Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/05ED7DF83C1D11EBA532C076C4F9AE02.roa
File: 05ED7DF83C1D11EBA532C076C4F9AE02.roa (raw, json)
Hash identifier: 4SWwNeHGBEWbPfo+Sh9GotorjGQzoUSROftzdDJV744=
Subject key identifier: 40:7A:44:38:93:7C:D1:74:36:EC:F0:49:A3:07:50:1E:DC:C9:66:6D
Certificate issuer: /CN=A91E7E45/serialNumber=C4829B6C07FD804DF0925CFFC161C6702807A026
Certificate serial: 064C
Authority key identifier: C4:82:9B:6C:07:FD:80:4D:F0:92:5C:FF:C1:61:C6:70:28:07:A0:26
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIKbbAf9gE3wklz_wWHGcCgHoCY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/05ED7DF83C1D11EBA532C076C4F9AE02.roa
Signing time: Mon 07 Mar 2022 10:28:25 +0000
ROA not before: Mon 07 Mar 2022 10:28:25 +0000
ROA not after: Mon 01 May 2023 00:00:00 +0000
asID: 9304
IP address blocks: 103.207.71.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1612 (0x64c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E7E45/serialNumber=C4829B6C07FD804DF0925CFFC161C6702807A026
Validity
Not Before: Mar 7 10:28:25 2022 GMT
Not After : May 1 00:00:00 2023 GMT
Subject: CN=6225de49-9893
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:93:3f:c9:5f:d9:95:f2:21:e7:57:7a:fc:01:
4b:eb:4e:0e:95:e2:93:b0:af:bf:22:c3:df:f2:2a:
62:52:f8:5f:9e:03:ec:20:8e:12:83:76:a0:1a:af:
cc:7a:d3:4c:9d:84:a8:e8:47:22:ed:e0:cf:f1:99:
f1:b3:6a:72:19:be:fd:92:9a:ff:02:86:79:0c:7f:
8d:f1:72:f2:15:98:d0:20:98:e3:4a:af:f3:33:b5:
db:e2:5c:76:3e:24:51:e3:8e:30:2c:5f:43:ef:88:
f3:d4:e9:7d:d4:61:fe:8c:97:9f:d9:ea:65:11:c6:
86:47:a0:ac:db:79:12:f3:76:0d:82:db:e2:f7:89:
ec:a5:5b:16:64:26:38:c9:5a:3f:34:7d:0b:96:3a:
c7:09:e9:c1:7b:b5:33:a1:24:a5:f5:46:25:4a:9c:
de:4e:f9:85:41:71:d5:52:8e:20:7e:02:2f:25:cb:
82:a5:a8:d2:4d:74:b8:8c:14:a8:b2:9d:ea:8c:50:
25:f8:7e:f5:ac:2d:a6:54:8f:d7:f1:e5:78:58:c2:
21:c3:f2:d9:47:90:f0:b1:90:41:d9:fc:70:0e:08:
e3:ac:92:b1:e8:35:d8:d4:af:6d:30:e0:0d:95:a0:
cc:07:91:00:1f:d2:84:93:fb:c8:0d:9e:96:8e:a5:
bc:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:7A:44:38:93:7C:D1:74:36:EC:F0:49:A3:07:50:1E:DC:C9:66:6D
X509v3 Authority Key Identifier:
keyid:C4:82:9B:6C:07:FD:80:4D:F0:92:5C:FF:C1:61:C6:70:28:07:A0:26
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIKbbAf9gE3wklz_wWHGcCgHoCY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/05ED7DF83C1D11EBA532C076C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.207.71.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:cc:4a:46:0e:60:ca:13:32:c7:af:6e:54:af:7d:bd:62:c1:
74:0b:ba:ed:1a:b2:43:7b:58:77:b4:c0:aa:42:80:40:be:24:
61:1e:7b:23:0d:e5:57:ce:7d:e6:03:54:d7:a4:93:57:72:4a:
43:78:68:3b:76:3a:72:6b:9a:5a:a8:d6:b8:bf:61:8c:8d:ae:
ab:51:91:af:a6:82:8e:7f:c6:ef:f0:e1:f1:6a:16:83:da:1c:
3b:84:38:6c:f8:f2:24:03:f2:f2:68:f7:e4:fc:48:74:dc:ba:
16:f0:d2:07:0a:d9:22:f2:fa:2a:04:37:f2:06:9a:39:77:a2:
9d:9d:a7:91:87:4c:36:29:a3:e2:a8:7e:5a:93:07:85:2c:e7:
d4:6d:b5:54:e7:78:6d:61:78:3f:c7:a7:e7:fc:39:61:ee:92:
f5:c5:5c:01:00:80:03:0f:5b:a1:a7:64:40:4c:40:4d:e4:7f:
dc:5c:6b:e3:29:e8:a9:4d:54:a8:1b:3a:dc:9c:11:c7:bb:4e:
e6:26:fa:41:ff:c2:41:af:3b:7a:08:61:d3:19:94:8f:4a:ae:
c4:ad:c5:ec:64:65:73:5a:fb:5a:49:a4:55:0a:ab:9d:13:87:
56:fc:a2:d5:9c:2a:e0:27:3a:80:7b:24:ec:2c:90:50:89:fb:
49:d9:33:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:36 2024 by rpki-client on console-ams.rpki-client.org