Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9112571/209949E461EF11EDA768A967C4F9AE02/326DC44461F211EDAC1A6F69C4F9AE02.roa
File: 326DC44461F211EDAC1A6F69C4F9AE02.roa (raw, json)
Hash identifier: u68zF8vlvdkNrW46onBN8e8X/dKT20kSX/fGd+VZBIs=
Subject key identifier: 0F:C5:F6:34:AF:13:C7:3C:73:7D:38:07:92:0D:90:85:06:7C:72:08
Certificate issuer: /CN=A9112571/serialNumber=7A2CA09A857129B1804282492312433DAB75E6C2
Certificate serial: 02
Authority key identifier: 7A:2C:A0:9A:85:71:29:B1:80:42:82:49:23:12:43:3D:AB:75:E6:C2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eiygmoVxKbGAQoJJIxJDPat15sI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9112571/209949E461EF11EDA768A967C4F9AE02/326DC44461F211EDAC1A6F69C4F9AE02.roa
Signing time: Fri 11 Nov 2022 18:53:58 +0000
ROA not before: Fri 11 Nov 2022 18:53:58 +0000
ROA not after: Sat 30 Dec 2023 00:00:00 +0000
asID: 150342
IP address blocks: 103.17.4.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9112571/serialNumber=7A2CA09A857129B1804282492312433DAB75E6C2
Validity
Not Before: Nov 11 18:53:58 2022 GMT
Not After : Dec 30 00:00:00 2023 GMT
Subject: CN=636e9a45-3a38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:6b:c3:0b:58:4c:e5:1f:1b:9c:cc:0d:e0:e6:
b7:42:94:70:1c:1c:a7:48:ae:17:ab:4b:f5:38:98:
28:77:b3:cc:aa:71:07:50:6b:27:9a:05:ce:05:c7:
a9:e3:77:d6:71:2f:23:b1:cb:3e:28:de:fb:9b:ba:
8b:85:42:c9:fd:a9:93:d8:00:f6:11:a5:9e:fa:21:
58:0d:70:dd:07:83:bf:39:89:45:63:b9:0f:7f:09:
c8:59:6f:ab:b1:9e:86:3b:42:63:7c:97:92:74:78:
fc:b2:41:73:bc:cb:0a:52:ba:a4:0a:d7:b4:18:b2:
21:ac:29:a2:92:5c:1f:4c:47:df:b2:ed:36:e1:15:
34:d6:ce:64:6f:e7:bc:53:cf:c5:52:54:fd:63:fa:
fa:fc:2e:6a:65:c3:89:9a:90:e8:23:b2:04:97:dc:
79:2e:73:51:ef:69:29:fd:32:1b:d8:49:ce:17:4c:
7f:58:3b:b7:78:c1:ae:8e:03:dd:f6:95:6b:43:bd:
80:e0:1c:41:09:1f:6b:f0:e9:9b:91:61:4a:12:fc:
7f:ce:c0:82:89:1d:05:1f:ba:ac:13:85:ea:71:94:
ac:67:b2:dd:58:75:14:b3:2f:9d:0a:bb:5c:d6:54:
f4:f2:af:ea:60:88:e2:39:e3:b3:c4:f9:c9:69:a0:
f1:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:C5:F6:34:AF:13:C7:3C:73:7D:38:07:92:0D:90:85:06:7C:72:08
X509v3 Authority Key Identifier:
keyid:7A:2C:A0:9A:85:71:29:B1:80:42:82:49:23:12:43:3D:AB:75:E6:C2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9112571/209949E461EF11EDA768A967C4F9AE02/eiygmoVxKbGAQoJJIxJDPat15sI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eiygmoVxKbGAQoJJIxJDPat15sI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112571/209949E461EF11EDA768A967C4F9AE02/326DC44461F211EDAC1A6F69C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.17.4.0/23
Signature Algorithm: sha256WithRSAEncryption
69:cb:2c:0f:4d:d2:68:dd:b3:8a:a5:8d:92:07:cc:f8:09:83:
e9:cf:3e:06:7b:9d:a7:a9:c3:93:44:df:72:09:fa:c2:a5:7a:
ee:e1:84:11:28:72:c6:24:2d:17:12:a1:a6:3e:d5:28:5d:cc:
94:dd:b0:3f:06:8d:9f:06:43:67:08:08:73:8f:71:88:10:cf:
00:fe:79:e2:2c:f4:04:8c:74:46:e5:3d:c3:8a:0f:8e:3b:dc:
51:04:c8:e9:c5:03:81:71:00:da:dc:67:62:f5:d4:6c:9e:f1:
7e:ae:90:3b:5a:98:b5:23:35:f5:39:69:3f:cf:b2:12:27:14:
95:46:34:e2:49:40:77:dd:5f:c9:a1:d6:c9:08:16:38:a5:08:
c0:4a:b2:9b:56:12:88:3c:be:e6:5a:9b:e7:65:fe:0c:21:7a:
c2:4a:3b:4f:b6:03:29:13:e0:f5:c1:8b:36:f3:2c:da:4e:7d:
d6:51:3a:4f:92:a4:28:ee:08:29:8c:2a:e6:2d:c7:34:c0:7b:
4f:95:9a:f3:d9:05:0d:8d:f8:fc:41:11:95:6a:f2:1d:c7:05:
79:6f:a6:ee:6b:06:2e:c1:f5:f9:32:34:dd:db:4e:8d:38:28:
d1:15:3a:94:b1:ec:06:29:9e:0f:0f:96:86:0d:ee:1e:30:9f:
0e:8b:bf:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:50:54 2024 by rpki-client on console-fra.rpki-client.org