Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911C621/F7D00BEE743911ED986D7385C4F9AE02/05A7211E743D11EDB3D18909C4F9AE02.roa
File: 05A7211E743D11EDB3D18909C4F9AE02.roa (raw, json)
Hash identifier: 2X10eczTzFcVQ/3eN1OxfTaa2Te+WqyVkpZyGKecIKI=
Subject key identifier: DD:FB:56:A3:C5:6D:93:D6:AC:22:21:13:88:46:DE:19:F4:8E:29:74
Certificate issuer: /CN=A911C621/serialNumber=87A47F27E75E7C2839C133351DA2511482C6F9B4
Certificate serial: 50
Authority key identifier: 87:A4:7F:27:E7:5E:7C:28:39:C1:33:35:1D:A2:51:14:82:C6:F9:B4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h6R_J-defCg5wTM1HaJRFILG-bQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911C621/F7D00BEE743911ED986D7385C4F9AE02/05A7211E743D11EDB3D18909C4F9AE02.roa
Signing time: Wed 29 Mar 2023 06:57:08 +0000
ROA not before: Wed 29 Mar 2023 06:57:08 +0000
ROA not after: Wed 29 May 2024 00:00:00 +0000
asID: 400377
IP address blocks: 103.86.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80 (0x50)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911C621/serialNumber=87A47F27E75E7C2839C133351DA2511482C6F9B4
Validity
Not Before: Mar 29 06:57:08 2023 GMT
Not After : May 29 00:00:00 2024 GMT
Subject: CN=6423e144-cd8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:6a:33:12:e8:1b:e9:06:eb:3c:9f:40:78:93:
a5:69:3b:09:79:47:27:f4:d5:ed:d7:3b:6b:d3:dd:
b7:e4:0a:46:ae:b9:e7:3e:f1:07:b6:78:78:43:d3:
cf:84:64:9d:2c:30:a5:51:ac:f8:9c:2d:3a:3f:49:
af:78:d9:1e:3b:ca:2e:1f:27:b8:ca:c6:35:c1:5f:
1e:b3:26:03:14:18:4e:87:27:1d:67:41:b0:43:05:
71:35:3e:51:a4:23:60:b3:ff:84:4e:15:33:9c:ce:
71:a1:b1:51:36:fc:1d:87:9c:62:dc:97:90:c6:c7:
4d:f8:2f:66:61:10:5d:e2:6c:df:fa:f3:a4:e5:0a:
b9:5e:87:45:3d:2d:a5:88:69:a2:2d:53:05:2c:bf:
55:cf:55:40:d1:7f:dc:ee:b0:23:0d:6a:01:ea:a0:
c1:b9:15:16:bd:a9:13:0c:ed:5a:34:6a:c9:40:47:
b5:83:d2:eb:a7:ef:95:3f:dc:23:b9:97:cd:c0:72:
bb:3f:97:a8:3a:58:b8:92:e6:f4:f6:d7:23:21:72:
d5:94:58:58:f5:20:80:a1:5f:95:25:b2:22:37:6b:
82:14:d7:5c:ba:91:a1:56:80:b4:a1:f0:93:71:1e:
e2:cf:16:49:73:7c:a0:eb:e6:b1:05:ac:a6:f0:9f:
b8:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:FB:56:A3:C5:6D:93:D6:AC:22:21:13:88:46:DE:19:F4:8E:29:74
X509v3 Authority Key Identifier:
keyid:87:A4:7F:27:E7:5E:7C:28:39:C1:33:35:1D:A2:51:14:82:C6:F9:B4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911C621/F7D00BEE743911ED986D7385C4F9AE02/h6R_J-defCg5wTM1HaJRFILG-bQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h6R_J-defCg5wTM1HaJRFILG-bQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C621/F7D00BEE743911ED986D7385C4F9AE02/05A7211E743D11EDB3D18909C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.86.120.0/24
Signature Algorithm: sha256WithRSAEncryption
31:05:82:8b:c8:7a:cf:b6:92:90:ba:dd:74:46:6f:29:1b:16:
4d:03:83:d7:c5:af:70:2f:cf:47:0a:5a:60:a6:40:25:34:0b:
5b:78:98:c0:f7:55:a2:0e:53:54:7b:2e:18:8d:2c:b5:3e:62:
77:f9:40:c7:5e:86:b6:aa:b9:92:a5:f3:5a:11:6b:61:02:f5:
9b:59:6e:49:e0:96:19:d8:14:ea:5d:09:4f:90:e0:3e:91:10:
bb:52:f8:5b:4c:af:2a:4f:a4:6d:14:d9:db:34:0f:f5:1a:41:
29:db:6d:d6:49:29:65:e3:4a:36:48:60:b3:5b:14:68:19:0e:
5d:28:ff:63:d9:8d:a8:96:d7:77:a1:35:d0:bc:f0:5e:b5:a9:
87:56:6b:ed:aa:5d:1d:5e:6f:ef:95:43:0c:89:1b:1b:e5:00:
ae:a7:08:5b:6d:51:c1:a3:5e:34:c4:73:81:34:65:ec:47:01:
3b:a1:36:f0:54:30:87:63:23:d1:3f:10:98:77:85:63:b1:7e:
b1:3c:e8:f2:c9:91:72:35:9a:dd:8f:b2:4b:d2:29:fd:bc:05:
5d:a1:87:21:c6:fe:6e:bd:87:49:bf:98:6e:b8:8c:bc:0c:d9:
9a:35:72:ca:3d:29:ae:8b:16:c2:90:b2:3f:bd:1d:09:8a:06:
33:6b:ea:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:50:56 2024 by rpki-client on console-fra.rpki-client.org