Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/65B76770E69911ED9C93992FC4F9AE02.roa
File: 65B76770E69911ED9C93992FC4F9AE02.roa (raw, json)
Hash identifier: MR83A+BSeQ1wLNKEIVvOIs+Z5xPsk738EyaxjH8jJEc=
Subject key identifier: 83:36:02:C8:58:C3:BD:88:81:A5:C4:65:6A:30:4F:C0:62:92:6F:9A
Certificate issuer: /CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013
Certificate serial: 03C3
Authority key identifier: ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/65B76770E69911ED9C93992FC4F9AE02.roa
Signing time: Sat 29 Apr 2023 14:23:24 +0000
ROA not before: Sat 29 Apr 2023 14:23:24 +0000
ROA not after: Fri 01 Dec 2023 00:00:00 +0000
asID: 204843
IP address blocks: 103.240.198.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 963 (0x3c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013
Validity
Not Before: Apr 29 14:23:24 2023 GMT
Not After : Dec 1 00:00:00 2023 GMT
Subject: CN=644d285b-488f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:6b:a9:77:17:34:d7:cf:33:b0:e6:c5:b9:07:
28:91:bd:a1:59:02:7b:ee:74:28:d3:44:48:ed:1f:
ec:04:44:3d:8c:1c:66:85:07:36:11:1c:89:ac:7b:
b2:73:0b:56:fa:7c:17:26:e1:cb:00:e4:49:eb:8c:
fe:5d:7a:8f:70:94:7a:fe:8b:91:c8:4d:12:70:ec:
5a:13:dd:f0:c3:a0:4c:12:2c:84:54:71:6d:76:4c:
20:1f:18:50:e0:92:05:d9:61:df:70:43:18:9f:61:
6d:d4:bd:c0:6c:38:8d:39:81:18:fc:dc:49:c3:c5:
6c:70:97:ca:97:1b:0b:d5:fa:6c:d4:88:19:84:5b:
82:72:e1:32:e3:a6:06:0c:75:a2:cb:95:b6:5c:2d:
1b:7e:6a:5d:b6:98:87:45:43:84:64:b6:3a:b5:90:
f7:64:85:9a:e3:1e:f9:93:61:98:e8:c9:e7:62:a4:
4a:ce:4f:cf:eb:15:d0:22:3d:08:ae:19:52:7d:91:
9e:cd:5e:2f:44:ac:f6:f0:5c:0d:56:50:92:ef:ee:
c5:8d:f1:c7:68:20:fb:f5:5a:d8:a6:0f:cb:2c:59:
aa:1e:5d:cc:79:48:c7:47:7d:7d:e3:e9:95:3b:1d:
30:bd:dd:e7:3f:21:0a:46:45:c0:29:58:0b:64:95:
65:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:36:02:C8:58:C3:BD:88:81:A5:C4:65:6A:30:4F:C0:62:92:6F:9A
X509v3 Authority Key Identifier:
keyid:ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/65B76770E69911ED9C93992FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.240.198.0/24
Signature Algorithm: sha256WithRSAEncryption
28:9e:55:48:cc:40:0d:85:8c:c5:e0:ed:df:50:88:2c:75:47:
82:8d:fd:4d:ec:4c:3b:7d:89:42:7e:b4:7d:28:8f:7e:7f:68:
cc:72:f9:ae:c8:46:4d:c5:de:55:88:8b:f1:49:56:84:cd:7e:
52:ae:02:fc:80:3b:19:67:a2:74:c0:c9:0a:fe:89:53:88:6e:
69:a0:b5:51:f2:38:78:12:ec:48:f5:e9:cc:ad:ce:56:32:5e:
8d:52:af:34:cc:d5:38:b5:57:99:1f:9a:d7:11:59:83:10:f8:
29:66:cf:67:66:4f:19:27:c1:ed:66:42:21:0e:59:f9:9a:a7:
4d:f9:3f:e3:35:d5:d8:4d:41:82:f5:eb:36:d8:22:d7:91:43:
1c:5f:f7:33:73:da:3a:93:7d:6f:f8:0c:92:f1:fd:41:93:69:
b8:ff:44:4a:8b:60:e0:53:c5:6d:2e:b0:61:46:1b:60:03:d6:
b3:ba:8b:55:3b:53:13:34:41:28:81:c4:c9:83:0b:81:60:c3:
80:9d:7d:28:c1:96:d7:c3:13:22:08:fe:1c:91:42:b3:0a:91:
94:50:ae:2b:bc:5d:a9:b6:35:30:54:45:29:d2:31:6d:a4:3e:
51:2a:c7:f4:3b:93:e4:f1:27:58:76:00:95:58:74:be:46:70:
2a:5a:a4:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:54 2024 by rpki-client on console-ams.rpki-client.org