Aug 29 23:39:11 2022 GMT
Not After : Oct 31 00:00:00 2023 GMT
Subject: CN=630d4e1f-fc0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:77:fc:67:50:04:dd:5c:23:96:88:23:83:d8:
a9:21:1a:21:f5:c7:98:f2:b0:4c:eb:bf:cb:32:28:
2e:8e:ad:af:d3:a8:be:32:9c:a0:1d:03:85:21:75:
8c:01:f1:17:93:b7:bb:6c:4c:45:4c:7d:1a:1e:f6:
11:99:23:5d:c0:dd:cc:05:26:e7:20:d9:8d:f7:6a:
c0:98:a0:4e:b4:4a:5f:6c:8e:4d:30:c5:fe:62:70:
fe:76:45:b5:67:fb:c7:27:5a:13:8c:88:10:ae:8a:
20:30:5e:52:3a:6b:a0:bf:6d:3a:86:dd:70:c6:97:
a2:a2:d1:f4:50:8f:42:96:3c:9c:a8:39:8e:6f:ba:
f9:8f:23:43:1e:71:af:83:ee:a0:a1:81:b7:84:6a:
d4:c6:3f:b4:ea:5f:d1:c3:20:41:41:eb:3e:60:90:
9e:df:fa:2a:34:f0:64:35:55:27:0a:31:f0:27:14:
e8:d0:1d:4d:b2:3b:b3:fa:e5:8a:bd:69:6d:70:a4:
12:4b:01:d3:df:fa:d6:d7:a8:73:99:eb:7d:e8:42:
8d:d1:c6:11:ac:42:78:31:63:47:29:eb:53:a4:3b:
b9:79:d3:fb:fb:4a:42:a1:97:45:42:c0:23:6e:dd:
f7:a8:9a:4c:f5:71:73:cb:a2:58:74:ab:0a:52:47:
59:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:2C:78:F8:65:D4:D3:85:FB:AA:88:F2:D3:20:BD:94:EB:99:06:56
X509v3 Authority Key Identifier:
keyid:2B:DF:5C:B3:22:8B:EC:87:3E:CE:E7:5D:67:58:35:46:53:82:34:92
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/K99csyKL7Ic-zuddZ1g1RlOCNJI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K99csyKL7Ic-zuddZ1g1RlOCNJI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/B929B380E7F411ECBF3F6952C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.153.154.0/23
IPv6:
2406:4740::/120
Signature Algorithm: sha256WithRSAEncryption
7e:32:80:61:12:ae:94:c5:2b:76:c6:d9:af:72:7e:f7:ed:bc:
8d:5d:0f:99:a6:c5:38:46:8b:a2:d8:46:14:68:b7:8c:49:03:
b1:38:1b:33:3e:81:1e:27:25:6e:da:d4:45:94:5c:8e:bb:56:
5e:9a:17:5d:b8:1a:38:5f:c0:74:eb:e7:95:23:67:e4:e2:aa:
ab:f3:11:b8:8e:13:93:72:0d:92:75:ce:59:74:0b:ee:4c:03:
f8:6e:89:15:05:45:76:39:6e:8a:1a:f8:f0:63:21:95:d0:6b:
e6:ef:e2:32:76:1a:71:c3:59:3f:47:81:78:18:34:b6:75:6d:
28:ca:1b:ee:f4:58:5b:c4:a4:33:25:28:12:9f:aa:76:1d:0e:
60:2d:5d:d4:56:48:32:d0:cc:5d:38:72:d0:10:ba:9f:88:e4:
f4:8f:ee:11:34:98:be:27:c9:05:70:6f:b7:f4:6e:5d:85:ca:
a6:da:48:0e:38:bb:99:f3:82:89:d2:7a:59:46:18:2c:a2:80:
21:0f:9e:c4:c6:0d:fc:6d:5f:bb:04:92:4e:7b:41:72:f4:9e:
3a:be:87:d4:7d:d7:c4:1a:bd:f7:49:62:49:71:d7:13:87:95:
a7:27:c3:d7:f5:76:bb:19:9e:e8:4c:f1:78:b9:0e:fe:da:3a:
b2:27:65:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:30 2024 by rpki-client on console-ams.rpki-client.org