Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAAF5/E99F523A6EC411ECAFD27331C4F9AE02/B93EB536859211EEA1DB2F79C4F9AE02.roa
File: B93EB536859211EEA1DB2F79C4F9AE02.roa (raw, json)
Hash identifier: X1nkSCT6gvELgUv1qbfbZadtLKGGXICarX+dNsTR9kw=
Subject key identifier: D3:77:77:43:A0:12:15:B6:91:DF:E4:68:C3:4C:DC:EB:C5:F5:80:EA
Certificate issuer: /CN=A91EAAF5/serialNumber=4584AEA2394C46D6934E63ED6887D4726FDF7A13
Certificate serial: 0305
Authority key identifier: 45:84:AE:A2:39:4C:46:D6:93:4E:63:ED:68:87:D4:72:6F:DF:7A:13
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYSuojlMRtaTTmPtaIfUcm_fehM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EAAF5/E99F523A6EC411ECAFD27331C4F9AE02/B93EB536859211EEA1DB2F79C4F9AE02.roa
Signing time: Fri 17 Nov 2023 21:46:11 +0000
ROA not before: Fri 17 Nov 2023 21:46:11 +0000
ROA not after: Wed 01 May 2024 00:00:00 +0000
asID: 16509
IP address blocks: 103.179.36.0/24 maxlen: 24
2001:df0:45c4::/48 maxlen: 48
2001:df0:45c5::/48 maxlen: 48
2001:df0:45c6::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 773 (0x305)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EAAF5/serialNumber=4584AEA2394C46D6934E63ED6887D4726FDF7A13
Validity
Not Before: Nov 17 21:46:11 2023 GMT
Not After : May 1 00:00:00 2024 GMT
Subject: CN=6557df23-7eb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:5c:22:b8:ba:7c:29:74:29:9e:01:ca:bc:81:
b6:d9:76:fb:8e:bf:eb:55:17:1d:d4:b1:ba:4d:1e:
74:b5:9c:10:d9:b7:b5:bf:aa:84:0e:0d:8e:b9:a1:
6c:6c:c8:33:58:b9:3b:ab:af:28:c3:e2:ea:1c:49:
7b:d6:25:33:f6:6a:ba:a5:c0:c5:98:c7:d9:fd:d9:
72:9c:63:52:a6:80:5c:e6:ad:35:e2:9a:d3:f6:b9:
c1:6f:ca:1a:cb:c2:17:51:fa:d5:17:57:76:c7:12:
44:02:82:97:3d:51:dc:f2:de:aa:0e:5c:da:b3:ae:
61:07:43:34:c9:89:a0:2b:a9:05:ff:1a:82:09:6f:
4f:44:4e:ff:3b:35:4d:f8:4d:bd:5b:e3:51:2f:9c:
66:8a:48:de:63:d4:ac:42:05:3d:a8:ce:cd:4f:d2:
19:70:21:6d:e3:f7:75:fa:57:5d:d1:d8:1f:70:87:
7d:b4:73:ac:00:a0:08:10:b3:1b:c2:d9:c9:5a:44:
39:a1:ca:6e:76:3b:c0:57:71:de:a1:c8:72:98:4e:
05:9f:9f:b1:04:2a:32:30:d8:6a:50:1e:65:e9:65:
e8:47:5a:cc:b1:2d:26:c5:8f:50:a3:92:64:a9:8d:
4c:d2:82:10:7e:7a:d2:76:bc:b6:2a:51:6f:8c:08:
2d:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:77:77:43:A0:12:15:B6:91:DF:E4:68:C3:4C:DC:EB:C5:F5:80:EA
X509v3 Authority Key Identifier:
keyid:45:84:AE:A2:39:4C:46:D6:93:4E:63:ED:68:87:D4:72:6F:DF:7A:13
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EAAF5/E99F523A6EC411ECAFD27331C4F9AE02/RYSuojlMRtaTTmPtaIfUcm_fehM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYSuojlMRtaTTmPtaIfUcm_fehM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAAF5/E99F523A6EC411ECAFD27331C4F9AE02/B93EB536859211EEA1DB2F79C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.179.36.0/24
IPv6:
2001:df0:45c4::-2001:df0:45c6:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
48:9e:b8:c2:1c:0f:32:7f:c9:84:ef:a6:9d:8e:79:9d:b2:e1:
75:01:72:56:f6:31:4b:a2:d6:84:b2:66:dd:43:c6:df:08:96:
8c:f9:55:05:71:59:2a:24:20:2e:40:1f:02:a6:6d:d2:88:f3:
16:66:bb:3e:ad:34:c5:a0:c3:5f:39:4a:ce:40:27:41:70:52:
7b:89:ea:81:df:42:e9:e8:13:f6:7d:67:3a:ed:2a:0c:cb:4c:
32:ee:ed:28:ac:b4:79:23:ac:e9:5f:0a:f0:85:1d:24:02:1a:
98:9c:40:a0:e7:73:13:26:d8:92:e5:c6:26:ac:2b:f5:87:83:
96:63:55:af:69:a1:7d:84:a4:0a:f2:8d:21:5b:8a:e6:0e:8d:
1c:9a:8c:c9:c7:7b:78:46:e0:5b:b4:24:47:e2:bf:75:fa:b7:
8a:fa:17:d5:37:44:07:74:fd:11:7c:00:7b:ca:49:48:3e:5b:
2e:48:16:72:f8:46:98:d5:03:f7:c4:79:f9:67:b0:90:b7:94:
7a:ad:55:7a:60:61:ee:6b:56:ff:4a:41:ae:ec:5f:2d:2b:eb:
1b:c9:9d:6f:83:c5:8d:55:74:11:4e:a6:5e:b3:47:a9:2a:65:
76:0f:c2:d6:49:03:ba:cc:90:b3:42:e0:52:03:d0:1b:5d:25:
d4:21:79:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:47 2024 by rpki-client on console-fra.rpki-client.org