Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91233F8/F09019D61BB711EC903D8A4CC4F9AE02/6108A6C21BBA11ECB081934EC4F9AE02.roa
File: 6108A6C21BBA11ECB081934EC4F9AE02.roa (raw, json)
Hash identifier: 6iG6yHD/YzwTZgy/cmwGUZ2+2wh2+g987pOUNAPn0Ks=
Subject key identifier: 53:CE:CF:C5:9E:6E:C1:69:55:7F:07:35:EF:80:7F:6F:5C:95:69:4E
Certificate issuer: /CN=A91233F8/serialNumber=019A0653B3F8C77763B7DF35F65645158DF05A8A
Certificate serial: 0304
Authority key identifier: 01:9A:06:53:B3:F8:C7:77:63:B7:DF:35:F6:56:45:15:8D:F0:5A:8A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AZoGU7P4x3djt9819lZFFY3wWoo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91233F8/F09019D61BB711EC903D8A4CC4F9AE02/6108A6C21BBA11ECB081934EC4F9AE02.roa
Signing time: Thu 03 Nov 2022 03:12:10 +0000
ROA not before: Thu 03 Nov 2022 03:12:10 +0000
ROA not after: Wed 01 Mar 2023 00:00:00 +0000
asID: 142643
IP address blocks: 103.171.144.0/23 maxlen: 23
103.171.144.0/24 maxlen: 24
103.171.145.0/24 maxlen: 24
115.178.26.0/23 maxlen: 23
115.178.26.0/24 maxlen: 24
115.178.27.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 772 (0x304)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91233F8/serialNumber=019A0653B3F8C77763B7DF35F65645158DF05A8A
Validity
Not Before: Nov 3 03:12:10 2022 GMT
Not After : Mar 1 00:00:00 2023 GMT
Subject: CN=6363318a-8f2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:db:ab:ed:1f:ab:d2:17:a3:df:3d:8b:fc:3c:
b2:ea:ea:9d:7f:70:bc:46:ef:ad:28:3d:c8:d6:84:
2e:7e:e7:99:f2:79:99:72:f5:34:ec:1f:35:ac:e7:
ca:e9:16:f6:39:25:9d:3d:44:d7:35:a4:db:6d:49:
de:04:20:58:10:70:54:e9:72:d1:38:8c:8e:a9:a9:
c5:3a:29:27:7c:dd:4d:76:b5:1a:d8:f2:9e:82:13:
42:07:93:07:fd:e8:94:9b:60:49:97:70:de:05:f1:
63:a7:c8:98:8e:c5:b8:0c:53:2a:f6:24:2d:ea:8d:
a7:dc:8f:46:87:3e:38:99:b7:08:76:8f:0b:68:c3:
09:9b:d2:2f:22:63:52:89:1d:24:96:f6:b4:17:db:
76:ec:35:65:64:a4:68:8c:58:a8:99:12:8d:33:95:
57:92:be:08:fd:bc:a5:02:31:18:bc:cf:ac:49:b3:
01:06:cd:63:3c:09:83:54:56:cb:85:d0:b0:6f:8a:
5b:d7:f0:68:7b:57:e0:e5:e8:66:2b:a3:79:a3:db:
61:3f:14:06:49:64:be:c3:5d:51:30:ce:b6:c3:e7:
5a:ac:d5:5c:8e:12:28:08:4e:ab:43:7d:38:9e:8a:
1c:f8:7c:ed:bc:41:03:94:fa:03:91:cd:c8:e4:23:
80:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:CE:CF:C5:9E:6E:C1:69:55:7F:07:35:EF:80:7F:6F:5C:95:69:4E
X509v3 Authority Key Identifier:
keyid:01:9A:06:53:B3:F8:C7:77:63:B7:DF:35:F6:56:45:15:8D:F0:5A:8A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91233F8/F09019D61BB711EC903D8A4CC4F9AE02/AZoGU7P4x3djt9819lZFFY3wWoo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AZoGU7P4x3djt9819lZFFY3wWoo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91233F8/F09019D61BB711EC903D8A4CC4F9AE02/6108A6C21BBA11ECB081934EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.171.144.0/23
115.178.26.0/23
Signature Algorithm: sha256WithRSAEncryption
8d:ca:e1:b8:ea:c9:af:12:83:20:50:23:59:c3:62:94:3b:57:
e9:2f:d2:54:f1:e1:a4:12:f7:54:06:85:4d:b6:a0:78:2d:2c:
27:9e:71:8c:88:25:40:2d:f8:d1:c6:65:10:33:d8:1c:1e:88:
e3:0d:17:88:ac:be:85:ec:2d:75:3b:e0:73:3a:a4:fb:c1:c9:
5c:ed:17:37:48:19:b9:ed:43:fc:5a:f0:eb:a4:8f:ee:81:4c:
8f:8a:ee:b4:c2:c5:71:8c:92:cf:39:53:dc:78:cd:0a:42:f5:
fc:72:14:9b:a1:97:32:61:bd:84:ea:15:50:aa:8e:b4:25:1f:
65:b8:c6:ec:8c:b8:f3:bd:c6:54:23:91:b6:21:b1:d9:c3:26:
26:f0:6a:cb:e7:a9:3a:cf:6c:0e:62:2c:c8:24:42:66:5d:57:
3d:df:47:47:21:a9:fb:d3:3e:5d:6f:67:e4:45:f7:b1:bf:b3:
a7:03:41:18:bc:c8:9e:1e:30:1e:66:c6:1b:d8:c4:83:9b:9e:
82:60:ac:5b:1c:68:fa:44:1c:71:dc:14:1d:64:d1:bb:f5:56:
27:bd:1a:8e:4e:4e:c1:86:d9:19:97:f2:90:f2:5e:e4:58:d3:
f5:09:cb:62:96:e4:a5:9a:e2:ef:ad:75:a3:15:3e:0f:d1:fa:
7d:a8:c2:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:48 2024 by rpki-client on console-ams.rpki-client.org