Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/E3B8BEBADCF511ED8458BD5BC4F9AE02.roa
File: E3B8BEBADCF511ED8458BD5BC4F9AE02.roa (raw, json)
Hash identifier: 3p2V223uCHHZAdSF39wrj7AIcGVqKPpqf3YPL4ILQAs=
Subject key identifier: 25:E2:0C:CC:4E:2E:1A:B3:B5:66:3A:E3:39:0E:09:73:F8:AE:2F:C7
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 0BBC
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/E3B8BEBADCF511ED8458BD5BC4F9AE02.roa
Signing time: Wed 24 May 2023 23:25:27 +0000
ROA not before: Wed 24 May 2023 23:25:26 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 140732
IP address blocks: 103.11.62.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3004 (0xbbc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: May 24 23:25:26 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=646e9ce6-4f46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:dc:3c:09:ab:21:9d:d6:68:c9:72:7f:5c:61:
e8:29:cf:c0:b8:64:80:dc:83:fd:fd:f3:fc:a9:c5:
55:4b:5c:06:17:0e:0c:3d:49:73:d3:18:b8:c7:6a:
63:69:9e:1c:03:9a:87:f1:a4:51:f3:1b:62:17:f4:
89:2b:a7:3e:cc:ad:64:ba:a3:5b:67:bd:ea:0a:e0:
65:43:d5:fd:b9:12:7a:4f:5c:bc:fb:44:e8:d9:7a:
5a:63:cb:6f:e5:a8:ca:ff:51:3d:1b:33:7d:6c:e3:
41:2b:12:de:1f:5d:6b:81:07:66:c8:6f:7a:77:fd:
b7:3f:81:63:86:52:bb:ee:46:64:9d:78:81:6c:47:
d7:8b:55:fb:d0:b0:8b:8c:5d:87:91:aa:e2:dc:4b:
98:0d:9c:00:15:97:be:8e:2c:4b:0a:d2:9f:d9:2c:
56:0d:57:dc:a5:ab:f7:0d:88:ec:93:c5:a9:e9:64:
25:f6:32:6a:b9:9d:44:ff:53:9e:c7:25:31:e3:2a:
34:d4:cf:55:d6:63:bb:46:eb:f9:09:ec:84:86:0e:
f5:70:1e:b9:7d:13:04:2d:72:4e:1a:d7:88:b6:4e:
90:f5:44:7c:09:2c:c0:72:a3:ff:5c:12:4e:6d:f3:
f8:5c:ca:c3:4e:27:07:5e:4a:21:27:03:8c:f2:93:
52:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:E2:0C:CC:4E:2E:1A:B3:B5:66:3A:E3:39:0E:09:73:F8:AE:2F:C7
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/E3B8BEBADCF511ED8458BD5BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.11.62.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:65:87:72:67:37:10:12:56:45:01:c0:52:38:10:87:02:31:
53:a4:52:dc:0c:a4:73:d4:b4:01:c9:73:11:d1:d2:ae:f2:59:
24:0c:ab:09:3e:39:89:f4:ff:56:14:49:2e:dd:ec:f3:99:b1:
58:1a:74:dc:ed:a2:b5:f9:22:4d:61:70:13:1a:00:cd:f3:c1:
dc:c7:9d:62:12:ef:24:60:39:c0:90:6d:57:95:0a:e6:66:83:
81:be:20:5b:1f:b5:f1:7d:a7:6d:4a:c1:72:4f:bd:55:a6:35:
d9:76:3e:7c:49:a7:fd:e0:35:6f:a1:b8:80:a4:4b:fe:bf:6c:
11:0c:83:b4:4d:1d:91:59:81:50:59:ba:39:65:06:84:8a:d2:
37:62:17:21:de:ed:1f:5f:af:43:7a:c9:bb:d6:29:08:4a:26:
5f:d9:01:8f:c9:e2:fc:62:c5:ec:c6:6b:5a:d5:84:b6:99:fc:
04:97:9c:ba:4c:ea:40:65:1d:e9:2c:e6:ed:15:16:71:a3:90:
4e:1d:1e:c6:85:65:e4:36:99:e0:a3:a9:35:a8:f7:45:9e:0b:
9f:d9:ab:44:b7:50:cd:10:45:bc:43:b5:bb:29:62:fb:d9:a6:
6f:9e:ff:80:91:1b:ac:ad:43:66:25:9d:68:6d:d0:66:78:c5:
9a:84:ad:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 01:53:22 2025 by rpki-client