Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91407B7/BD6FE850F17511EAB56B004CC4F9AE02/C4A18676323211EB883CC65EC4F9AE02.roa
File: C4A18676323211EB883CC65EC4F9AE02.roa (raw, json)
Hash identifier: np9DuMKuO0pF8CQ9hWtOnBU/EpRIni1cfWaAGkh6B+E=
Subject key identifier: B4:D4:85:02:CA:AA:6F:DE:2E:D2:10:11:2D:74:FE:CD:60:89:0C:26
Certificate issuer: /CN=A91407B7/serialNumber=F8BD38A4C9F0C4FA73BF0D90FF0CCA802DBFD6DC
Certificate serial: 05F0
Authority key identifier: F8:BD:38:A4:C9:F0:C4:FA:73:BF:0D:90:FF:0C:CA:80:2D:BF:D6:DC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-L04pMnwxPpzvw2Q_wzKgC2_1tw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91407B7/BD6FE850F17511EAB56B004CC4F9AE02/C4A18676323211EB883CC65EC4F9AE02.roa
Signing time: Wed 12 Oct 2022 23:49:35 +0000
ROA not before: Wed 12 Oct 2022 23:49:35 +0000
ROA not after: Fri 01 Dec 2023 00:00:00 +0000
asID: 134371
IP address blocks: 103.155.71.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1520 (0x5f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91407B7/serialNumber=F8BD38A4C9F0C4FA73BF0D90FF0CCA802DBFD6DC
Validity
Not Before: Oct 12 23:49:35 2022 GMT
Not After : Dec 1 00:00:00 2023 GMT
Subject: CN=6347528f-e021
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:f5:4b:99:f4:8f:ee:df:0d:b0:cc:f3:f3:59:
19:9b:29:4d:ee:5a:70:74:8c:f3:76:80:35:1e:6b:
9e:9b:69:3d:fe:bc:58:84:25:0e:93:22:ea:3f:e0:
68:70:e0:f7:ae:ef:c4:6a:62:a6:ea:b1:91:f6:9e:
83:65:4c:c7:4d:35:1c:6e:6c:ee:22:39:3e:66:f8:
c0:b3:be:a7:60:bd:d9:e4:35:a9:24:f1:28:33:89:
59:5d:f6:58:d9:26:63:20:d1:64:4b:26:c7:96:dc:
43:c7:fb:52:29:80:7b:19:45:8c:bd:46:c2:77:9e:
82:de:c4:65:87:6b:a9:b8:4d:08:27:94:9e:59:ac:
f7:e5:5b:7b:b5:c8:80:7b:2f:a9:4d:13:13:3a:0b:
17:a2:c2:c3:6e:31:42:b8:46:65:c5:ad:e3:ef:bb:
6e:a2:30:39:13:39:dd:50:6c:52:67:d3:24:8f:d6:
52:05:e0:59:31:74:60:1c:6c:d1:cb:44:b6:c5:48:
5a:c4:39:67:4a:2a:66:30:1a:70:0c:5b:d7:46:80:
57:93:e4:cf:1a:a6:d9:13:1e:bc:d7:a8:9a:36:e5:
e7:d3:88:74:13:a6:12:92:2f:2d:bb:35:45:b6:66:
66:31:72:de:06:fb:61:4c:2d:ab:5c:8a:f6:90:7d:
7d:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:D4:85:02:CA:AA:6F:DE:2E:D2:10:11:2D:74:FE:CD:60:89:0C:26
X509v3 Authority Key Identifier:
keyid:F8:BD:38:A4:C9:F0:C4:FA:73:BF:0D:90:FF:0C:CA:80:2D:BF:D6:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91407B7/BD6FE850F17511EAB56B004CC4F9AE02/-L04pMnwxPpzvw2Q_wzKgC2_1tw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-L04pMnwxPpzvw2Q_wzKgC2_1tw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91407B7/BD6FE850F17511EAB56B004CC4F9AE02/C4A18676323211EB883CC65EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.155.71.0/24
Signature Algorithm: sha256WithRSAEncryption
08:d6:87:8c:00:a5:ff:f5:ad:92:ac:08:ca:11:36:6e:77:bf:
83:20:3e:9b:e6:42:3a:ab:fb:3c:42:50:26:10:df:80:8d:57:
88:a1:2b:bc:7f:ef:5c:f1:c1:5e:96:dc:28:4b:78:98:df:0e:
62:15:bb:e4:0f:9f:2b:2d:0a:b1:2a:fd:c7:be:68:81:dc:06:
fb:cb:46:42:66:63:2c:0e:86:cf:5b:b6:fd:a8:4f:9a:ba:87:
ff:fb:4e:a6:6c:b4:ed:7b:6a:7b:ad:34:43:d6:f1:1e:0f:10:
3f:d3:ef:2f:38:ef:fa:07:32:13:40:fb:45:32:af:52:50:80:
6d:58:f0:05:37:7d:ef:b5:42:d4:20:c1:3e:cb:bc:7c:de:58:
af:e5:cc:96:91:11:90:63:11:76:87:65:01:96:2a:0b:a6:62:
02:aa:db:7d:39:92:d0:34:2f:63:9e:18:b7:50:2d:ae:e7:37:
75:e2:c6:cb:c5:14:c5:d4:e3:28:df:0b:de:6c:87:f8:e5:94:
a0:9c:9b:77:34:47:a1:9a:e2:69:dd:64:60:40:0f:bb:8a:24:
61:76:78:3f:90:e1:b3:32:75:81:88:a0:fb:df:ca:da:e8:57:
4c:5b:84:bb:89:94:c6:bf:73:81:2f:b7:50:22:bc:8e:e2:21:
d7:7a:08:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:56 2024 by rpki-client on console-ams.rpki-client.org