Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9125590/FC44B38A1D7011E28951A9B508B02CD2/8C97DD12563011EB8DC6AE81C4F9AE02.roa
File: 8C97DD12563011EB8DC6AE81C4F9AE02.roa (raw, json)
Hash identifier: fYd4NlceMcqTXS0hoRVYC0EdReHoX3CnsND62yxpeBY=
Subject key identifier: 80:AF:F8:3B:C1:3F:C6:DF:FD:01:58:A6:01:CB:6D:7F:EB:56:10:F9
Certificate issuer: /CN=A9125590/serialNumber=C40EB7816451875486DA643F8F9361B77DFB21A3
Certificate serial: 32BF
Authority key identifier: C4:0E:B7:81:64:51:87:54:86:DA:64:3F:8F:93:61:B7:7D:FB:21:A3
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xA63gWRRh1SG2mQ_j5Nht337IaM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9125590/FC44B38A1D7011E28951A9B508B02CD2/8C97DD12563011EB8DC6AE81C4F9AE02.roa
Signing time: Wed 12 Oct 2022 14:40:09 +0000
ROA not before: Wed 12 Oct 2022 14:40:09 +0000
ROA not after: Sat 30 Dec 2023 00:00:00 +0000
asID: 131659
IP address blocks: 103.9.116.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12991 (0x32bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9125590
Validity
Not Before: Oct 12 14:40:09 2022 GMT
Not After : Dec 30 00:00:00 2023 GMT
Subject: CN=6346d1c9-77c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:63:ce:bc:f9:41:5f:f5:21:93:bd:16:33:8d:
56:a8:26:94:90:f3:0c:4c:b6:76:04:a1:4f:6f:9e:
45:1f:62:75:b2:fc:de:eb:c1:c6:74:9f:91:cf:bc:
9c:3b:34:10:16:6a:41:e2:0e:65:b6:f9:47:f6:4a:
e7:f6:f7:08:39:41:5d:03:ab:de:ed:e3:b5:88:af:
e6:05:ac:ae:4f:ba:9f:b7:91:88:fb:09:f6:bd:63:
35:bb:80:66:b2:7e:7b:f7:5b:dd:d4:ba:02:4d:89:
98:3b:81:5c:a8:df:bd:0b:bf:fb:c0:89:8d:25:59:
bf:2f:93:6f:5a:7b:3e:bf:61:70:60:0f:e0:1a:70:
a2:88:5b:40:7e:68:5e:83:26:19:3f:01:56:04:5d:
3d:f0:97:f9:81:bc:0e:92:81:06:2e:15:4c:f3:b6:
45:42:8b:0d:7f:5e:97:ac:78:c6:bf:dd:80:11:23:
bb:cd:09:0b:df:67:ff:d6:1d:1d:27:46:09:1a:a6:
17:3b:0f:86:c9:19:2f:6e:db:99:81:da:ed:f8:d8:
96:16:66:72:d2:ed:fb:9e:37:be:63:3f:d7:49:db:
7c:36:4d:42:a5:3f:16:71:45:1c:3b:81:0d:33:b2:
9b:45:da:ba:e0:78:ac:ff:37:45:b9:83:c8:91:af:
c8:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:AF:F8:3B:C1:3F:C6:DF:FD:01:58:A6:01:CB:6D:7F:EB:56:10:F9
X509v3 Authority Key Identifier:
keyid:C4:0E:B7:81:64:51:87:54:86:DA:64:3F:8F:93:61:B7:7D:FB:21:A3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9125590/FC44B38A1D7011E28951A9B508B02CD2/xA63gWRRh1SG2mQ_j5Nht337IaM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xA63gWRRh1SG2mQ_j5Nht337IaM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125590/FC44B38A1D7011E28951A9B508B02CD2/8C97DD12563011EB8DC6AE81C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.9.116.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:02:cf:a7:f6:bb:09:e8:b5:4f:bf:b8:3f:c1:5a:41:61:5e:
c0:60:c4:fa:3c:61:4b:53:74:81:18:82:93:9a:e5:67:4f:35:
f0:0c:84:16:f9:e8:27:5b:86:ca:47:bd:76:bb:a2:94:69:13:
d4:07:4d:b1:97:32:60:8a:16:2f:db:48:99:9f:1e:d6:66:f8:
87:ca:3d:25:b0:23:b9:d4:5e:1b:00:c4:f0:35:01:1d:bc:ea:
6b:a6:49:1c:91:e2:65:10:47:dd:f9:3a:b4:0f:0a:70:c4:58:
f8:91:17:1d:16:ea:fe:30:8a:36:a3:db:9f:6e:97:bc:c7:d6:
84:1a:0c:89:bf:05:e3:40:32:46:39:c4:b2:bb:e0:d1:fd:36:
74:fa:ba:61:0c:08:74:25:6c:99:f7:43:01:31:2c:94:1f:b1:
a1:22:43:60:f6:52:5a:fb:d0:c1:c8:26:72:c4:67:98:5c:05:
2e:82:e6:36:b0:a6:be:6b:46:2b:b5:ac:8d:72:47:d9:ef:5d:
b5:a1:b7:e5:d6:2b:dc:10:66:bc:d3:20:f6:f0:69:3b:5a:af:
21:63:99:dc:31:85:70:4f:fa:ca:9e:15:b3:96:b9:ca:8a:aa:
47:f7:f4:8e:9a:9a:66:7d:a3:2c:3f:39:04:7e:c1:a5:ce:c0:
30:20:5c:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:13:08 2025 by rpki-client