Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9126C60/BF6323E6894B11E387C49E675911EA32/B7AA1B2C240711EDBFA59C27C4F9AE02.roa
File: B7AA1B2C240711EDBFA59C27C4F9AE02.roa (raw, json)
Hash identifier: 5IYQFioXWpR3JP3UeXcMkxUbHci/sc1GeIjF+HhQOBY=
Subject key identifier: 15:17:7A:A2:67:9B:80:AE:9A:AB:D4:71:C2:E0:64:72:55:A2:B9:7C
Certificate issuer: /CN=A9126C60/serialNumber=439F5A9A40E199679A7BC09BE207FD1F60A04857
Certificate serial: 2B33
Authority key identifier: 43:9F:5A:9A:40:E1:99:67:9A:7B:C0:9B:E2:07:FD:1F:60:A0:48:57
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q59amkDhmWeae8Cb4gf9H2CgSFc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9126C60/BF6323E6894B11E387C49E675911EA32/B7AA1B2C240711EDBFA59C27C4F9AE02.roa
Signing time: Wed 24 Aug 2022 23:51:49 +0000
ROA not before: Wed 24 Aug 2022 23:51:49 +0000
ROA not after: Tue 31 Jan 2023 00:00:00 +0000
asID: 24324
IP address blocks: 103.8.82.0/24 maxlen: 24
103.8.83.0/24 maxlen: 24
202.134.48.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11059 (0x2b33)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9126C60/serialNumber=439F5A9A40E199679A7BC09BE207FD1F60A04857
Validity
Not Before: Aug 24 23:51:49 2022 GMT
Not After : Jan 31 00:00:00 2023 GMT
Subject: CN=6306b994-24b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:a1:5f:b6:08:b8:bb:04:d3:ee:f2:bc:c2:84:
4d:82:fe:22:71:73:10:8a:ea:42:10:0a:88:cf:d5:
fb:15:22:c9:e1:de:4d:a1:ad:70:f5:f7:b0:d9:43:
a5:26:33:6b:4f:33:c7:09:99:91:fe:49:eb:2d:a2:
50:43:6d:2c:8b:d0:75:98:97:41:59:a2:60:6d:bd:
1f:79:fd:38:6b:71:50:86:62:32:a8:72:28:25:9e:
b7:17:65:ae:66:0b:e9:42:da:72:4f:1c:4a:ec:36:
e4:19:db:66:b0:68:25:b5:a6:e2:a1:fb:46:22:0d:
46:7f:7a:f2:f2:c6:98:23:92:b8:70:e3:0a:c2:c4:
a6:43:0d:e2:9d:c1:1d:62:92:9f:ea:df:0f:01:ab:
e6:5c:87:02:36:0c:b4:16:01:c4:34:af:d8:07:d3:
87:c6:05:30:0e:01:65:e2:72:1f:fa:1f:a7:03:6c:
73:3f:2a:c0:aa:e1:af:eb:13:00:db:cf:da:63:1d:
b9:73:20:2e:dd:d4:1f:03:1c:4a:79:5e:80:24:6a:
1e:e1:fd:ba:01:ca:63:05:6e:38:3b:fa:86:01:b1:
78:3f:df:39:66:4f:7c:60:5d:9e:58:cc:d9:df:11:
05:f1:82:a6:dc:ed:fe:fc:3e:4b:be:2c:04:8e:fc:
5f:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:17:7A:A2:67:9B:80:AE:9A:AB:D4:71:C2:E0:64:72:55:A2:B9:7C
X509v3 Authority Key Identifier:
keyid:43:9F:5A:9A:40:E1:99:67:9A:7B:C0:9B:E2:07:FD:1F:60:A0:48:57
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9126C60/BF6323E6894B11E387C49E675911EA32/Q59amkDhmWeae8Cb4gf9H2CgSFc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q59amkDhmWeae8Cb4gf9H2CgSFc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126C60/BF6323E6894B11E387C49E675911EA32/B7AA1B2C240711EDBFA59C27C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.8.82.0/23
202.134.48.0/24
Signature Algorithm: sha256WithRSAEncryption
66:25:e2:2b:e2:32:a9:1d:ce:ac:b3:67:dc:9c:4f:e9:c1:c6:
3a:13:64:34:c7:7a:03:b3:da:60:9e:a6:8b:f5:a0:e6:5a:36:
a3:1b:a5:41:54:ed:58:b9:d6:57:c9:eb:43:ed:47:0f:47:e7:
f3:ec:03:3f:55:88:5d:e6:1d:40:dc:1d:f1:4c:3e:be:32:dd:
a7:62:87:ef:24:84:9b:b9:1c:cf:b3:8b:9d:e8:4b:99:d5:ca:
2e:87:88:29:0c:1b:56:db:9a:c8:eb:fb:4b:d1:c5:d3:02:bb:
ec:2e:35:b3:0a:af:84:ec:b5:77:b0:02:3c:88:27:45:23:2e:
c9:63:c2:bf:18:11:f9:94:fa:cc:de:cf:38:fa:90:9e:b2:1f:
bf:bf:99:0a:b7:44:c9:4c:30:91:31:0a:d7:be:51:3c:78:9e:
fc:29:1d:5b:3b:85:bc:60:b6:95:5a:5a:30:1b:d5:b3:5c:47:
f5:c1:b4:de:10:cd:d9:59:79:d7:dd:36:52:52:19:6b:4d:54:
ad:71:a1:90:d1:b6:7f:02:57:70:84:76:75:6f:ce:4d:cd:96:
0c:b8:8c:d7:c9:7e:17:cb:fd:56:14:a8:52:20:33:f5:ad:d3:
68:af:9d:4c:21:b7:3d:87:c5:47:fa:fa:d3:c0:41:62:e1:79:
46:e5:e9:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:48 2024 by rpki-client on console-ams.rpki-client.org