Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913258C/B4C45FE0548D11EA86C9DD7EC4F9AE02/653D40C041FA11ECB2D7F760C4F9AE02.roa
File: 653D40C041FA11ECB2D7F760C4F9AE02.roa (raw, json)
Hash identifier: vUbAjfXuJhewcs39nrACmXpEbigUVV+zFrHaYQbhKZ0=
Subject key identifier: 70:EE:E7:61:FE:98:FD:17:41:D6:8A:46:05:83:92:18:13:76:95:9B
Certificate issuer: /CN=A913258C/serialNumber=A68CFA311EBB1F10320EA207753030E7F3A28F72
Certificate serial: 06F6
Authority key identifier: A6:8C:FA:31:1E:BB:1F:10:32:0E:A2:07:75:30:30:E7:F3:A2:8F:72
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poz6MR67HxAyDqIHdTAw5_Oij3I.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913258C/B4C45FE0548D11EA86C9DD7EC4F9AE02/653D40C041FA11ECB2D7F760C4F9AE02.roa
Signing time: Wed 16 Feb 2022 09:48:38 +0000
ROA not before: Wed 16 Feb 2022 09:48:37 +0000
ROA not after: Mon 01 May 2023 00:00:00 +0000
asID: 13444
IP address blocks: 103.148.150.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1782 (0x6f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913258C/serialNumber=A68CFA311EBB1F10320EA207753030E7F3A28F72
Validity
Not Before: Feb 16 09:48:37 2022 GMT
Not After : May 1 00:00:00 2023 GMT
Subject: CN=620cc875-fd81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:da:56:3f:70:47:38:73:87:df:bf:5a:68:17:
f0:7f:b5:87:e7:fc:c5:d2:b8:cc:41:aa:57:d3:5a:
f8:b4:db:56:d9:fa:a0:c6:97:e3:fd:f7:4b:33:08:
8b:27:07:d3:61:5a:71:09:79:d2:4a:cc:0f:ba:79:
ef:9f:f8:9b:8b:76:aa:28:78:8c:6d:81:d3:da:1c:
73:39:1a:c7:01:2a:a3:5c:54:c5:2d:91:6b:e0:d2:
fc:e8:56:1a:05:65:66:de:d0:46:55:0a:e7:86:16:
4b:b0:76:69:0a:d0:e4:3e:14:ad:73:8b:71:e2:8c:
63:db:91:10:29:09:89:82:22:37:aa:0d:fd:51:f4:
58:05:54:b4:8b:ba:86:b1:d9:7f:91:22:f5:f1:4e:
4c:43:b6:49:f5:fc:bc:45:14:e7:41:05:93:6f:39:
9f:73:7e:06:f0:d5:46:4d:91:18:40:df:cd:e8:cd:
14:e1:d7:21:e2:43:de:a1:9d:4d:ab:d7:0b:7f:d9:
14:c6:96:3c:b6:81:fc:73:e9:2e:be:58:d8:b6:f3:
b9:16:dc:62:69:f8:b1:75:0e:34:72:20:09:36:f2:
3d:33:b7:d6:e2:c3:ba:05:5d:6e:c7:43:62:b9:91:
08:05:55:3c:f8:27:cd:db:d5:e0:34:ac:c8:4d:99:
3f:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:EE:E7:61:FE:98:FD:17:41:D6:8A:46:05:83:92:18:13:76:95:9B
X509v3 Authority Key Identifier:
keyid:A6:8C:FA:31:1E:BB:1F:10:32:0E:A2:07:75:30:30:E7:F3:A2:8F:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913258C/B4C45FE0548D11EA86C9DD7EC4F9AE02/poz6MR67HxAyDqIHdTAw5_Oij3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poz6MR67HxAyDqIHdTAw5_Oij3I.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913258C/B4C45FE0548D11EA86C9DD7EC4F9AE02/653D40C041FA11ECB2D7F760C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.148.150.0/23
Signature Algorithm: sha256WithRSAEncryption
69:f5:2b:a5:5a:c9:2b:ad:15:3c:0d:f8:63:ba:10:f1:c2:8e:
14:72:27:33:0a:b6:81:d3:ba:65:09:b9:6c:52:01:88:1f:48:
6f:23:15:ea:ef:cf:79:54:ce:3b:f5:77:88:39:29:ae:87:b4:
73:a9:e4:20:c2:a0:e7:a0:a5:a3:b9:9c:8a:15:50:27:64:d7:
b8:4c:b8:7f:af:a0:95:e7:09:b6:af:76:a1:09:9e:b1:a3:48:
1b:00:dc:aa:a7:de:8b:69:eb:48:e6:f4:0b:f6:9d:c9:db:36:
7d:62:4f:32:cf:e8:bc:dd:60:84:b1:1f:8d:f9:44:5c:c8:38:
63:23:42:31:c4:5b:84:1a:d0:aa:70:a7:53:aa:09:76:ce:89:
0d:06:77:37:2c:d6:58:26:96:5b:f8:7c:df:1d:63:65:de:b7:
de:8e:63:7b:30:ae:07:e3:7c:2c:86:ac:c9:23:34:f8:c3:12:
f6:10:28:eb:53:71:17:8e:d4:f0:fe:4e:33:5c:59:f4:e1:cf:
12:7d:d1:ea:66:0d:48:d6:75:5f:39:4a:80:9a:5c:e9:ce:dc:
c0:18:02:a8:bb:5d:ca:51:18:65:f3:89:24:8e:4f:7b:be:47:
ef:d8:0a:ba:74:d2:01:b4:b2:d7:a1:79:52:aa:44:24:0e:fe:
62:35:d8:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:36 2023 by rpki-client on console-ams.rpki-client.org