Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913C1CB/E38E3280405C11ECB17F6819C4F9AE02/EB54F18E5B6D11EDAFFD966EC4F9AE02.roa
File: EB54F18E5B6D11EDAFFD966EC4F9AE02.roa (raw, json)
Hash identifier: sox8Lpb7JR4ZYLE2IHGcfO0l8YYaflBUBp6/qizupcU=
Subject key identifier: B2:B5:47:72:CE:62:4A:A5:76:FD:A1:4A:AD:60:5E:23:BB:E0:22:46
Certificate issuer: /CN=A913C1CB/serialNumber=48C5DB5A1BBDEB2211058C07D27670B42B6D876A
Certificate serial: 02CC
Authority key identifier: 48:C5:DB:5A:1B:BD:EB:22:11:05:8C:07:D2:76:70:B4:2B:6D:87:6A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SMXbWhu96yIRBYwH0nZwtCtth2o.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913C1CB/E38E3280405C11ECB17F6819C4F9AE02/EB54F18E5B6D11EDAFFD966EC4F9AE02.roa
Signing time: Fri 13 Jan 2023 13:52:11 +0000
ROA not before: Fri 13 Jan 2023 13:52:11 +0000
ROA not after: Fri 01 Mar 2024 00:00:00 +0000
asID: 134562
IP address blocks: 103.175.242.0/23 maxlen: 23
103.175.242.0/24 maxlen: 24
103.175.243.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 716 (0x2cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913C1CB/serialNumber=48C5DB5A1BBDEB2211058C07D27670B42B6D876A
Validity
Not Before: Jan 13 13:52:11 2023 GMT
Not After : Mar 1 00:00:00 2024 GMT
Subject: CN=63c1620b-cc8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:96:20:94:b8:66:2e:37:1e:39:01:20:5b:13:
38:5a:2d:e1:84:c8:c2:9e:b0:ea:2c:1b:ac:22:d3:
9b:c3:b4:86:84:39:f0:0d:29:f0:9b:ae:cc:0b:ae:
ed:a5:c2:7f:66:67:30:b9:51:18:85:90:99:c6:c9:
ec:25:ad:0c:ff:8f:b8:6b:c0:4b:f0:56:fb:d1:0f:
23:76:a7:84:04:c7:3a:32:e9:22:a1:e4:4d:c3:d1:
9c:48:34:bc:c3:77:88:79:c1:26:f6:a3:94:28:90:
d7:72:38:81:18:a0:f4:fe:10:1a:88:d2:83:36:8c:
4d:d6:a5:73:fa:eb:8b:e2:71:13:f2:54:a3:ce:7b:
cc:53:21:01:17:45:5e:74:f2:e8:64:79:e2:29:54:
2a:53:d5:e6:3f:ad:20:db:62:49:2a:03:9d:e6:40:
bb:b5:cb:29:31:37:1f:84:53:f0:48:ab:84:56:30:
76:d4:d3:6a:e6:cc:ad:16:cc:f2:f5:a3:d6:40:bd:
5f:d4:00:a1:1d:a5:e2:e7:6b:ab:ed:90:6b:68:1d:
bc:1c:cb:98:17:68:17:64:03:80:49:67:95:02:d5:
f5:53:91:ee:02:88:ff:d7:38:ae:30:7f:91:01:95:
b8:1f:4e:c9:2a:51:e7:e4:97:e3:eb:34:82:5e:04:
89:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:B5:47:72:CE:62:4A:A5:76:FD:A1:4A:AD:60:5E:23:BB:E0:22:46
X509v3 Authority Key Identifier:
keyid:48:C5:DB:5A:1B:BD:EB:22:11:05:8C:07:D2:76:70:B4:2B:6D:87:6A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913C1CB/E38E3280405C11ECB17F6819C4F9AE02/SMXbWhu96yIRBYwH0nZwtCtth2o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SMXbWhu96yIRBYwH0nZwtCtth2o.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C1CB/E38E3280405C11ECB17F6819C4F9AE02/EB54F18E5B6D11EDAFFD966EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.175.242.0/23
Signature Algorithm: sha256WithRSAEncryption
61:2a:cc:a7:e9:e6:99:57:72:c8:53:3c:a1:f8:80:e4:ae:be:
19:35:11:a3:ad:89:99:79:2b:53:ab:f1:f9:de:b9:5c:9a:dc:
cb:58:65:a9:48:08:65:ca:be:15:69:39:bc:70:1f:76:56:d1:
3d:80:fb:2e:b8:cd:d0:7f:fc:09:9a:ac:f5:f2:e2:b9:95:a9:
ed:4a:e1:f9:83:0d:a1:a7:4b:94:41:69:44:fa:c2:1a:cc:95:
ec:5c:d0:0a:b6:23:bf:65:d7:03:7e:c9:ba:e9:db:c5:a9:69:
ce:52:01:32:a1:4c:f2:34:c2:db:9e:e2:09:bb:48:31:a9:99:
4f:c6:5a:de:09:78:68:0c:75:38:a3:04:d7:69:51:0d:b8:ae:
19:17:97:61:bb:d1:c0:90:d2:af:01:77:b8:18:2b:2c:a9:1a:
53:35:89:ee:d2:9f:7d:c1:c3:55:88:0d:02:3d:af:90:2f:35:
a1:b6:ec:1d:5c:20:42:ee:eb:27:af:a1:30:36:73:36:3e:3d:
48:05:7c:f9:c9:5b:79:cb:7a:2c:cb:8c:06:41:9d:ef:a7:3b:
e7:7d:76:78:86:66:9c:46:13:56:b4:d4:45:12:4b:a7:a1:68:
8a:a8:23:b9:7f:8d:59:d7:81:5d:51:f3:0a:59:5a:95:25:23:
ed:82:50:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:55 2024 by rpki-client on console-ams.rpki-client.org