Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9127FC2/5E30BF70BBA611ECBAF43156C4F9AE02/68A9D13ABA3D11EDAE019480C4F9AE02.roa
File: 68A9D13ABA3D11EDAE019480C4F9AE02.roa (raw, json)
Hash identifier: hOQI9UYvdAMTWLFXrTVvL97PmW75yJlp7ptO2gHggPs=
Subject key identifier: DD:47:3F:E3:78:A5:8E:6E:C3:61:99:2C:5D:37:D0:05:66:A9:DB:7A
Certificate issuer: /CN=A9127FC2/serialNumber=73BA21BE36DDDFD58690116D6EEC7BDC7EFEFB28
Certificate serial: 01BD
Authority key identifier: 73:BA:21:BE:36:DD:DF:D5:86:90:11:6D:6E:EC:7B:DC:7E:FE:FB:28
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c7ohvjbd39WGkBFtbux73H7--yg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9127FC2/5E30BF70BBA611ECBAF43156C4F9AE02/68A9D13ABA3D11EDAE019480C4F9AE02.roa
Signing time: Sat 04 Mar 2023 03:34:03 +0000
ROA not before: Sat 04 Mar 2023 03:34:03 +0000
ROA not after: Sun 30 Jul 2023 00:00:00 +0000
asID: 136600
IP address blocks: 103.107.8.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 445 (0x1bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9127FC2/serialNumber=73BA21BE36DDDFD58690116D6EEC7BDC7EFEFB28
Validity
Not Before: Mar 4 03:34:03 2023 GMT
Not After : Jul 30 00:00:00 2023 GMT
Subject: CN=6402bc2b-7fad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:cc:56:1d:c7:c5:28:28:a7:ca:ce:b1:6a:b3:
a1:98:56:b5:94:d6:3f:07:4f:dc:6c:4f:25:22:30:
2d:56:dc:3f:03:c5:3d:b4:37:27:be:8c:e7:7b:99:
49:af:21:e3:ac:70:56:76:bd:7b:ab:e3:35:39:e8:
ff:9f:89:25:13:0e:1b:7f:15:59:33:f9:af:f8:35:
13:4d:b0:ea:a6:cc:ea:c1:0e:d4:18:4f:a2:a2:94:
e6:be:53:36:a6:5f:f9:2b:24:cc:28:af:10:6a:d1:
c9:d9:2c:a0:a1:42:bd:a5:f3:26:34:ba:d1:bd:8a:
1d:b4:f5:9f:32:9a:5e:20:a9:22:0f:63:0f:7f:31:
d8:3d:2e:41:92:cd:ee:3a:0c:92:0f:9e:ee:11:b2:
73:00:78:c0:bf:3f:92:09:77:a1:f7:39:47:c9:34:
4b:0c:05:39:cf:65:ce:45:9d:2b:b4:8a:e4:a2:10:
dd:d6:52:14:4e:3e:83:d5:2b:6a:14:cb:a0:10:64:
30:10:2d:a5:14:2e:57:14:b4:65:47:d2:86:ac:2d:
bb:ed:ea:33:5c:bd:44:e7:d2:f2:c4:5f:70:0d:ca:
18:c9:ec:62:4b:00:c6:de:4d:a7:15:65:e2:46:b9:
11:01:19:3d:7e:49:c5:b1:5b:0a:f8:b0:36:2c:a1:
69:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:47:3F:E3:78:A5:8E:6E:C3:61:99:2C:5D:37:D0:05:66:A9:DB:7A
X509v3 Authority Key Identifier:
keyid:73:BA:21:BE:36:DD:DF:D5:86:90:11:6D:6E:EC:7B:DC:7E:FE:FB:28
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9127FC2/5E30BF70BBA611ECBAF43156C4F9AE02/c7ohvjbd39WGkBFtbux73H7--yg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c7ohvjbd39WGkBFtbux73H7--yg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127FC2/5E30BF70BBA611ECBAF43156C4F9AE02/68A9D13ABA3D11EDAE019480C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.107.8.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:5c:f1:78:c1:d3:61:2c:70:fc:71:d8:df:f0:54:0a:a8:a2:
a3:a5:7e:7c:22:59:f0:87:c1:b8:7f:4f:91:79:ae:65:9a:b1:
8e:29:45:74:57:e7:51:b4:82:e3:8c:11:a4:0c:9c:d3:a5:b6:
b0:14:f7:33:13:46:2e:6e:b6:03:7f:0e:5e:54:9d:3e:a8:3d:
d7:9f:c6:94:ed:bc:1b:14:93:ca:9c:6c:80:fe:93:ec:f0:7f:
a7:8c:da:7c:6d:03:bd:6b:cd:24:6c:28:d6:c9:3c:96:9c:51:
50:61:25:ee:e7:27:99:34:aa:18:c2:77:6f:37:04:71:7b:1e:
67:98:73:c4:ba:8d:c9:83:b1:88:86:df:22:76:5f:87:c0:4f:
16:be:1e:42:8a:ce:33:84:c8:67:a5:74:64:8e:a6:d6:86:63:
f0:e2:a1:48:78:f0:d4:d3:fd:f9:49:db:b3:72:9c:42:81:ac:
61:25:10:0c:a1:2a:d8:86:04:5f:05:11:4e:21:80:6f:20:ff:
6b:00:cd:bd:87:49:b7:95:1e:6a:ce:6f:0f:bb:24:c5:60:d3:
8d:02:0a:41:41:42:9f:85:0e:c4:d5:ff:28:32:17:4c:30:9f:
ea:3f:f6:c5:64:5e:dc:57:b3:cd:22:5c:b9:b7:04:38:c0:c4:
43:17:5c:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:50:57 2024 by rpki-client on console-fra.rpki-client.org