Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A912905D/34BF9908AC3D11EDBD4D135EC4F9AE02/7A41E618BA9111EDA9C31383C4F9AE02.roa
File: 7A41E618BA9111EDA9C31383C4F9AE02.roa (raw, json)
Hash identifier: HpfW+Ecj2TGOYTnaUt+Vo+FdQ0Ps06bwTZeBX6xn8eI=
Subject key identifier: 78:26:D7:7E:71:EE:35:34:45:48:8D:C9:07:E6:8A:DD:C0:A1:1A:CB
Certificate issuer: /CN=A912905D/serialNumber=2041A548216FF014894B79CC9FD77311BC7CA317
Certificate serial: 0F
Authority key identifier: 20:41:A5:48:21:6F:F0:14:89:4B:79:CC:9F:D7:73:11:BC:7C:A3:17
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IEGlSCFv8BSJS3nMn9dzEbx8oxc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912905D/34BF9908AC3D11EDBD4D135EC4F9AE02/7A41E618BA9111EDA9C31383C4F9AE02.roa
Signing time: Sat 04 Mar 2023 13:35:50 +0000
ROA not before: Sat 04 Mar 2023 13:35:50 +0000
ROA not after: Wed 01 May 2024 00:00:00 +0000
asID: 138655
IP address blocks: 103.84.56.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15 (0xf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912905D/serialNumber=2041A548216FF014894B79CC9FD77311BC7CA317
Validity
Not Before: Mar 4 13:35:50 2023 GMT
Not After : May 1 00:00:00 2024 GMT
Subject: CN=64034936-93d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:58:19:f8:73:1a:ec:93:64:74:a6:55:b8:96:
7a:db:28:54:a3:08:9b:1f:b8:dc:62:6d:eb:0b:ab:
40:8c:e9:57:fb:19:f3:2c:4c:12:b1:d1:84:25:2a:
79:60:3f:72:f4:14:3f:4a:55:60:49:a4:47:ea:3d:
f8:aa:cb:45:3c:a7:54:4e:d3:0a:0a:ea:cc:80:1e:
dd:69:83:5a:41:dd:a1:4f:59:82:f3:5c:09:72:8f:
22:ab:a6:64:20:5e:d3:a8:8a:17:11:ec:48:d3:6a:
ca:4f:10:aa:e6:ad:92:d5:dd:05:16:60:52:f5:56:
4f:09:25:c2:cf:ea:19:03:bd:01:a3:81:95:38:5d:
a5:c8:0d:04:42:b9:e0:3f:ee:ff:03:e8:04:a8:99:
d4:c3:9d:0f:33:71:3a:af:d6:1e:f9:e0:38:86:74:
16:99:e0:12:98:74:99:3e:57:15:3a:e2:b7:4e:c0:
41:60:d1:20:dc:a3:6a:53:7f:c9:c8:4d:bc:47:1e:
f1:ea:d4:ae:27:82:68:62:be:22:fa:ee:1a:3b:ed:
88:8e:ec:ff:f4:0d:21:7e:4f:6d:18:73:7d:e2:c0:
7e:17:be:cf:b7:e7:9e:1c:40:e2:09:6d:07:80:4b:
ce:21:72:a6:ea:eb:11:71:7a:cd:3c:c1:6b:61:1f:
4b:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:26:D7:7E:71:EE:35:34:45:48:8D:C9:07:E6:8A:DD:C0:A1:1A:CB
X509v3 Authority Key Identifier:
keyid:20:41:A5:48:21:6F:F0:14:89:4B:79:CC:9F:D7:73:11:BC:7C:A3:17
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912905D/34BF9908AC3D11EDBD4D135EC4F9AE02/IEGlSCFv8BSJS3nMn9dzEbx8oxc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IEGlSCFv8BSJS3nMn9dzEbx8oxc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912905D/34BF9908AC3D11EDBD4D135EC4F9AE02/7A41E618BA9111EDA9C31383C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.84.56.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:91:44:ec:51:93:0e:39:bd:88:b1:ce:84:85:64:2c:08:05:
11:3e:f6:c6:de:1b:64:57:dd:c4:97:a4:91:46:21:b3:d5:21:
a8:ab:a6:89:f0:08:0c:10:67:c9:83:bb:67:8c:92:44:83:01:
ec:07:ec:17:79:a3:56:c9:02:18:07:9c:34:62:ff:6d:8c:29:
d9:17:a1:ca:8f:fd:88:ee:5b:47:c1:9a:56:61:ac:b3:70:23:
f5:6e:39:ef:98:88:a8:cc:7d:e7:f7:69:bb:75:28:75:3c:b8:
1d:80:77:1a:9d:86:bf:e2:1f:d4:65:9e:e6:c2:f1:f3:90:0d:
c8:ab:53:3c:a4:12:15:5d:d6:52:80:b1:ac:50:a6:6a:c2:f1:
71:1e:69:63:36:f9:87:2f:c2:aa:b4:9e:45:08:5c:89:92:59:
69:88:6c:b9:ea:1a:4d:0c:7e:30:ce:45:9a:e6:aa:87:5e:41:
2a:1d:21:2a:cd:05:ee:52:d5:b1:ac:cf:6e:3b:fc:e4:f8:56:
0b:95:cd:e2:ad:65:74:01:c0:5e:d8:d8:10:59:70:b0:a5:dd:
3d:8e:4d:41:b4:4c:51:d2:7e:20:94:b4:35:d2:f6:d4:42:cf:
88:ca:52:40:a6:ea:82:20:f9:16:bf:b6:51:0c:b0:61:ce:0e:
7a:57:48:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:50:57 2024 by rpki-client on console-fra.rpki-client.org