Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91342C5/292649CCA4E911ECAF3FB152C4F9AE02/745AEBCEA4ED11EC9F14F45BC4F9AE02.roa
File: 745AEBCEA4ED11EC9F14F45BC4F9AE02.roa (raw, json)
Hash identifier: dpjSyBrrPjpqk6bijOhnQsdAODZ16PnjAl8ZZ7INk1k=
Subject key identifier: 70:48:34:F5:3C:A4:B4:31:2C:86:8A:A9:72:A3:8F:1B:F8:44:9D:00
Certificate issuer: /CN=A91342C5/serialNumber=0A349C83E7ED321DA3B08494C4F8F0BFDBB62F7A
Certificate serial: 02
Authority key identifier: 0A:34:9C:83:E7:ED:32:1D:A3:B0:84:94:C4:F8:F0:BF:DB:B6:2F:7A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CjScg-ftMh2jsISUxPjwv9u2L3o.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91342C5/292649CCA4E911ECAF3FB152C4F9AE02/745AEBCEA4ED11EC9F14F45BC4F9AE02.roa
Signing time: Wed 16 Mar 2022 05:53:51 +0000
ROA not before: Wed 16 Mar 2022 05:53:51 +0000
ROA not after: Fri 01 Jul 2022 00:00:00 +0000
asID: 142005
IP address blocks: 103.164.130.0/24 maxlen: 24
103.164.131.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91342C5/serialNumber=0A349C83E7ED321DA3B08494C4F8F0BFDBB62F7A
Validity
Not Before: Mar 16 05:53:51 2022 GMT
Not After : Jul 1 00:00:00 2022 GMT
Subject: CN=62317b6f-072c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:e0:96:bf:c9:64:df:c5:43:53:b0:09:d4:92:
62:8d:a9:b7:4c:a4:c8:3b:43:56:7c:ec:46:33:c1:
5b:5e:c6:9d:d1:5e:cf:86:61:54:0b:b8:a3:da:ca:
a0:56:bd:a2:94:c1:f7:5e:c2:e1:06:02:9b:53:a4:
42:8a:45:eb:70:7e:c7:e2:de:53:98:23:97:ff:cf:
2b:47:54:66:4e:1f:4a:9f:07:2e:5a:55:f5:d3:44:
ce:30:ec:16:49:cc:5e:35:96:49:f9:12:e5:fc:3e:
7d:f5:bd:64:d3:48:db:e4:fb:f9:b4:b3:ae:b9:b7:
d4:9b:43:40:1b:4c:b3:e0:c8:18:35:98:95:1f:52:
0e:f6:93:3d:5d:d3:15:8f:7e:1d:90:f1:2e:d0:ae:
4b:82:7a:f7:0d:9d:c4:0c:15:55:a0:49:ce:6e:21:
b3:58:7d:13:0b:67:c3:e2:eb:60:83:39:bc:25:da:
52:5d:21:6b:80:92:65:c3:a3:68:78:45:e5:06:ac:
47:f3:49:ba:77:39:4e:b2:4f:f8:02:c6:0b:04:da:
cd:3b:27:8e:00:5f:cb:29:49:e6:a1:c8:af:55:14:
8f:63:8d:a7:9d:2f:47:88:23:b7:9f:f7:49:70:d0:
33:b4:90:cc:08:8c:cd:34:37:7d:ae:dc:23:5b:0d:
70:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:48:34:F5:3C:A4:B4:31:2C:86:8A:A9:72:A3:8F:1B:F8:44:9D:00
X509v3 Authority Key Identifier:
keyid:0A:34:9C:83:E7:ED:32:1D:A3:B0:84:94:C4:F8:F0:BF:DB:B6:2F:7A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91342C5/292649CCA4E911ECAF3FB152C4F9AE02/CjScg-ftMh2jsISUxPjwv9u2L3o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CjScg-ftMh2jsISUxPjwv9u2L3o.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91342C5/292649CCA4E911ECAF3FB152C4F9AE02/745AEBCEA4ED11EC9F14F45BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.164.130.0/23
Signature Algorithm: sha256WithRSAEncryption
19:69:f2:3d:7f:b0:62:a2:f9:87:b4:e7:af:85:6a:7d:15:65:
e6:9f:0f:47:83:64:45:66:ab:db:d9:cf:ed:c7:9b:b2:81:0a:
0a:02:e5:e6:85:c3:a6:44:73:44:b1:ca:54:50:17:39:24:48:
f8:e5:34:31:ee:ad:b8:81:60:6f:09:46:9c:fb:c7:f0:fc:78:
7c:e2:46:27:59:e2:b1:82:76:61:40:b7:67:bd:f7:9c:af:0f:
7b:b4:69:82:3d:17:9d:98:2e:15:dc:d7:8d:f5:1e:e6:53:bd:
41:26:93:24:af:2e:12:42:c5:1f:cb:30:78:c5:c0:0e:b8:a4:
48:1c:d7:1f:a2:49:02:85:25:eb:6d:6a:57:5a:b2:07:59:a1:
39:9b:1a:87:4b:59:e3:5e:a7:93:f4:58:69:3b:eb:76:01:fe:
92:de:86:a3:d6:6d:bb:95:6b:bd:bc:f9:cf:c4:87:00:39:23:
00:b5:77:04:de:56:a5:28:f2:cc:6c:35:7c:c4:dc:e6:46:fa:
e3:2d:e7:68:47:3f:51:98:c2:e4:46:d0:4c:24:95:af:da:f3:
18:fa:3f:bc:a0:c6:16:37:72:5f:80:4e:c6:3f:41:9c:cf:29:
b5:24:f8:69:b2:ce:a7:eb:73:fd:31:f5:fd:85:8b:0d:51:1e:
6e:53:f9:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:36 2023 by rpki-client on console-ams.rpki-client.org