Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/169B7BDA0BE911EDBB74FC7EC4F9AE02.roa
File: 169B7BDA0BE911EDBB74FC7EC4F9AE02.roa (raw, json)
Hash identifier: DlD6b1zBb+O0GT6BENzmHvHYJaH/knqy/TwtKd2Iw9U=
Subject key identifier: 6F:EE:71:A4:BF:92:73:54:CD:E6:78:F8:FE:27:59:E2:B6:0F:9E:E9
Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934
Certificate serial: 032E
Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/169B7BDA0BE911EDBB74FC7EC4F9AE02.roa
Signing time: Mon 25 Jul 2022 07:12:06 +0000
ROA not before: Mon 25 Jul 2022 07:12:06 +0000
ROA not after: Fri 30 Dec 2022 00:00:00 +0000
asID: 203786
IP address blocks: 103.228.66.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 814 (0x32e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934
Validity
Not Before: Jul 25 07:12:06 2022 GMT
Not After : Dec 30 00:00:00 2022 GMT
Subject: CN=62de4245-f477
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:45:1e:e9:f3:f7:76:ea:b4:8f:8c:25:4e:1f:
a8:46:f9:a7:21:63:c8:05:14:65:56:99:27:24:a5:
25:60:ae:03:18:79:13:07:06:ea:52:58:16:02:c4:
37:0e:a0:06:f0:69:87:cc:ab:f2:10:99:07:ee:67:
c0:62:86:d2:60:82:98:f3:ac:c3:23:56:a4:d9:e5:
7e:35:1b:48:8c:34:56:06:3d:bd:10:6f:cb:a5:2c:
a7:42:98:26:46:54:e9:b1:16:20:67:a8:56:a7:a4:
d4:72:a0:a7:ad:87:a7:fc:96:28:ab:b8:77:3e:60:
3f:e1:bf:3f:1c:6e:fb:f8:14:4d:be:5c:fd:cb:aa:
28:7f:ca:10:76:dc:45:ef:b0:a8:d6:ac:45:0d:9d:
2b:90:15:23:9c:23:e8:26:e9:24:92:7c:39:e8:da:
dd:c5:72:36:91:f6:a3:4f:aa:b8:21:d2:90:13:6f:
c0:30:86:98:62:1b:cd:40:6b:04:fa:76:77:49:25:
30:ad:34:18:f9:56:e3:73:73:48:41:a5:2c:3d:4a:
b0:c6:ea:6e:a3:66:5b:b4:7e:72:16:6a:5a:82:c1:
97:9f:76:87:f2:6d:90:e2:b6:8a:03:81:81:16:e8:
b4:cb:ce:2f:cb:e3:c7:80:b2:90:14:80:e3:1e:ef:
18:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:EE:71:A4:BF:92:73:54:CD:E6:78:F8:FE:27:59:E2:B6:0F:9E:E9
X509v3 Authority Key Identifier:
keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/169B7BDA0BE911EDBB74FC7EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.228.66.0/23
Signature Algorithm: sha256WithRSAEncryption
79:8f:56:a4:d1:39:80:b8:f1:6c:84:37:67:9b:56:ff:0a:87:
6c:89:fe:7b:10:10:39:2f:05:4d:05:4b:d0:08:13:52:b9:9a:
e6:82:6f:da:76:98:50:86:1f:d8:6a:42:85:34:20:dc:5e:e7:
73:5d:82:1c:e5:e5:41:bc:7a:14:cc:7b:82:68:ef:82:a5:88:
5f:4e:7c:b7:f2:f1:63:3f:68:dd:bd:49:f4:64:e7:f6:bd:33:
0f:c4:37:72:28:75:d3:56:cd:6e:6f:18:ed:4f:1e:90:fc:2a:
ca:8d:ba:91:15:01:92:36:bb:ff:ac:49:ce:d5:93:a9:76:ad:
f3:1f:12:59:b4:db:e1:ba:9f:4c:d5:ee:4a:17:cb:32:2d:ad:
13:1e:72:ac:89:9a:09:67:99:f9:eb:91:87:8d:1c:05:20:69:
d0:10:31:31:f6:1f:ee:4f:20:a8:7f:f3:7a:91:e3:b0:0e:3a:
03:b7:df:37:4b:31:26:2b:fc:96:9c:92:61:2a:c3:70:a5:a8:
5a:73:0a:60:fc:b0:f9:01:b4:22:d5:09:49:09:8a:8b:ed:8b:
c0:37:8b:1f:0a:66:62:1b:9b:2a:26:5f:33:e0:34:02:a1:8e:
49:ec:4b:d5:68:60:14:83:cd:82:a4:eb:04:ba:d6:ad:af:da:
b1:45:50:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:50:55 2024 by rpki-client on console-fra.rpki-client.org