Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9121071/2F0F7A4886B611EDAA3B2B33C4F9AE02/B086C9BC2A2311EE8127C45EC4F9AE02.roa
File: B086C9BC2A2311EE8127C45EC4F9AE02.roa (raw, json)
Hash identifier: SIe31Ukhn7PBZDmujm/OaeoH/dl2pk5X93n1tH3gFBA=
Subject key identifier: D7:69:5B:5E:9E:65:79:96:65:93:F5:B8:8B:23:0B:9F:90:38:46:C8
Certificate issuer: /CN=A9121071/serialNumber=94C2F46A32D10775E1649BA250F697FF47AC063D
Certificate serial: 74
Authority key identifier: 94:C2:F4:6A:32:D1:07:75:E1:64:9B:A2:50:F6:97:FF:47:AC:06:3D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lML0ajLRB3XhZJuiUPaX_0esBj0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9121071/2F0F7A4886B611EDAA3B2B33C4F9AE02/B086C9BC2A2311EE8127C45EC4F9AE02.roa
Signing time: Mon 24 Jul 2023 13:12:07 +0000
ROA not before: Mon 24 Jul 2023 13:12:07 +0000
ROA not after: Sun 31 Mar 2024 00:00:00 +0000
asID: 131471
IP address blocks: 103.59.216.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116 (0x74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9121071/serialNumber=94C2F46A32D10775E1649BA250F697FF47AC063D
Validity
Not Before: Jul 24 13:12:07 2023 GMT
Not After : Mar 31 00:00:00 2024 GMT
Subject: CN=64be78a7-d972
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:a2:9b:d2:b0:52:b4:c2:f5:8c:40:61:77:30:
0f:f8:7f:67:4f:22:2a:c8:5a:68:5f:ea:cf:b6:6d:
6e:df:6f:61:70:ed:b5:59:f2:56:f3:86:ff:ab:97:
aa:f1:e4:e0:f0:5c:34:22:d0:5a:83:ba:b9:dd:24:
c8:8c:34:55:51:00:2d:da:2c:7a:c0:5e:bd:8a:30:
98:ff:c7:da:f4:f0:dc:25:29:e1:62:84:6b:ab:f0:
d0:9f:91:ea:8c:52:0f:d2:98:6e:e5:e4:4d:fb:8f:
d6:e4:67:a0:c1:b7:5c:af:2c:fc:d2:29:c4:6d:8e:
2c:e8:07:04:54:fc:0c:63:b1:91:4a:c8:b8:2c:00:
86:9e:87:83:85:2a:ce:71:30:52:5a:21:5d:fe:b4:
c7:2e:16:e6:d9:6c:61:a5:f0:d7:81:89:f8:2d:c4:
a9:a7:b4:7e:e9:e4:0a:54:63:54:83:52:a0:4e:ec:
54:81:dd:3a:7a:1a:99:e9:b9:8b:9d:1c:a2:cf:e8:
4b:1d:b6:77:4c:b2:43:41:ca:4b:7f:16:4e:e3:a2:
a6:bf:bd:20:72:f0:79:d7:ed:aa:8b:01:80:08:d1:
b4:b2:d1:2c:e0:2f:7a:98:8a:5c:19:13:01:d1:b5:
0b:5a:ff:6c:f9:70:0e:7f:95:47:1b:69:3b:21:2c:
04:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:69:5B:5E:9E:65:79:96:65:93:F5:B8:8B:23:0B:9F:90:38:46:C8
X509v3 Authority Key Identifier:
keyid:94:C2:F4:6A:32:D1:07:75:E1:64:9B:A2:50:F6:97:FF:47:AC:06:3D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9121071/2F0F7A4886B611EDAA3B2B33C4F9AE02/lML0ajLRB3XhZJuiUPaX_0esBj0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lML0ajLRB3XhZJuiUPaX_0esBj0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9121071/2F0F7A4886B611EDAA3B2B33C4F9AE02/B086C9BC2A2311EE8127C45EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.59.216.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:a1:b8:26:fa:62:84:c9:d0:13:64:73:a4:40:34:29:84:24:
b4:1f:23:e8:ba:34:e3:aa:d4:ce:8a:86:a9:48:1b:04:71:53:
fd:56:ec:b9:5e:d8:30:0e:dd:97:c9:69:ec:4f:9b:bd:d9:9d:
67:6c:c8:d1:c6:1b:52:d3:92:e2:4b:2a:65:43:8b:bd:9c:8b:
91:c2:1e:e5:62:2e:e6:91:8b:40:1d:20:15:cb:01:e2:3d:98:
a6:f2:01:02:57:b1:0e:3d:a2:0e:f4:4c:38:6a:6f:6a:30:f9:
38:a2:a8:97:46:ca:be:ed:ff:6d:ad:47:d6:d5:b3:f5:36:9d:
bc:7e:3a:09:2b:0d:b9:54:5f:49:4c:6b:5e:5c:96:ea:8a:67:
20:22:d1:1b:c3:64:39:45:ac:4e:6b:e1:a9:5b:e4:0f:84:cb:
70:63:3a:f2:de:50:01:3a:09:07:95:82:4a:eb:15:e9:43:a2:
85:87:89:d1:8a:0b:a9:2b:74:ab:22:ef:7b:88:54:d2:85:4f:
7a:21:cd:11:70:5a:ab:f4:a7:36:64:b9:6f:43:f0:68:18:9e:
bf:b0:40:23:a0:34:a9:77:79:c0:32:e5:fc:32:32:dd:a3:25:
b0:c7:5f:cf:19:7b:c3:ba:ed:89:b4:a2:95:c8:8d:62:ce:65:
64:06:73:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:48 2024 by rpki-client on console-ams.rpki-client.org