Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911218D/0EB6748AFFC811EA84A3667CC4F9AE02/0C2147C0865711EBB916321CC4F9AE02.roa
File: 0C2147C0865711EBB916321CC4F9AE02.roa (raw, json)
Hash identifier: 4zpSE7Lg0xeqXl+7TdrVPEPt5hf8AoG3yP5at2NUoDg=
Subject key identifier: AC:0A:4A:B6:F4:95:4A:70:EF:C7:B2:7B:F6:7B:EB:FB:2C:59:6B:E5
Certificate issuer: /CN=A911218D/serialNumber=E5CD79201EEB4BD9F0EF7656E7325F57165F7EA0
Certificate serial: 05D7
Authority key identifier: E5:CD:79:20:1E:EB:4B:D9:F0:EF:76:56:E7:32:5F:57:16:5F:7E:A0
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5c15IB7rS9nw73ZW5zJfVxZffqA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911218D/0EB6748AFFC811EA84A3667CC4F9AE02/0C2147C0865711EBB916321CC4F9AE02.roa
Signing time: Sun 30 Oct 2022 23:29:57 +0000
ROA not before: Sun 30 Oct 2022 23:29:57 +0000
ROA not after: Sat 30 Dec 2023 00:00:00 +0000
asID: 63526
IP address blocks: 103.156.126.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1495 (0x5d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911218D/serialNumber=E5CD79201EEB4BD9F0EF7656E7325F57165F7EA0
Validity
Not Before: Oct 30 23:29:57 2022 GMT
Not After : Dec 30 00:00:00 2023 GMT
Subject: CN=635f08f5-ac95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:d4:ab:bf:83:94:ec:cc:6a:56:b0:e0:28:ac:
7b:2b:f8:1f:29:1a:da:19:c2:71:59:d8:2f:7d:0c:
85:30:e9:23:7e:5c:20:23:dd:c3:e0:d1:a6:aa:f4:
86:86:9b:7c:78:82:b3:be:ae:10:71:1b:8e:e6:16:
e2:08:d9:f6:13:1b:9e:81:10:63:b0:30:0c:b4:29:
f8:df:84:30:c4:5b:27:0f:71:09:40:58:c8:8f:43:
58:15:bf:ba:f1:c5:fb:07:bc:68:2a:b5:ab:fa:7c:
43:af:fb:43:1a:d4:f2:65:93:1b:66:91:56:a6:66:
ac:34:95:28:74:51:94:5b:99:0f:28:6f:32:25:6d:
fa:9e:55:00:5d:30:43:03:49:db:45:52:be:9b:f1:
f0:b5:a3:f1:04:65:b8:84:a4:81:6d:af:50:93:a8:
b7:82:50:59:f0:65:ce:6e:8b:f3:1b:dd:d2:09:cc:
32:5f:69:a5:12:f5:df:77:98:e2:be:2a:a9:c0:f8:
7c:30:ea:01:96:80:7f:c5:88:f7:a9:0f:6a:0d:a3:
5b:c6:85:7b:8e:ad:af:50:2e:91:37:57:73:c2:ce:
31:83:d7:68:8e:34:29:ee:31:1b:af:c6:3e:7c:4d:
19:82:3e:1e:5a:b3:f7:6a:3b:50:fd:c1:38:09:8b:
e0:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:0A:4A:B6:F4:95:4A:70:EF:C7:B2:7B:F6:7B:EB:FB:2C:59:6B:E5
X509v3 Authority Key Identifier:
keyid:E5:CD:79:20:1E:EB:4B:D9:F0:EF:76:56:E7:32:5F:57:16:5F:7E:A0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911218D/0EB6748AFFC811EA84A3667CC4F9AE02/5c15IB7rS9nw73ZW5zJfVxZffqA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5c15IB7rS9nw73ZW5zJfVxZffqA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911218D/0EB6748AFFC811EA84A3667CC4F9AE02/0C2147C0865711EBB916321CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.156.126.0/24
Signature Algorithm: sha256WithRSAEncryption
56:b5:f0:5a:9d:62:de:6d:ab:16:ed:71:0d:2a:49:2e:dd:09:
2b:b0:91:1a:2b:a6:c8:9d:d3:a1:fb:7e:55:4c:0e:13:5b:49:
8f:a0:1e:0f:b6:6b:19:f1:e6:37:87:ab:80:0c:b2:ec:f7:88:
6f:c8:7e:85:2c:68:01:cf:06:22:98:66:70:8b:fc:60:77:bb:
20:c1:ed:53:31:33:05:46:e4:d2:46:31:13:82:43:aa:84:1e:
f0:57:8e:ac:21:6c:ff:93:58:49:d3:9a:11:8b:02:61:f5:00:
68:6f:2c:df:e8:38:03:f2:56:38:e7:39:85:97:e1:a7:87:12:
72:c2:b3:43:37:ee:30:b8:23:2e:51:fe:d1:1b:81:42:c0:df:
15:9c:d5:ff:62:dc:1d:7d:92:c2:df:20:1a:87:b3:dd:ad:5e:
4d:36:6b:c7:18:9d:54:75:17:c4:81:ec:10:11:a5:ab:5b:9e:
57:83:2e:4f:12:6b:b8:3d:f4:f2:b6:47:49:e7:77:54:fe:82:
34:38:4a:0e:cc:e6:4e:79:a4:44:6c:c6:83:51:2e:9c:4f:55:
d0:c2:98:21:0f:6f:e7:cd:a1:62:d6:3b:75:ce:1c:f1:cc:37:
75:ce:ae:aa:e1:77:bf:c9:33:5a:73:d3:ab:2d:72:a8:bd:82:
79:fe:63:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:50:54 2024 by rpki-client on console-fra.rpki-client.org