Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9116DDB/E1CDCDD2BE1B11EDA61ACD84C4F9AE02/7B74F4D437F111EEAA24E512C4F9AE02.roa
File: 7B74F4D437F111EEAA24E512C4F9AE02.roa (raw, json)
Hash identifier: bUbdBkGEvkNE4NZxJ2zaDLg3gooGqSuZ2A0agGjQ4d0=
Subject key identifier: 98:19:92:C1:E8:E7:EC:74:FD:A3:B2:A1:56:DA:74:C5:A0:A6:7C:3C
Certificate issuer: /CN=A9116DDB/serialNumber=0C769DA44982F61650362943E6DFEF951B9777FA
Certificate serial: 60
Authority key identifier: 0C:76:9D:A4:49:82:F6:16:50:36:29:43:E6:DF:EF:95:1B:97:77:FA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHadpEmC9hZQNilD5t_vlRuXd_o.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9116DDB/E1CDCDD2BE1B11EDA61ACD84C4F9AE02/7B74F4D437F111EEAA24E512C4F9AE02.roa
Signing time: Fri 11 Aug 2023 02:47:59 +0000
ROA not before: Fri 11 Aug 2023 02:47:59 +0000
ROA not after: Fri 01 Dec 2023 00:00:00 +0000
asID: 399471
IP address blocks: 103.71.93.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96 (0x60)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9116DDB/serialNumber=0C769DA44982F61650362943E6DFEF951B9777FA
Validity
Not Before: Aug 11 02:47:59 2023 GMT
Not After : Dec 1 00:00:00 2023 GMT
Subject: CN=64d5a15f-0153
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:e7:e4:1a:e7:5f:bb:4e:ad:b1:2d:95:3f:e3:
ac:16:df:37:2a:a8:19:17:cf:1a:d5:41:c9:a9:eb:
b8:dc:14:0b:5c:b0:09:50:8a:86:ad:b6:48:e2:3a:
47:8f:a7:af:db:ad:ab:c8:44:53:e2:98:29:fa:e7:
57:19:89:90:a7:08:64:08:cc:7d:ce:79:14:8c:f5:
59:cd:e5:1b:3e:da:f7:c6:38:95:24:6f:c6:86:eb:
bb:e8:43:f1:7e:39:eb:78:e2:27:6e:52:b6:b1:b3:
07:bf:e0:98:38:7b:f6:3e:1c:77:87:ad:b5:b6:d1:
79:a2:8e:15:8c:79:48:52:b7:46:25:75:69:3d:88:
2d:e2:5e:29:f7:1f:97:b7:b4:da:73:17:51:b1:5e:
06:49:00:dd:50:84:e5:df:f3:8c:f3:b6:53:a0:cb:
36:e1:70:d8:ef:ee:53:4d:38:91:d5:19:2a:5f:3f:
25:fb:e0:20:c9:e3:ee:3b:8d:82:39:7a:36:17:f8:
99:09:e6:90:5b:aa:4c:04:bb:6b:7e:d9:07:e7:07:
20:88:db:09:4b:4c:1f:d8:98:51:30:0c:97:48:41:
4d:be:75:18:a9:13:3b:96:8a:44:53:ee:60:35:f7:
5f:10:1b:da:e1:aa:c9:35:53:23:92:23:27:c3:95:
9f:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:19:92:C1:E8:E7:EC:74:FD:A3:B2:A1:56:DA:74:C5:A0:A6:7C:3C
X509v3 Authority Key Identifier:
keyid:0C:76:9D:A4:49:82:F6:16:50:36:29:43:E6:DF:EF:95:1B:97:77:FA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9116DDB/E1CDCDD2BE1B11EDA61ACD84C4F9AE02/DHadpEmC9hZQNilD5t_vlRuXd_o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHadpEmC9hZQNilD5t_vlRuXd_o.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116DDB/E1CDCDD2BE1B11EDA61ACD84C4F9AE02/7B74F4D437F111EEAA24E512C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.71.93.0/24
Signature Algorithm: sha256WithRSAEncryption
81:f8:68:50:29:2d:f6:62:c8:59:b7:7c:8f:76:a4:5c:37:f3:
af:df:df:42:44:06:c4:52:e3:a4:7b:9a:2d:c1:4c:48:8c:50:
a4:ec:00:8a:d7:b4:d4:ff:77:6a:ed:27:05:cd:ba:89:78:90:
10:93:50:00:f9:e9:d1:da:b2:0d:21:6c:1b:84:11:bc:76:8d:
44:5f:03:c6:29:f7:b8:44:f6:ea:6d:a7:30:4c:5a:02:b0:cd:
4e:fb:8c:e8:fb:68:36:21:78:cc:df:d5:1c:42:48:f8:02:d8:
31:95:ba:a0:9b:12:bb:35:35:f5:70:ff:c9:82:71:58:80:11:
02:c4:51:05:28:cc:94:67:4c:60:ee:d4:78:6e:a0:25:19:c5:
b8:33:9b:67:c5:c5:72:a1:33:30:65:49:f6:38:de:7f:e5:d8:
3d:13:6e:bf:46:c2:83:63:2d:d3:c7:68:ed:69:a8:f0:44:d2:
9e:9b:a1:bd:30:57:f5:37:8a:b6:eb:8a:da:c5:34:9b:e5:fe:
cd:17:bc:11:13:d7:d1:36:72:51:ad:81:26:9a:73:53:82:78:
06:92:cd:22:76:ac:93:c4:b3:bf:b6:aa:5f:a8:be:f2:73:96:
35:56:02:2d:2d:0a:1c:7f:cf:84:71:e7:84:9e:fb:4e:fa:f5:
27:eb:9c:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:46 2024 by rpki-client on console-ams.rpki-client.org