Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D98FC/1C899E26F4EC11E98FBE9B0FC4F9AE02/E7C3E396B9D211EC96E5DB25C4F9AE02.roa
File: E7C3E396B9D211EC96E5DB25C4F9AE02.roa (raw, json)
Hash identifier: x+L+vT2ge/HqqQOU3phfI/dXIgNw/4znnOpNVLOG3bo=
Subject key identifier: 04:D1:8F:64:9A:87:2F:B1:BA:CB:D1:78:67:B6:71:21:FC:F4:30:92
Certificate issuer: /CN=A91D98FC/serialNumber=B399B4ADA07501A829D56F21DA8EB5DC32034A56
Certificate serial: 0AC7
Authority key identifier: B3:99:B4:AD:A0:75:01:A8:29:D5:6F:21:DA:8E:B5:DC:32:03:4A:56
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5m0raB1Aagp1W8h2o613DIDSlY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D98FC/1C899E26F4EC11E98FBE9B0FC4F9AE02/E7C3E396B9D211EC96E5DB25C4F9AE02.roa
Signing time: Wed 30 Nov 2022 20:06:31 +0000
ROA not before: Wed 30 Nov 2022 20:06:31 +0000
ROA not after: Thu 30 Mar 2023 00:00:00 +0000
asID: 135517
IP address blocks: 103.102.247.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2759 (0xac7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D98FC/serialNumber=B399B4ADA07501A829D56F21DA8EB5DC32034A56
Validity
Not Before: Nov 30 20:06:31 2022 GMT
Not After : Mar 30 00:00:00 2023 GMT
Subject: CN=6387b7c7-3473
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:74:af:2b:7d:a3:50:cd:0f:95:c2:e2:3c:e2:
3e:45:63:23:60:0a:8e:6a:88:e4:c1:6d:2c:2d:2d:
2e:e4:d1:bd:cd:f2:8f:71:85:e3:6e:c4:f6:46:ca:
4e:d7:4f:af:e1:19:f3:17:29:dd:01:38:94:8a:de:
e4:72:77:36:98:12:1e:dd:b7:0c:cb:87:af:5b:34:
55:56:1b:e2:a5:4a:03:b2:38:cf:5d:a6:81:85:cb:
7c:d2:b8:6f:29:64:08:02:a9:59:a5:e8:43:61:61:
96:ec:6d:00:10:c9:62:ca:b5:b8:58:15:df:76:14:
4f:8a:76:90:e4:59:9e:9b:87:07:05:17:a5:14:67:
70:ab:a9:b3:f6:c7:c4:15:b7:cb:4a:16:67:d5:a9:
51:61:d1:eb:45:8d:93:82:3b:0c:8d:ea:fe:47:36:
64:bc:d1:ce:d7:be:e7:78:2e:3e:e5:70:2d:26:10:
b3:58:d2:2d:83:07:37:43:38:9f:bb:56:7c:cd:39:
23:00:f6:f2:8f:90:6a:db:1a:a1:0f:0c:74:91:59:
66:bb:52:3f:7d:19:d7:05:46:5c:4d:f6:b9:27:fd:
86:46:31:53:2c:e1:cc:de:ba:0b:b7:3f:be:26:0d:
9e:25:9e:2f:d7:1b:fb:58:60:8e:5c:a4:d0:27:94:
40:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:D1:8F:64:9A:87:2F:B1:BA:CB:D1:78:67:B6:71:21:FC:F4:30:92
X509v3 Authority Key Identifier:
keyid:B3:99:B4:AD:A0:75:01:A8:29:D5:6F:21:DA:8E:B5:DC:32:03:4A:56
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D98FC/1C899E26F4EC11E98FBE9B0FC4F9AE02/s5m0raB1Aagp1W8h2o613DIDSlY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5m0raB1Aagp1W8h2o613DIDSlY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D98FC/1C899E26F4EC11E98FBE9B0FC4F9AE02/E7C3E396B9D211EC96E5DB25C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.102.247.0/24
Signature Algorithm: sha256WithRSAEncryption
53:dc:c3:74:9f:75:91:8c:dd:0f:23:a4:0b:25:e7:6f:71:d9:
87:e1:e3:bd:48:b7:e4:30:a1:54:5b:da:5b:7c:63:72:3d:5c:
8e:78:1b:82:18:43:8d:8d:35:77:f9:f5:3b:3f:32:a8:8a:1a:
0f:79:1e:61:4b:33:41:ee:de:99:bb:95:dc:76:99:b7:0b:b5:
4c:50:7d:6b:82:67:a6:6a:b4:d1:7c:53:81:e5:df:06:56:4f:
75:69:70:9b:a1:85:23:b8:99:b2:6c:00:b2:5f:9d:d0:00:8f:
97:b6:9e:e2:1c:c8:5e:bb:7d:80:c6:bf:19:28:98:47:f2:bc:
7e:56:73:fe:e1:40:9c:bf:10:7b:04:08:49:78:38:36:d6:a1:
ce:de:33:ca:94:54:54:43:80:fe:b1:69:7d:31:2f:0b:14:be:
53:f1:cf:6f:e3:a9:3d:00:71:a4:f8:81:50:6d:7a:3c:c3:0e:
54:01:fa:e5:80:0c:6e:ab:fa:7f:cc:fa:39:6a:bb:b3:b3:46:
23:ec:7c:f9:1c:f0:4e:ab:06:2f:bc:4a:20:75:3e:d4:ef:de:
a4:9e:ae:3b:a9:5a:42:8f:b7:bd:e4:cf:70:40:ee:a9:b3:a6:
0b:2c:8e:96:84:94:35:6f:53:92:f0:98:95:b4:b5:18:a8:c7:
db:5b:d1:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:30 2024 by rpki-client on console-ams.rpki-client.org