Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7E85/B2E0E5AE1C3411EAA8E25A5CC4F9AE02/34ABF644042E11ED9CD4D311C4F9AE02.roa
File: 34ABF644042E11ED9CD4D311C4F9AE02.roa (raw, json)
Hash identifier: 7KM3016Jt3zzKZIozM9WQYSvy3pfM8sHCl4G/3QRlfM=
Subject key identifier: 74:16:F3:58:24:B2:6F:F7:0B:68:69:CB:0E:98:3E:16:24:53:B6:67
Certificate issuer: /CN=A91F7E85/serialNumber=596852D52994FBB67A6379AB1E0AF514553EE886
Certificate serial: 09AC
Authority key identifier: 59:68:52:D5:29:94:FB:B6:7A:63:79:AB:1E:0A:F5:14:55:3E:E8:86
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WWhS1SmU-7Z6Y3mrHgr1FFU-6IY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F7E85/B2E0E5AE1C3411EAA8E25A5CC4F9AE02/34ABF644042E11ED9CD4D311C4F9AE02.roa
Signing time: Tue 30 Aug 2022 06:37:21 +0000
ROA not before: Tue 30 Aug 2022 06:37:21 +0000
ROA not after: Sun 30 Jul 2023 00:00:00 +0000
asID: 139026
IP address blocks: 103.138.164.0/23 maxlen: 23
103.138.164.0/24 maxlen: 24
103.138.165.0/24 maxlen: 24
2001:df0:4480::/48 maxlen: 48
2001:df0:4480:8000::/52 maxlen: 52
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2476 (0x9ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F7E85/serialNumber=596852D52994FBB67A6379AB1E0AF514553EE886
Validity
Not Before: Aug 30 06:37:21 2022 GMT
Not After : Jul 30 00:00:00 2023 GMT
Subject: CN=630db021-a1d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:6e:af:8b:76:42:2a:95:05:a8:33:5d:3a:2e:
f9:ed:b7:7c:57:b6:3f:f7:ba:7a:7a:e6:84:12:dc:
75:ab:40:73:fd:22:e6:ad:dc:91:46:c3:2f:d9:06:
98:22:22:0b:f0:be:0f:df:d7:68:fb:bd:3b:a2:66:
6d:3d:73:a0:31:8c:a3:33:00:b2:cf:ac:46:fe:7f:
1e:58:cf:48:ae:09:b4:4e:41:ed:32:d2:05:4d:55:
6b:f0:f9:6e:af:9c:71:29:be:20:21:d8:73:7b:1e:
e9:4a:b7:23:ff:7b:a6:4b:9e:e3:da:65:b3:5f:4a:
87:17:16:50:23:1a:32:5e:c5:11:9a:ec:2e:1f:51:
40:78:1d:c7:66:a7:76:2b:73:f7:13:d3:7e:ea:e7:
31:91:95:50:ef:14:4b:9b:c9:85:89:d8:9c:bb:73:
78:58:b9:e5:af:67:12:64:f3:3d:5b:1b:0b:a0:5e:
d4:65:3e:68:fa:69:fd:cd:46:6b:ab:c0:3a:c8:a8:
fe:37:5a:14:de:96:4f:82:07:42:d7:8e:0a:be:9f:
ca:48:ab:59:51:dc:ca:77:5f:e8:bd:b1:a8:e1:c4:
f0:cf:a8:94:31:ad:d2:4a:11:42:79:3c:3f:ab:e6:
92:c7:c1:90:73:33:48:c5:34:84:a0:d0:34:3c:14:
ca:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:16:F3:58:24:B2:6F:F7:0B:68:69:CB:0E:98:3E:16:24:53:B6:67
X509v3 Authority Key Identifier:
keyid:59:68:52:D5:29:94:FB:B6:7A:63:79:AB:1E:0A:F5:14:55:3E:E8:86
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F7E85/B2E0E5AE1C3411EAA8E25A5CC4F9AE02/WWhS1SmU-7Z6Y3mrHgr1FFU-6IY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WWhS1SmU-7Z6Y3mrHgr1FFU-6IY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7E85/B2E0E5AE1C3411EAA8E25A5CC4F9AE02/34ABF644042E11ED9CD4D311C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.138.164.0/23
IPv6:
2001:df0:4480::/48
Signature Algorithm: sha256WithRSAEncryption
3c:fd:a1:2d:fb:ac:43:89:11:fb:64:8e:fd:b3:f5:6e:49:e1:
f6:0f:0b:ab:53:a1:c8:17:53:17:cf:56:cb:b8:81:53:9d:9b:
c3:de:81:00:d0:c1:5a:ac:4d:1d:b8:a0:b1:e8:c2:45:b9:b6:
e4:40:ab:88:6a:0b:87:e7:84:83:1f:50:37:e6:b3:18:dc:88:
5f:07:b7:38:c9:23:e9:5f:f7:a4:24:55:c5:07:ab:d6:05:e3:
36:f5:c1:b6:35:e4:45:ba:a7:b2:fa:32:a4:99:15:bb:16:fd:
2c:58:c8:8f:5b:97:75:81:22:4b:60:32:bb:86:e2:43:f0:73:
1f:98:8e:10:18:ce:60:06:59:7b:d7:c7:95:86:16:e2:58:0b:
40:8d:de:38:7d:bb:4e:a6:ab:f5:75:66:c8:1d:6f:60:36:83:
e2:01:2e:1e:76:3a:6f:1f:79:34:13:61:6e:5d:62:81:42:df:
e7:cd:f4:26:8a:55:0f:ec:05:3c:50:a1:25:af:9c:12:ff:13:
ff:5e:9c:f0:d7:be:ff:f7:db:3e:1a:65:42:8d:f1:d6:8c:b2:
cd:f9:19:38:82:db:01:ee:80:c7:f0:c1:43:a5:d0:fc:34:b4:
00:5b:54:93:fd:5a:30:2e:81:78:25:2e:7b:01:aa:3d:ff:a5:
87:99:ba:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:39 2024 by rpki-client on console-ams.rpki-client.org