Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/5B2FC3CA447211ED9BEACF67C4F9AE02.roa
File: 5B2FC3CA447211ED9BEACF67C4F9AE02.roa (raw, json)
Hash identifier: MfZo0P5idU7PJ+UKDzg+Hu++owZ8qtswla642gFhukc=
Subject key identifier: EC:38:7C:58:F7:55:98:EB:91:E8:40:C5:FF:67:78:23:F4:6B:C3:55
Certificate issuer: /CN=A911EA27/serialNumber=BC862141309716C0E4DC37DFFF33E5AB0C554AD0
Certificate serial: 02
Authority key identifier: BC:86:21:41:30:97:16:C0:E4:DC:37:DF:FF:33:E5:AB:0C:55:4A:D0
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYhQTCXFsDk3Dff_zPlqwxVStA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/5B2FC3CA447211ED9BEACF67C4F9AE02.roa
Signing time: Wed 05 Oct 2022 05:55:47 +0000
ROA not before: Wed 05 Oct 2022 05:55:47 +0000
ROA not after: Sat 30 Dec 2023 00:00:00 +0000
asID: 150314
IP address blocks: 103.55.156.0/24 maxlen: 24
2001:df1:48c0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911EA27/serialNumber=BC862141309716C0E4DC37DFFF33E5AB0C554AD0
Validity
Not Before: Oct 5 05:55:47 2022 GMT
Not After : Dec 30 00:00:00 2023 GMT
Subject: CN=633d1c62-8561
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:8c:e3:fa:78:0d:a2:04:f2:00:6f:e3:9d:1f:
8c:02:6e:62:12:b2:fd:9a:ab:43:1b:e4:78:a3:6f:
18:60:fe:20:24:79:0f:0f:ff:ef:dc:39:68:89:b7:
72:ac:45:79:57:ae:b0:df:2e:0a:57:a6:21:27:25:
2c:f6:b9:6a:64:fa:c0:ec:8c:4b:2a:90:17:aa:2a:
d0:9b:8d:e6:d5:d2:ec:30:48:fa:6a:63:1c:a2:b9:
df:c9:a6:6c:be:51:66:55:d9:55:75:5f:a7:84:49:
04:e6:76:a1:f1:96:19:1e:a3:a4:a2:b9:62:14:5e:
6b:3e:49:70:bc:0b:9b:71:e8:49:f5:94:40:e5:0c:
c6:5e:bf:4a:fe:de:f5:17:19:c0:e6:23:7b:93:2c:
17:24:7e:13:5e:8d:47:bb:62:7a:5d:6b:53:6f:f5:
c3:e4:ab:14:a2:88:f9:f2:b0:11:98:c8:e5:d3:b5:
ee:75:91:99:78:18:a4:05:9e:b6:99:8b:b3:77:0d:
31:13:aa:c9:00:cf:4e:cd:96:13:35:bf:93:d0:35:
d8:a3:a6:34:d9:26:03:d7:bc:bc:30:06:44:72:3d:
a7:18:7d:50:19:1b:be:aa:38:f9:ff:68:0d:74:d4:
be:b1:22:bd:00:75:a9:1d:2f:81:7c:50:ae:e8:55:
8c:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:38:7C:58:F7:55:98:EB:91:E8:40:C5:FF:67:78:23:F4:6B:C3:55
X509v3 Authority Key Identifier:
keyid:BC:86:21:41:30:97:16:C0:E4:DC:37:DF:FF:33:E5:AB:0C:55:4A:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYhQTCXFsDk3Dff_zPlqwxVStA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/5B2FC3CA447211ED9BEACF67C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.55.156.0/24
IPv6:
2001:df1:48c0::/48
Signature Algorithm: sha256WithRSAEncryption
73:3f:08:9d:4f:b3:e5:80:2b:73:09:72:ea:71:8d:d2:3d:66:
20:90:33:a3:56:19:6b:0c:bb:6c:df:6e:af:33:0f:52:b2:86:
29:50:ab:62:bd:5f:86:85:da:7e:8d:ed:21:95:13:94:6c:ce:
be:d6:f5:1a:e1:9d:4d:c8:f3:95:c1:45:66:5b:b5:e6:85:34:
57:f0:83:e6:48:f3:55:38:4e:bf:e2:d8:0b:fa:ab:2a:14:41:
9a:d8:a8:bf:0c:2c:4b:4d:53:59:1f:50:b5:6c:2d:07:f6:90:
9d:08:f6:b3:92:01:3f:d8:f7:80:0d:16:1f:53:87:b7:f9:6a:
ce:4d:e4:54:40:b9:26:40:94:8d:d3:2f:42:36:0b:86:9b:a6:
ea:75:d0:22:e0:d3:93:db:93:6e:7e:8d:14:06:42:d9:5f:99:
31:ae:e7:5a:77:99:d3:f9:3e:68:02:10:e5:dd:45:d7:cb:55:
80:22:0f:2a:65:8c:bb:9e:06:f4:66:69:ca:79:8e:7e:3b:db:
c5:ac:28:0c:bc:7f:f5:8d:69:36:c9:90:6f:90:1c:9f:e7:de:
8f:1c:be:7f:c4:2c:b8:30:88:f2:4b:83:93:ee:09:b1:e4:d8:
ff:74:55:8f:f1:91:df:00:9c:cc:2e:47:97:81:5d:bb:66:ea:
ff:80:4b:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:50:56 2024 by rpki-client on console-fra.rpki-client.org