Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/E99888A2A65A11EB83832E25C4F9AE02.roa
File: E99888A2A65A11EB83832E25C4F9AE02.roa (raw, json)
Hash identifier: 2/NCYjmYOlGknJuCeFMvcm5J6ijS480jxeZeIi1BG/w=
Subject key identifier: 2F:72:0B:B9:EA:F4:A6:C2:84:E9:68:B8:DB:8F:23:34:6F:B7:C8:F5
Certificate issuer: /CN=A911AE8B/serialNumber=802C751FA984347DF9C93CEDB97ED951A9528286
Certificate serial: 0A0B
Authority key identifier: 80:2C:75:1F:A9:84:34:7D:F9:C9:3C:ED:B9:7E:D9:51:A9:52:82:86
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCx1H6mENH35yTztuX7ZUalSgoY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/E99888A2A65A11EB83832E25C4F9AE02.roa
Signing time: Fri 20 May 2022 19:39:05 +0000
ROA not before: Fri 20 May 2022 19:39:04 +0000
ROA not after: Sun 30 Jul 2023 00:00:00 +0000
asID: 396982
IP address blocks: 103.214.16.0/22 maxlen: 24
144.48.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2571 (0xa0b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911AE8B/serialNumber=802C751FA984347DF9C93CEDB97ED951A9528286
Validity
Not Before: May 20 19:39:04 2022 GMT
Not After : Jul 30 00:00:00 2023 GMT
Subject: CN=6287ee58-160e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:1e:92:0f:cd:a8:ed:61:d8:8e:2b:d9:a4:15:
de:ba:28:2b:db:76:fb:0c:37:82:36:d6:37:c1:38:
8d:76:ed:fc:af:0f:e8:ad:bb:b3:91:24:ac:48:dc:
9e:cc:a2:e3:40:72:b2:95:0f:b8:1c:fa:64:cf:3a:
9d:0c:21:f0:60:53:33:1a:6c:2f:04:66:1e:1c:7a:
a2:27:b2:71:f5:53:5e:36:2a:f1:4b:6d:6d:09:b4:
33:bb:23:6d:d3:57:b7:d7:f2:8e:f2:b6:85:8c:a6:
97:e7:aa:be:a8:3e:38:8c:cf:96:4f:3f:b8:52:1b:
f2:53:36:83:a5:19:bd:e7:ad:89:01:35:09:ab:fd:
91:90:79:f9:60:b0:47:d6:aa:3c:94:46:fa:95:10:
16:fc:a2:00:a9:95:ea:06:22:63:6f:52:25:48:5c:
5a:8f:73:c1:62:0a:59:d0:c0:f4:49:4f:38:75:e1:
3b:fb:e4:1e:6b:69:91:d9:7e:3d:d3:5a:e7:20:34:
60:64:61:fa:46:01:46:a6:e6:2c:93:06:22:0e:d1:
d7:a5:cb:11:32:19:0e:5e:41:1b:ec:a7:05:a6:17:
73:2a:c5:40:8e:8f:0f:5c:3a:aa:df:11:c2:2f:b3:
2f:21:2d:9b:80:99:b1:fa:d9:74:4d:6b:9d:a9:b7:
e6:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:72:0B:B9:EA:F4:A6:C2:84:E9:68:B8:DB:8F:23:34:6F:B7:C8:F5
X509v3 Authority Key Identifier:
keyid:80:2C:75:1F:A9:84:34:7D:F9:C9:3C:ED:B9:7E:D9:51:A9:52:82:86
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCx1H6mENH35yTztuX7ZUalSgoY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/E99888A2A65A11EB83832E25C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.214.16.0/22
144.48.35.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:05:a7:c5:38:d5:4a:6f:9a:cf:37:d6:0e:77:93:70:e6:90:
f8:20:f6:7c:6f:bd:35:10:57:9a:a6:ed:c8:41:30:1b:74:4a:
67:97:fc:f4:ee:6c:e2:b4:41:97:61:0a:69:d8:91:c7:aa:29:
5c:57:30:29:2f:73:77:12:9b:44:73:c5:a6:bf:3d:64:be:71:
4e:9f:77:4f:f9:d6:9a:4b:30:49:b1:ad:4c:61:9d:f8:a5:1a:
c7:cc:2f:a8:44:98:d3:99:5b:21:3a:11:db:e6:b0:ac:f6:a8:
ca:30:72:88:c7:b7:47:8e:eb:a0:c8:f1:51:88:f2:b1:13:52:
a3:2e:a3:ca:d0:b8:e1:d3:ac:1e:b4:0b:8d:37:6f:69:66:3e:
8d:cb:bf:8a:9b:06:5e:ee:05:c4:36:ca:db:d3:ac:91:6c:99:
9b:90:a0:f0:a5:33:8a:86:de:75:53:34:ea:0d:a6:d0:3a:3c:
7f:73:28:05:a5:3a:ad:1f:a5:24:c3:0a:cf:9b:3a:18:c1:8e:
4b:77:b2:51:ba:79:df:0c:ca:de:b5:ae:1e:01:0f:c9:ce:be:
e6:ca:11:59:1f:65:5d:18:f9:3f:7d:7b:b3:8f:99:c3:7a:e9:
7f:38:aa:cc:e5:a5:c7:60:29:f4:d8:d8:99:f7:c4:cf:ce:65:
0c:23:47:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:46 2024 by rpki-client on console-ams.rpki-client.org