Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAAF5/E99F523A6EC411ECAFD27331C4F9AE02/F0307B4CF47911EDAB508B20C4F9AE02.roa
File: F0307B4CF47911EDAB508B20C4F9AE02.roa (raw, json)
Hash identifier: pEV77a3XueFUDaQzkYunVjgaH8Cl7iwfylUeFHlgp2g=
Subject key identifier: EA:95:1F:09:89:1D:A2:66:FD:4E:0C:59:30:CC:16:EF:C9:C8:A3:C6
Certificate issuer: /CN=A91EAAF5/serialNumber=4584AEA2394C46D6934E63ED6887D4726FDF7A13
Certificate serial: 02A0
Authority key identifier: 45:84:AE:A2:39:4C:46:D6:93:4E:63:ED:68:87:D4:72:6F:DF:7A:13
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYSuojlMRtaTTmPtaIfUcm_fehM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EAAF5/E99F523A6EC411ECAFD27331C4F9AE02/F0307B4CF47911EDAB508B20C4F9AE02.roa
Signing time: Wed 17 May 2023 06:13:28 +0000
ROA not before: Wed 17 May 2023 06:13:28 +0000
ROA not after: Wed 01 May 2024 00:00:00 +0000
asID: 16509
IP address blocks: 103.179.36.0/24 maxlen: 24
2001:df0:45c4::/46 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 672 (0x2a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EAAF5/serialNumber=4584AEA2394C46D6934E63ED6887D4726FDF7A13
Validity
Not Before: May 17 06:13:28 2023 GMT
Not After : May 1 00:00:00 2024 GMT
Subject: CN=64647087-61b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:34:9c:f1:8f:4a:22:f1:7b:6f:1d:4e:f0:39:
1b:d6:66:20:a9:f7:eb:24:9d:e2:8a:b8:92:13:af:
ed:d8:d3:48:ee:6d:9d:a4:86:df:c9:82:8a:fe:8a:
d4:ae:7c:4c:14:32:e8:33:7f:aa:20:8c:a7:41:b0:
45:73:82:00:1a:8e:cb:8d:10:41:c2:21:fc:a9:99:
a5:d1:9e:9b:01:2e:cb:47:8c:af:08:eb:fa:59:a9:
2d:ad:c5:8a:72:fc:0e:d7:78:3f:d8:9a:6e:ea:3c:
5b:2e:c0:33:58:a2:55:f2:6e:c1:d0:24:4c:f3:23:
ea:e2:87:1e:3d:57:3e:1c:3d:7a:a6:58:7f:1c:06:
5e:d0:1e:a8:90:0b:82:41:07:0f:92:8d:09:14:ec:
c8:11:1e:b4:9f:06:9c:9f:0a:4b:7e:63:c3:d7:af:
51:e4:39:df:e4:99:14:2b:f6:d6:95:5c:92:37:55:
e5:41:43:b1:71:fa:5a:8a:bf:da:1a:0b:75:71:20:
55:bd:61:02:f6:33:49:68:23:4d:95:35:e4:37:01:
74:ca:fe:25:28:7c:d6:88:96:6e:39:d2:ba:2d:5c:
9c:ef:40:c1:0d:b8:da:5d:cb:0a:dd:f0:1b:02:c2:
c2:eb:bd:22:a9:66:8c:a6:7a:3e:5f:9b:ae:e7:96:
b0:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:95:1F:09:89:1D:A2:66:FD:4E:0C:59:30:CC:16:EF:C9:C8:A3:C6
X509v3 Authority Key Identifier:
keyid:45:84:AE:A2:39:4C:46:D6:93:4E:63:ED:68:87:D4:72:6F:DF:7A:13
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EAAF5/E99F523A6EC411ECAFD27331C4F9AE02/RYSuojlMRtaTTmPtaIfUcm_fehM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYSuojlMRtaTTmPtaIfUcm_fehM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAAF5/E99F523A6EC411ECAFD27331C4F9AE02/F0307B4CF47911EDAB508B20C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.179.36.0/24
IPv6:
2001:df0:45c4::/46
Signature Algorithm: sha256WithRSAEncryption
b3:c7:aa:36:e0:5a:f0:fc:1b:ed:cc:48:66:09:e0:f6:46:d5:
75:93:8c:28:c2:d1:b4:7d:b1:bb:d7:4b:b0:44:8a:ee:39:fa:
48:42:ce:cd:47:af:99:5b:d8:e3:d0:b8:d0:9e:6a:ff:1a:26:
fc:2b:9a:87:f9:db:ed:73:3e:ba:12:5a:b6:de:a8:8f:6a:6c:
bc:6b:d4:70:58:12:ed:fb:da:17:98:90:a9:7c:01:6d:fa:e5:
3e:03:9a:78:2d:88:5c:73:97:05:a6:aa:73:7d:55:08:c8:a2:
18:05:e8:72:6c:e5:fc:3e:70:ee:8a:12:a8:a3:ce:b1:d0:13:
00:c8:d3:25:77:40:a7:82:59:47:6e:43:50:69:dc:97:2d:3e:
bf:78:85:87:6e:47:8f:16:1c:6e:01:2c:7c:39:38:76:8a:0d:
d6:fc:7f:0a:0f:38:5b:3e:d5:db:02:42:bf:62:d8:0e:69:fb:
f4:d2:41:1b:ad:b6:5c:a7:90:41:1f:02:17:c7:d0:4a:d0:ac:
c5:3a:c2:18:f0:cd:fe:aa:65:a5:55:88:3b:8d:94:a8:29:1a:
49:58:62:7b:c9:72:74:26:0d:36:64:2d:c8:5d:c8:58:86:73:
97:96:16:02:c8:2d:cc:0b:6e:74:fa:ea:5e:42:11:71:f1:f4:
49:f3:ee:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:47 2024 by rpki-client on console-fra.rpki-client.org