Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91380B5/69463D04CA3D11EC91AC426DC4F9AE02/DFD9A3EACA4011ECA06DD183C4F9AE02.roa
File: DFD9A3EACA4011ECA06DD183C4F9AE02.roa (raw, json)
Hash identifier: FgPiFADXMeEYkcp1olrnqaNfd3GwYy3bOwJIXN/L/nc=
Subject key identifier: F5:19:5F:69:3B:5E:DB:83:4C:C7:CE:C0:04:23:0D:34:4A:AE:36:7A
Certificate issuer: /CN=A91380B5/serialNumber=7E65C58FA343A10C534350AB497FD090CEEFBFBB
Certificate serial: 02
Authority key identifier: 7E:65:C5:8F:A3:43:A1:0C:53:43:50:AB:49:7F:D0:90:CE:EF:BF:BB
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fmXFj6NDoQxTQ1CrSX_QkM7vv7s.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91380B5/69463D04CA3D11EC91AC426DC4F9AE02/DFD9A3EACA4011ECA06DD183C4F9AE02.roa
Signing time: Mon 02 May 2022 17:54:13 +0000
ROA not before: Mon 02 May 2022 17:54:13 +0000
ROA not after: Mon 01 May 2023 00:00:00 +0000
asID: 136059
IP address blocks: 103.180.24.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91380B5/serialNumber=7E65C58FA343A10C534350AB497FD090CEEFBFBB
Validity
Not Before: May 2 17:54:13 2022 GMT
Not After : May 1 00:00:00 2023 GMT
Subject: CN=62701ac4-69d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:ef:ba:cf:0c:af:3d:49:69:8a:59:4b:4f:8c:
4e:64:5f:69:b4:d1:7f:72:dc:f2:07:f1:35:92:33:
5d:f8:ff:35:6d:80:96:64:9a:00:33:77:36:7c:ae:
34:bb:bd:fa:58:42:83:ff:10:9b:bb:22:f7:2f:e5:
b1:cc:d1:e1:b2:db:6f:f2:cf:fc:b6:4b:ea:b8:44:
0c:28:92:e1:f4:6b:f3:d2:32:87:1c:b2:72:33:a2:
0a:9b:62:d6:f3:2e:2a:a7:ae:72:7a:75:52:f6:b7:
74:1f:5a:94:df:8c:c7:16:fd:7d:d3:2a:f9:b9:57:
f7:49:97:2a:cc:ef:e1:e8:ab:f0:6c:94:0d:12:8b:
df:71:eb:6f:2a:08:30:ff:07:a6:d7:14:f1:8e:eb:
68:73:08:3d:47:01:07:58:f0:fd:fc:52:30:06:b7:
10:c7:f9:82:00:2a:47:60:fd:fd:f8:0b:0c:7e:ab:
78:83:0f:d1:26:90:b4:35:17:9e:e7:b2:2a:94:c5:
b6:dc:c0:59:aa:e3:36:a9:c1:da:ea:3d:84:db:21:
0e:34:d2:81:8e:ae:2b:cc:8d:16:8b:72:bc:7c:db:
05:47:c9:96:38:c0:86:2e:c8:81:7f:b6:34:b3:10:
59:e8:5a:a5:10:d1:70:54:c7:b6:cf:7f:15:c0:3f:
4c:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:19:5F:69:3B:5E:DB:83:4C:C7:CE:C0:04:23:0D:34:4A:AE:36:7A
X509v3 Authority Key Identifier:
keyid:7E:65:C5:8F:A3:43:A1:0C:53:43:50:AB:49:7F:D0:90:CE:EF:BF:BB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91380B5/69463D04CA3D11EC91AC426DC4F9AE02/fmXFj6NDoQxTQ1CrSX_QkM7vv7s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fmXFj6NDoQxTQ1CrSX_QkM7vv7s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91380B5/69463D04CA3D11EC91AC426DC4F9AE02/DFD9A3EACA4011ECA06DD183C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.180.24.0/23
Signature Algorithm: sha256WithRSAEncryption
65:87:8d:ec:94:41:20:04:59:6b:e5:be:36:a1:d3:4e:93:89:
46:56:c5:5f:a9:e8:dc:7e:c8:a6:49:69:2c:c5:21:0b:4d:32:
99:a6:c7:68:de:6e:f7:0e:c6:92:19:f0:28:05:ed:63:1c:53:
13:68:51:d4:5f:67:dc:8d:87:5e:fa:fb:19:e6:5c:73:5c:3e:
d1:16:3b:11:03:38:93:16:22:3e:71:3b:09:90:e6:f7:cc:20:
e6:6c:31:38:11:41:1c:ba:a2:64:af:28:02:52:4d:53:37:33:
39:45:ba:31:ff:0b:f4:06:2e:f8:bf:36:06:2e:01:e2:91:64:
7c:fd:f6:f4:a7:b4:85:f0:4c:7b:a4:68:3b:18:c2:00:bc:90:
d6:f4:76:b6:80:d6:c9:33:61:3f:92:64:19:d6:f1:ab:73:92:
29:89:73:e0:59:49:d9:fa:7c:0e:23:a8:84:df:2e:5c:c7:a9:
e3:4a:bb:a8:bf:f9:9d:42:36:8a:27:ce:a1:bd:15:d4:1d:83:
ba:50:da:78:ae:9f:56:e6:8b:0a:d9:8c:54:d1:49:11:9a:79:
9f:94:02:fe:2a:0f:fa:88:e4:e6:78:12:38:16:8c:fd:08:b0:
f3:28:ca:00:36:b8:c3:0a:3f:3a:0a:bd:70:ad:74:f4:7a:b6:
f5:cf:5a:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:36 2023 by rpki-client on console-ams.rpki-client.org