Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/32A8F464CC2F11ECBC1CF530C4F9AE02.roa
File: 32A8F464CC2F11ECBC1CF530C4F9AE02.roa (raw, json)
Hash identifier: Om1rMh5CR3YrK0VX+sEhicmNwprLSrYU3QuCwA0yA8I=
Subject key identifier: 44:55:F3:C0:41:DA:D0:36:34:35:6A:BE:65:A8:CD:C1:34:8B:95:67
Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934
Certificate serial: 0289
Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/32A8F464CC2F11ECBC1CF530C4F9AE02.roa
Signing time: Thu 05 May 2022 04:52:43 +0000
ROA not before: Thu 05 May 2022 04:52:43 +0000
ROA not after: Fri 30 Dec 2022 00:00:00 +0000
asID: 139734
IP address blocks: 103.225.199.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 649 (0x289)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934
Validity
Not Before: May 5 04:52:43 2022 GMT
Not After : Dec 30 00:00:00 2022 GMT
Subject: CN=6273581b-6184
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:9f:71:99:e1:a1:6c:49:9d:93:f4:e4:8e:15:
63:59:ff:4e:82:54:24:e0:80:0a:e2:52:a7:af:d5:
68:d8:1f:8c:ae:94:24:24:91:78:27:89:77:42:05:
69:64:07:b7:ae:16:b7:42:68:c7:6c:6d:a1:2e:49:
bf:d1:43:6f:e3:af:80:4e:5a:95:c2:16:bf:0f:18:
c5:12:de:95:e0:57:c5:53:b4:12:b8:21:37:93:d6:
62:5f:6a:62:60:e3:15:be:9d:dd:ea:43:b5:55:88:
98:c1:85:d0:ee:f5:ba:54:54:07:eb:30:bf:02:fa:
f6:41:fd:c3:1a:6b:d0:3f:20:46:79:e9:9f:c5:e3:
05:32:2b:8d:38:75:c5:00:94:18:29:c5:09:94:db:
b9:36:c7:2f:aa:ad:ac:da:d5:da:20:bf:c6:59:40:
00:7d:d2:1a:61:3d:10:c9:7e:7e:e0:84:d7:bc:f2:
22:27:74:91:15:58:07:0a:cc:a6:69:47:f1:2a:c5:
7f:31:84:83:da:57:15:26:92:41:c2:52:ca:fc:20:
6c:d3:6f:dc:bb:9f:4b:6b:2c:cc:71:ff:2b:74:8b:
78:3d:68:0b:50:61:ff:f4:47:6b:63:2d:f9:ef:e2:
88:2c:a4:5d:93:3e:94:84:fb:b5:45:0e:92:26:c4:
06:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:55:F3:C0:41:DA:D0:36:34:35:6A:BE:65:A8:CD:C1:34:8B:95:67
X509v3 Authority Key Identifier:
keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/32A8F464CC2F11ECBC1CF530C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.225.199.0/24
Signature Algorithm: sha256WithRSAEncryption
43:be:1b:4c:f6:40:20:f2:0b:5c:5c:20:43:15:c2:8a:e0:4f:
c8:1a:3c:90:ff:b7:7d:6b:d3:1b:a0:25:0c:56:f9:91:49:15:
fd:68:95:cf:12:5c:97:49:03:f2:cb:bf:b3:28:15:31:66:f7:
a8:05:63:26:4b:9a:ed:43:37:00:4e:cc:ac:3d:9b:c8:50:dd:
30:3e:dd:3a:01:b5:14:02:32:e7:e7:f7:6d:9a:af:26:21:7c:
69:5f:10:63:86:96:d1:71:3e:b1:71:a6:47:01:9d:11:d9:9a:
5a:d7:70:d9:7c:20:ef:1d:3f:fa:03:ce:50:b5:9c:14:79:a3:
a4:4c:e3:60:d2:b4:74:54:3a:5f:29:1c:cb:5e:54:7b:fc:c5:
ed:6f:ca:39:1d:10:f3:b6:e4:0b:7b:76:a0:39:1a:c3:e8:3b:
8a:e7:ad:b1:af:9b:50:73:71:31:f4:1e:aa:3e:af:11:a0:96:
38:3d:8e:97:ef:c4:54:a3:bf:9c:5d:84:3d:d2:a1:05:0a:ba:
14:c8:37:a7:c5:04:b6:5d:47:4f:c5:95:3b:87:e7:2d:ba:f1:
55:52:39:fa:df:f2:1c:8d:5c:1e:47:c0:ec:17:ba:77:9b:09:
08:63:cf:7e:dc:a3:50:16:0f:89:95:34:20:d1:ef:f6:38:d9:
a5:d8:d5:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:34 2023 by rpki-client on console-ams.rpki-client.org