Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9131067/8DD00F56A6AD11EB827FC11CC4F9AE02/5B3B8882340511ECB0C4FB38C4F9AE02.roa
File: 5B3B8882340511ECB0C4FB38C4F9AE02.roa (raw, json)
Hash identifier: w+6egD9ndYOv2HUmmSN7YVTtSnKln789+alhljrZhIw=
Subject key identifier: 79:DE:03:82:54:81:7F:6E:3C:A2:93:45:3F:E7:44:72:68:FB:0A:38
Certificate issuer: /CN=A9131067/serialNumber=B2C47C2E3D4FC7EDC99AE20E46B174B10A0375F6
Certificate serial: 0166
Authority key identifier: B2:C4:7C:2E:3D:4F:C7:ED:C9:9A:E2:0E:46:B1:74:B1:0A:03:75:F6
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ssR8Lj1Px-3JmuIORrF0sQoDdfY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9131067/8DD00F56A6AD11EB827FC11CC4F9AE02/5B3B8882340511ECB0C4FB38C4F9AE02.roa
Signing time: Sat 23 Oct 2021 13:30:15 +0000
ROA not before: Sat 23 Oct 2021 13:30:15 +0000
ROA not after: Fri 01 Jul 2022 00:00:00 +0000
asID: 142063
IP address blocks: 103.166.102.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 358 (0x166)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9131067/serialNumber=B2C47C2E3D4FC7EDC99AE20E46B174B10A0375F6
Validity
Not Before: Oct 23 13:30:15 2021 GMT
Not After : Jul 1 00:00:00 2022 GMT
Subject: CN=61740e67-0cc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:68:a2:10:5f:dd:e4:c3:6c:3d:24:3d:da:fe:
b8:d4:97:7e:24:a0:03:1c:41:9a:e7:c9:c6:56:27:
53:c8:cb:2c:30:a4:e1:26:fd:03:50:b2:5d:82:47:
21:a7:4a:ee:84:97:41:3c:67:2b:7a:fe:18:44:85:
20:cb:5d:13:bb:e3:b5:c8:b4:c0:82:30:4a:a0:13:
a4:fa:ed:d3:d0:84:2b:aa:21:eb:ce:f0:fc:4a:fa:
af:d5:71:70:a5:54:ba:0c:23:37:5b:7f:5e:c3:81:
87:1f:84:32:b4:3a:48:e2:bb:8c:21:dc:ed:38:60:
1d:7e:f5:60:ae:b4:f6:33:6c:9c:d0:c7:57:a1:da:
cf:ca:f7:a9:ec:80:fd:8a:b8:9e:dc:b8:f8:c9:83:
0b:33:38:87:17:fc:48:ec:e5:eb:69:c3:72:58:64:
3a:3a:b8:10:5f:72:ed:c9:58:2a:5f:6b:25:cf:29:
c8:0d:fa:86:9e:d1:75:46:f6:5a:31:45:63:7c:a5:
65:ec:9f:fd:ed:82:cc:e6:51:cf:37:58:7d:ac:33:
8b:04:43:8b:96:81:35:59:11:83:68:c6:4b:e4:79:
24:aa:c7:c3:a0:c4:66:d8:93:56:0f:62:e8:e7:f4:
28:31:b3:eb:bf:a1:30:6e:ef:94:ee:a5:50:da:ed:
ea:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:DE:03:82:54:81:7F:6E:3C:A2:93:45:3F:E7:44:72:68:FB:0A:38
X509v3 Authority Key Identifier:
keyid:B2:C4:7C:2E:3D:4F:C7:ED:C9:9A:E2:0E:46:B1:74:B1:0A:03:75:F6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9131067/8DD00F56A6AD11EB827FC11CC4F9AE02/ssR8Lj1Px-3JmuIORrF0sQoDdfY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ssR8Lj1Px-3JmuIORrF0sQoDdfY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131067/8DD00F56A6AD11EB827FC11CC4F9AE02/5B3B8882340511ECB0C4FB38C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.166.102.0/24
Signature Algorithm: sha256WithRSAEncryption
77:c9:ff:b7:67:6b:9a:42:37:70:6e:76:a5:0b:22:25:05:06:
8d:21:9c:f9:41:ea:fc:59:e7:10:7b:c5:84:e9:ae:32:cd:e9:
33:0d:28:30:9e:9e:fe:41:89:13:20:d8:08:9b:ca:45:3a:5c:
15:c7:bc:c4:29:7f:60:ce:91:51:49:af:bb:f7:e7:7c:5a:0a:
ab:75:54:e1:12:82:cd:f8:13:03:c7:73:14:1b:1c:db:f1:2e:
d3:d7:b7:2a:2f:f1:f6:4b:42:84:f8:53:4d:ae:42:8d:d1:1b:
44:65:97:b9:1e:61:06:b9:47:e1:d3:ff:5d:bf:a3:bf:12:9f:
04:99:30:08:af:5a:27:b9:c9:ed:dc:f1:e2:fb:76:d9:d9:b6:
bd:b1:bc:05:40:b1:b9:09:61:5e:68:2e:38:fe:a8:e5:b6:7f:
3f:8b:d3:a6:ed:6c:d4:44:54:8a:15:35:b1:cc:24:95:d1:b5:
76:65:b2:2c:0e:20:8e:b4:a6:f4:82:b0:45:9e:4e:7f:73:80:
4b:d1:f9:16:49:16:ec:50:67:29:4e:50:37:79:45:f9:fd:e3:
80:49:f3:2f:aa:d3:e0:bc:61:c8:eb:5a:fc:46:44:8f:cf:70:
27:c0:72:76:4d:d8:56:68:5e:40:7b:e4:99:ce:98:71:08:3d:
40:13:a4:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:50:58 2024 by rpki-client on console-fra.rpki-client.org