Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/F8F2BC968E8A11EC82086D82C4F9AE02.roa
File: F8F2BC968E8A11EC82086D82C4F9AE02.roa (raw, json)
Hash identifier: Z5RbYgIEq1t8DkheMKAWBZd/ZJaguPmKKFAkHpIeuCw=
Subject key identifier: 70:A6:36:2D:A2:C0:F5:06:3B:1E:93:13:A6:FF:D7:75:01:90:8C:5C
Certificate issuer: /CN=A91F605B/serialNumber=91338690DEBA578CE738218A9E220854D1B5275F
Certificate serial: 6D
Authority key identifier: 91:33:86:90:DE:BA:57:8C:E7:38:21:8A:9E:22:08:54:D1:B5:27:5F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/F8F2BC968E8A11EC82086D82C4F9AE02.roa
Signing time: Tue 15 Feb 2022 18:13:28 +0000
ROA not before: Tue 15 Feb 2022 18:13:28 +0000
ROA not after: Thu 02 Mar 2023 00:00:00 +0000
asID: 149496
IP address blocks: 103.178.66.0/23 maxlen: 24
2001:df0:3540::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109 (0x6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F605B/serialNumber=91338690DEBA578CE738218A9E220854D1B5275F
Validity
Not Before: Feb 15 18:13:28 2022 GMT
Not After : Mar 2 00:00:00 2023 GMT
Subject: CN=620bed47-9962
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:bc:b0:66:71:bb:ff:5e:63:ce:b8:59:d6:df:
a3:d2:8e:1b:cf:17:95:2d:14:c0:6a:40:1e:2a:52:
0d:a8:33:7d:67:80:15:07:d7:21:6c:ee:1d:93:cc:
eb:0e:ac:9b:12:11:e3:9d:a9:36:7b:cd:bb:ea:8c:
8d:ff:9a:2a:c2:f0:58:8a:38:59:66:e6:11:cb:27:
ce:d0:f5:2b:9d:89:2a:b1:9b:c1:14:9a:7a:c4:65:
37:3d:69:db:fc:e7:25:53:b5:a4:5c:d6:ca:cc:98:
9e:79:77:90:87:69:80:2d:cc:6e:c3:74:cf:11:fc:
a8:5d:0a:e7:30:a3:69:f4:71:24:54:a9:42:97:74:
0e:29:75:4b:ea:81:38:b3:01:cd:d7:d4:ce:12:3b:
9e:83:db:65:2f:4a:d1:4f:c2:85:4e:cc:7f:5a:cb:
97:87:f0:94:7a:6d:9d:0a:14:48:95:89:85:98:8a:
b3:23:dc:af:5b:54:45:28:4b:76:e2:91:26:41:d0:
40:0a:c9:56:58:44:6b:20:84:26:10:81:f7:f1:2f:
54:d2:4b:c2:4a:6a:9a:54:ec:cc:29:a2:9c:86:17:
1f:4b:8d:81:c1:1b:7b:e4:75:f0:ca:c9:a5:38:a5:
62:b1:48:d1:a9:3f:49:8c:a4:fc:05:80:5b:e8:53:
91:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:A6:36:2D:A2:C0:F5:06:3B:1E:93:13:A6:FF:D7:75:01:90:8C:5C
X509v3 Authority Key Identifier:
keyid:91:33:86:90:DE:BA:57:8C:E7:38:21:8A:9E:22:08:54:D1:B5:27:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/F8F2BC968E8A11EC82086D82C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.178.66.0/23
IPv6:
2001:df0:3540::/48
Signature Algorithm: sha256WithRSAEncryption
21:c6:25:4a:07:93:78:0d:93:1e:6c:de:d8:59:1a:54:9e:2d:
3d:7b:b2:55:0e:8c:1d:49:e5:9b:f0:12:3a:d2:32:5f:d8:4b:
c5:39:02:8e:a5:8b:16:d9:dc:9d:a4:01:45:b7:f8:5b:9d:98:
ce:ae:88:9a:f8:82:e7:e9:e1:04:b2:d7:1a:c3:5e:cc:30:fb:
84:25:bd:d3:c7:69:6e:2e:b2:a0:fd:4d:f0:d0:00:e7:07:15:
d7:b7:8c:bd:04:68:f3:c5:11:3d:45:3f:1b:d6:f5:6c:e9:4c:
1f:24:a4:6b:ab:2e:25:fa:81:78:7a:a1:72:2a:ac:67:01:cb:
6d:a5:ed:f0:d3:7f:b6:09:fa:f3:7b:1b:86:29:70:65:8c:16:
ac:55:87:fd:be:b0:2e:6c:0f:10:dd:cf:9b:28:db:c6:12:70:
74:25:72:20:61:9f:e6:37:dd:34:a7:0c:da:8b:31:90:2d:80:
c5:d9:14:6e:11:7a:e6:2c:1f:f2:a0:a4:2a:d3:b0:2b:3c:03:
bd:46:b5:f5:dc:61:09:00:06:9a:a9:d9:fe:f1:02:07:fa:26:
4b:48:e5:5d:33:70:3b:94:cc:30:bf:ea:5a:0a:84:55:9d:7f:
a4:75:f8:eb:a7:8c:bf:ed:49:c2:1a:23:43:b3:04:f6:40:4d:
35:2d:be:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:51 2024 by rpki-client on console-fra.rpki-client.org