Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/0615092A931111EDB92FFC5FC4F9AE02.roa
File: 0615092A931111EDB92FFC5FC4F9AE02.roa (raw, json)
Hash identifier: fHNj22igftsBQ3krsUA6bknsvYyAapidOhnBDcFeFGg=
Subject key identifier: A2:91:08:6C:08:36:D3:F5:D8:94:F1:8D:87:0F:5C:F3:3F:13:62:EE
Certificate issuer: /CN=A913B805/serialNumber=42D3ECB9C8570AB090EB601EDB3379C0D3D8A6D0
Certificate serial: 239F
Authority key identifier: 42:D3:EC:B9:C8:57:0A:B0:90:EB:60:1E:DB:33:79:C0:D3:D8:A6:D0
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/0615092A931111EDB92FFC5FC4F9AE02.roa
Signing time: Fri 13 Jan 2023 07:08:04 +0000
ROA not before: Fri 13 Jan 2023 07:08:04 +0000
ROA not after: Mon 01 May 2023 00:00:00 +0000
asID: 65536
IP address blocks: 103.138.210.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9119 (0x239f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913B805
Validity
Not Before: Jan 13 07:08:04 2023 GMT
Not After : May 1 00:00:00 2023 GMT
Subject: CN=63c10354-4714
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:b7:c8:74:fa:ef:bf:8f:a1:8b:d4:15:50:c2:
aa:5b:bc:92:a7:c0:aa:43:6e:14:c1:7d:6b:82:81:
e1:c1:b4:31:57:89:ef:94:f8:6f:af:af:3e:4e:3a:
8c:f9:8e:10:ec:d6:32:91:bb:05:96:77:0b:78:75:
7e:72:b3:13:3d:1e:e8:ce:d8:49:7e:a5:b3:bd:11:
76:5f:9a:c9:c5:dc:39:6f:52:f9:a5:6d:07:1f:58:
76:d0:f5:d1:84:db:e9:b7:f8:84:5a:a8:6f:d6:12:
bc:64:83:e3:05:c3:85:30:92:5e:a4:10:f7:db:17:
8d:ab:96:28:bd:d5:ed:91:bc:87:cf:c0:85:ad:12:
1f:47:ec:4a:d3:d2:d7:42:45:55:70:bf:72:c7:85:
8e:48:b6:0f:d0:0b:fb:b0:1e:78:0e:4c:94:42:c6:
90:dc:84:6c:fc:80:41:98:20:3d:03:08:f3:10:c1:
38:5f:f7:2f:b3:80:ef:9f:73:e0:76:ce:fe:f6:44:
37:82:f4:e6:1c:3a:d1:6a:83:b4:01:b1:4e:c6:84:
21:85:fc:b2:2c:fb:6d:64:1e:ce:1f:bc:4b:88:93:
79:1e:b9:ed:ea:2a:e2:43:ee:51:45:62:01:4d:6c:
1c:1e:05:ca:8b:e7:42:29:db:35:ad:00:cb:72:b8:
fa:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:91:08:6C:08:36:D3:F5:D8:94:F1:8D:87:0F:5C:F3:3F:13:62:EE
X509v3 Authority Key Identifier:
keyid:42:D3:EC:B9:C8:57:0A:B0:90:EB:60:1E:DB:33:79:C0:D3:D8:A6:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/0615092A931111EDB92FFC5FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.138.210.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:64:db:b3:98:e0:36:73:ed:16:64:7f:0b:9d:cd:b3:23:61:
c7:4e:21:d8:ed:95:27:c2:72:91:3c:d6:7f:f9:87:c2:16:ba:
fe:e2:0e:d2:65:2c:98:96:7d:d1:30:b9:51:9b:f8:c9:65:24:
af:83:2d:32:92:ca:5e:49:e3:87:65:aa:17:94:ca:62:da:ba:
39:ec:5b:c0:95:c3:18:82:2f:d8:20:9e:0f:b4:67:e2:30:50:
77:c7:91:de:73:8e:ff:d1:ee:bf:e2:1b:4b:77:69:a8:ae:db:
3e:92:36:11:ed:88:2a:9e:ea:fb:4c:38:0f:dc:5c:59:44:35:
5f:c3:d9:08:d8:43:c8:6b:df:74:3e:ba:c4:16:ff:79:ca:d7:
83:bc:3b:2e:30:28:33:a4:1a:60:ec:2e:ef:58:f7:fd:fb:ff:
28:1f:ca:ce:a4:e1:f3:68:fc:79:c6:a4:29:19:29:4c:0b:23:
aa:e7:03:93:6a:53:03:97:cc:be:40:3a:a9:4d:a6:75:02:05:
88:07:6c:5d:a8:7a:59:75:7d:4a:28:2d:69:9b:26:9f:2e:3b:
a9:4b:f0:57:b4:f7:8f:c9:c4:33:0c:87:fc:e8:94:de:fc:7d:
84:b7:0a:0c:75:e9:c6:ba:34:bd:75:16:32:11:b5:30:c8:a6:
da:5e:b0:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:00:45 2025 by rpki-client