Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913C1CB/E38E3280405C11ECB17F6819C4F9AE02/99A2EB9C575E11ED97F70846C4F9AE02.roa
File: 99A2EB9C575E11ED97F70846C4F9AE02.roa (raw, json)
Hash identifier: P8AtKtWcQxuGp4fOGhnLOQRabUhFGsQyRys4XMfGKps=
Subject key identifier: 71:B0:FC:4C:64:7D:E5:3F:B2:EB:7A:8D:72:64:BD:7E:F2:D8:A5:3D
Certificate issuer: /CN=A913C1CB/serialNumber=48C5DB5A1BBDEB2211058C07D27670B42B6D876A
Certificate serial: 029E
Authority key identifier: 48:C5:DB:5A:1B:BD:EB:22:11:05:8C:07:D2:76:70:B4:2B:6D:87:6A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SMXbWhu96yIRBYwH0nZwtCtth2o.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913C1CB/E38E3280405C11ECB17F6819C4F9AE02/99A2EB9C575E11ED97F70846C4F9AE02.roa
Signing time: Sat 29 Oct 2022 07:52:14 +0000
ROA not before: Sat 29 Oct 2022 07:52:14 +0000
ROA not after: Thu 02 Mar 2023 00:00:00 +0000
asID: 134562
IP address blocks: 103.175.242.0/23 maxlen: 23
103.175.242.0/24 maxlen: 24
103.175.243.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 670 (0x29e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913C1CB/serialNumber=48C5DB5A1BBDEB2211058C07D27670B42B6D876A
Validity
Not Before: Oct 29 07:52:14 2022 GMT
Not After : Mar 2 00:00:00 2023 GMT
Subject: CN=635cdbad-4cb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:02:6f:5d:9a:32:85:c9:31:0f:43:87:51:9a:
c8:45:0e:33:4b:e2:a1:8f:70:db:07:b1:94:3f:13:
b3:cd:53:38:a4:38:1b:90:4c:1e:1a:fc:32:17:35:
6c:cf:14:be:ab:5c:cc:a1:ee:46:9e:46:81:a3:b8:
64:95:a0:83:50:e3:dd:fc:ae:9b:68:2f:2f:c2:ba:
35:1c:84:cc:d9:23:24:28:d3:70:31:3e:14:d2:99:
8f:3a:aa:90:62:e8:2f:02:de:8d:07:86:fa:47:1c:
b3:15:ab:d2:b4:af:a5:cc:13:c6:01:07:fc:53:1e:
db:e1:a8:e6:32:dd:e5:9d:27:ef:92:96:6f:6b:b3:
a3:36:49:a0:0d:77:a1:8b:c2:c0:59:73:c2:f2:23:
44:d0:1f:b4:2c:65:71:7e:26:37:1d:07:eb:3d:9b:
43:17:86:70:05:ef:eb:02:05:92:0f:53:21:d1:e1:
8d:70:03:67:0f:c9:c3:61:e6:b7:22:92:cd:95:29:
f7:69:dc:1e:8e:91:03:40:30:e8:78:65:8d:3e:01:
45:d6:8e:c6:44:32:fb:c3:7c:67:36:7c:35:08:63:
9c:05:6f:93:75:87:a5:f2:07:1d:82:4e:74:bc:80:
8f:1d:c9:8d:89:aa:a1:e6:c1:3d:87:51:54:cf:79:
af:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:B0:FC:4C:64:7D:E5:3F:B2:EB:7A:8D:72:64:BD:7E:F2:D8:A5:3D
X509v3 Authority Key Identifier:
keyid:48:C5:DB:5A:1B:BD:EB:22:11:05:8C:07:D2:76:70:B4:2B:6D:87:6A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913C1CB/E38E3280405C11ECB17F6819C4F9AE02/SMXbWhu96yIRBYwH0nZwtCtth2o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SMXbWhu96yIRBYwH0nZwtCtth2o.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C1CB/E38E3280405C11ECB17F6819C4F9AE02/99A2EB9C575E11ED97F70846C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.175.242.0/23
Signature Algorithm: sha256WithRSAEncryption
99:75:37:1d:e0:2c:9e:b8:ad:60:a6:66:ad:a7:d8:a8:8e:a0:
cf:c2:91:45:dc:6b:d8:20:72:3f:61:aa:d1:6e:8c:39:8f:a5:
ca:23:0f:bc:5e:2a:ea:d0:6c:91:da:3b:da:d6:60:2b:f1:5f:
b0:0c:46:82:9b:38:3f:a8:1a:6d:c4:59:dc:a1:bd:79:76:44:
fe:db:eb:c2:93:b4:31:fa:c0:f1:bf:75:43:a6:22:8e:d4:c4:
fa:0e:30:fe:73:0e:bf:d0:32:e2:a1:29:e5:ab:74:40:b7:eb:
ed:9f:ac:f7:a2:80:3e:a0:e4:5a:6d:ee:7c:a0:a9:23:01:5e:
9c:3d:0a:44:03:4d:98:9f:fa:2a:fc:61:dc:d2:58:28:ce:e2:
47:14:a0:8c:51:a2:db:0e:a3:a9:a7:0a:b2:41:ad:2e:d2:8c:
5e:72:16:dc:13:3a:8e:b4:9c:6f:e6:c1:f0:61:21:cb:46:47:
56:02:80:bd:f6:7f:d7:79:df:66:4d:ee:c9:e6:01:94:5f:76:
03:da:bd:bb:9b:12:37:35:15:d3:f3:24:43:70:1f:20:cf:54:
04:40:88:2e:03:f2:0f:4c:01:28:bd:48:ee:0c:b6:4e:7d:be:
f8:c6:e9:3c:a8:ab:8f:a0:f9:59:43:a7:89:4a:12:ce:1f:c5:
a0:9d:bd:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:39 2023 by rpki-client on console-fra.rpki-client.org