Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9116DDB/E1CDCDD2BE1B11EDA61ACD84C4F9AE02/B77E58523CC511EE9C16F11DC4F9AE02.roa
File: B77E58523CC511EE9C16F11DC4F9AE02.roa (raw, json)
Hash identifier: RIlbFgh/HvnXnyyPWTPI8f1PJ+ZiJwQWybquivaUFfU=
Subject key identifier: D6:28:AC:C6:F6:C2:AD:37:1D:C3:45:2B:41:7B:D7:C6:D3:13:02:11
Certificate issuer: /CN=A9116DDB/serialNumber=0C769DA44982F61650362943E6DFEF951B9777FA
Certificate serial: 6D
Authority key identifier: 0C:76:9D:A4:49:82:F6:16:50:36:29:43:E6:DF:EF:95:1B:97:77:FA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHadpEmC9hZQNilD5t_vlRuXd_o.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9116DDB/E1CDCDD2BE1B11EDA61ACD84C4F9AE02/B77E58523CC511EE9C16F11DC4F9AE02.roa
Signing time: Thu 17 Aug 2023 06:18:27 +0000
ROA not before: Thu 17 Aug 2023 06:18:27 +0000
ROA not after: Fri 01 Dec 2023 00:00:00 +0000
asID: 21082
IP address blocks: 103.71.94.0/24 maxlen: 24
103.71.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109 (0x6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9116DDB/serialNumber=0C769DA44982F61650362943E6DFEF951B9777FA
Validity
Not Before: Aug 17 06:18:27 2023 GMT
Not After : Dec 1 00:00:00 2023 GMT
Subject: CN=64ddbbb3-eb77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c4:49:5c:d6:17:ae:5d:32:c3:8b:34:a7:ac:
c3:90:86:b1:b2:5d:28:79:75:5c:6b:9f:26:f7:20:
fa:82:aa:67:c9:44:2a:9f:64:3b:b0:5e:08:45:ed:
9e:21:ba:01:cd:1a:28:19:b4:1f:3e:bc:8e:0f:7f:
f7:a7:4e:32:88:17:d2:d3:9e:91:5f:7f:27:bb:6b:
fb:13:fe:cb:c0:3b:a7:ac:bd:c5:db:d6:63:15:4e:
62:c7:dd:12:e2:0b:1a:6e:1e:6c:92:ed:04:89:31:
ba:b7:94:c4:fb:e3:01:cf:ad:3c:b1:06:9b:67:9a:
aa:f8:77:d2:f6:3c:2a:c1:a8:3b:58:cc:4a:b5:9b:
75:ed:f5:36:b5:60:d0:8e:e4:9e:43:9d:f4:4c:1a:
5c:c3:e1:a7:70:79:e0:0c:19:95:47:97:8b:4d:a5:
c1:6e:82:12:c6:83:80:66:eb:64:bf:5f:73:45:80:
1c:d6:ec:5f:79:39:1b:c8:f0:aa:c8:21:d8:33:53:
41:11:9b:48:a7:34:bb:89:28:a3:97:e2:c6:31:3f:
34:31:4b:4e:4e:14:11:99:13:d7:ec:e2:b9:89:69:
97:7b:b7:af:0d:3d:16:5c:38:95:32:de:81:71:63:
6f:79:60:be:f6:72:8a:f9:f7:d9:01:df:a6:76:69:
0f:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:28:AC:C6:F6:C2:AD:37:1D:C3:45:2B:41:7B:D7:C6:D3:13:02:11
X509v3 Authority Key Identifier:
keyid:0C:76:9D:A4:49:82:F6:16:50:36:29:43:E6:DF:EF:95:1B:97:77:FA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9116DDB/E1CDCDD2BE1B11EDA61ACD84C4F9AE02/DHadpEmC9hZQNilD5t_vlRuXd_o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHadpEmC9hZQNilD5t_vlRuXd_o.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116DDB/E1CDCDD2BE1B11EDA61ACD84C4F9AE02/B77E58523CC511EE9C16F11DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.71.94.0/23
Signature Algorithm: sha256WithRSAEncryption
1a:33:66:60:32:3e:f2:9e:46:71:ac:db:94:e3:00:27:f7:35:
9a:fa:fe:1c:05:81:ea:98:cb:93:85:7d:58:a8:fb:42:38:06:
a7:82:44:05:dd:3c:8d:d2:74:97:70:7c:50:15:01:b9:dc:0d:
6d:1f:8b:f4:87:66:92:36:af:9c:31:02:b4:93:48:f2:89:ca:
c7:46:d4:68:5a:48:91:92:5e:0a:c2:71:78:6e:a1:80:3d:dc:
ee:a6:65:d0:d3:53:4b:3e:1f:b2:be:ca:7b:70:c8:1a:1d:61:
e8:b5:2f:4d:db:a8:30:a0:ed:0a:d0:84:20:da:c3:3c:31:a9:
ce:7e:30:00:5e:fc:0f:9b:73:37:0b:ed:1d:3a:2d:f6:80:16:
16:98:9a:a5:57:8b:bf:2a:7e:eb:2e:b2:b9:33:a3:16:bb:2c:
1a:a6:da:67:fc:64:ac:21:2b:72:09:d9:c4:a1:79:3b:6b:05:
e3:1c:92:eb:71:cf:6f:5d:4d:75:fb:a7:65:d7:a5:7a:3f:98:
fb:6f:71:6c:78:a6:ca:af:42:44:0c:01:58:95:69:9e:bd:1a:
49:6b:9a:13:2f:35:07:91:67:1b:f4:af:fb:13:d5:ec:c5:4c:
c4:6f:d8:61:93:8c:aa:6e:20:92:b9:00:ac:d4:e2:f8:fd:bd:
3c:78:4f:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:46 2024 by rpki-client on console-ams.rpki-client.org