Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911C676/CD38AB16DDD911E8AF451F0AC4F9AE02/AACFAA08197311EFAF2F2B51C4F9AE02.roa
File: AACFAA08197311EFAF2F2B51C4F9AE02.roa (raw, json)
Hash identifier: +93cu3PvtYoN/SjbeIuO54zvN2V0u2whQgifYFk7VJs=
Subject key identifier: 39:06:1C:E8:90:5A:D3:1D:E9:2E:C4:A2:44:07:D1:F5:A8:3D:6E:E4
Certificate issuer: /CN=A911C676/serialNumber=A9E95A416BCCEEFD86EA2FA019C25E4D76B8E9D9
Certificate serial: 118B
Authority key identifier: A9:E9:5A:41:6B:CC:EE:FD:86:EA:2F:A0:19:C2:5E:4D:76:B8:E9:D9
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qelaQWvM7v2G6i-gGcJeTXa46dk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911C676/CD38AB16DDD911E8AF451F0AC4F9AE02/AACFAA08197311EFAF2F2B51C4F9AE02.roa
Signing time: Fri 24 May 2024 02:16:45 +0000
ROA not before: Fri 24 May 2024 02:16:45 +0000
ROA not after: Fri 31 Jan 2025 00:00:00 +0000
asID: 214876
IP address blocks: 103.103.128.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4491 (0x118b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911C676
Validity
Not Before: May 24 02:16:45 2024 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=664ff88d-65c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:c0:b9:59:bc:4d:9a:53:dc:a4:ed:60:1f:e8:
1a:97:59:6e:ef:46:c8:c0:fd:41:ee:36:34:7d:f6:
23:8c:4c:74:f9:28:ca:a0:41:16:d2:11:0e:8a:a1:
03:ba:55:2c:df:ed:8a:6a:a4:c8:37:d1:33:da:4e:
22:a7:9d:e4:5f:a2:f4:88:ca:c8:c9:57:95:c6:28:
b4:89:53:29:0f:ab:1b:4f:d1:41:84:92:13:fd:40:
01:5c:89:7d:c1:bd:cc:5d:04:54:9e:a1:8e:e5:9d:
bd:8d:01:9b:9b:5c:80:07:8f:78:91:08:56:48:40:
8a:4a:fa:a7:96:18:e3:ec:99:e1:7b:b7:57:56:71:
31:0c:33:ac:29:0f:67:4b:b0:71:79:30:db:63:20:
f3:fc:51:df:21:22:30:c4:f2:72:95:bd:40:b2:08:
ef:af:58:61:1a:32:e7:1b:15:03:0c:9d:e3:3d:d2:
94:36:00:5e:eb:24:8c:99:2d:68:73:76:bb:af:83:
f8:c3:d8:a5:a6:1f:20:81:34:5a:2f:82:85:12:00:
6b:91:3c:88:ba:c5:f8:2b:ce:56:6a:72:8b:ca:f2:
f4:30:40:5e:4c:08:4f:67:06:96:1a:23:13:40:56:
1c:66:9f:7f:12:41:9d:93:79:10:6b:2d:49:1a:aa:
d7:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:06:1C:E8:90:5A:D3:1D:E9:2E:C4:A2:44:07:D1:F5:A8:3D:6E:E4
X509v3 Authority Key Identifier:
keyid:A9:E9:5A:41:6B:CC:EE:FD:86:EA:2F:A0:19:C2:5E:4D:76:B8:E9:D9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911C676/CD38AB16DDD911E8AF451F0AC4F9AE02/qelaQWvM7v2G6i-gGcJeTXa46dk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qelaQWvM7v2G6i-gGcJeTXa46dk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C676/CD38AB16DDD911E8AF451F0AC4F9AE02/AACFAA08197311EFAF2F2B51C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.103.128.0/24
Signature Algorithm: sha256WithRSAEncryption
91:fc:03:55:31:20:46:d8:18:2c:e6:12:26:a8:a9:a1:bd:35:
4f:ca:5c:b7:04:b6:c8:60:2d:2d:be:ce:b4:87:4d:5e:64:de:
41:11:56:c2:5a:04:76:88:3c:ca:68:b6:7d:a8:4f:d2:77:03:
0a:62:c4:7d:58:5f:eb:93:e6:e6:39:39:99:41:f8:3f:90:68:
39:c6:ad:ef:1b:89:d2:35:97:2a:e3:c5:8a:e9:1d:e1:ab:d7:
9e:3f:ce:b9:02:41:77:75:d7:6d:3c:00:13:a9:6a:33:e8:e4:
99:c4:ca:9a:92:07:14:b4:ad:ec:37:93:15:e4:d2:3c:bb:ef:
40:5b:4a:40:48:ce:61:18:94:de:13:8f:5d:3d:cf:e5:66:90:
bd:62:47:28:44:f2:81:67:7d:0c:72:6f:51:7f:87:8b:38:fe:
36:8d:2f:65:b9:16:9b:8d:64:bc:26:73:6b:91:1d:a5:3f:08:
aa:57:ca:8c:55:e5:f5:9e:fb:64:45:a3:c7:f6:83:25:9e:f6:
33:9a:05:b4:88:fa:79:e3:84:ad:e2:92:03:45:f9:a7:f0:3f:
db:94:7a:21:b6:7f:3b:5f:37:6e:58:b8:c6:c2:94:74:4d:54:
3c:22:c7:c9:d9:ae:8b:02:7d:34:df:e9:a6:9e:cd:ae:d7:ef:
6e:de:42:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:54:05 2025 by rpki-client