Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9143DB0/B895AF74051511E58D49AE42C4F9AE02/45E496AA08E011EB8B19B054C4F9AE02.roa
File: 45E496AA08E011EB8B19B054C4F9AE02.roa (raw, json)
Hash identifier: UtS76xjlVlcDps75e5T8+xHw/VIdsAnpYDSGB2KMNz4=
Subject key identifier: 43:3F:CD:A2:26:20:08:4B:64:12:4C:14:FF:AC:D3:D8:44:B2:DB:00
Certificate issuer: /CN=A9143DB0/serialNumber=9BC7651AC4BABF8C4478534FADA610ACDA746BD4
Certificate serial: 24B1
Authority key identifier: 9B:C7:65:1A:C4:BA:BF:8C:44:78:53:4F:AD:A6:10:AC:DA:74:6B:D4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m8dlGsS6v4xEeFNPraYQrNp0a9Q.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9143DB0/B895AF74051511E58D49AE42C4F9AE02/45E496AA08E011EB8B19B054C4F9AE02.roa
Signing time: Thu 04 May 2023 16:32:53 +0000
ROA not before: Thu 04 May 2023 16:32:53 +0000
ROA not after: Wed 29 May 2024 00:00:00 +0000
asID: 134732
IP address blocks: 103.228.202.0/23 maxlen: 23
103.228.202.0/24 maxlen: 24
103.228.203.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9393 (0x24b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9143DB0/serialNumber=9BC7651AC4BABF8C4478534FADA610ACDA746BD4
Validity
Not Before: May 4 16:32:53 2023 GMT
Not After : May 29 00:00:00 2024 GMT
Subject: CN=6453de34-10b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:ea:e3:1d:38:54:46:cc:f9:c9:f8:0e:0d:d2:
8b:f3:c7:92:d6:67:a6:60:d0:85:87:d5:f4:d2:f9:
00:e7:69:f2:5e:d8:13:72:2a:b8:61:a9:51:5a:7a:
0b:2d:1b:95:18:45:de:c6:fd:08:13:29:02:31:28:
de:84:5f:7a:d4:c1:d4:76:4b:ec:da:b2:f6:4f:ab:
10:ba:00:8e:12:66:da:33:4f:8e:f9:9e:14:f5:c6:
45:9b:a8:6d:99:e4:e6:e0:ce:f5:14:ab:12:c7:ab:
dd:26:da:90:1b:7d:36:61:52:89:72:98:f2:6e:4b:
33:00:64:fd:f6:ea:61:60:e0:76:8f:02:5c:fc:08:
97:81:03:b0:c8:5a:28:f0:f8:c6:96:12:c4:7d:21:
28:93:b9:7c:4e:6a:56:3e:1b:e4:f1:95:5d:6b:06:
e0:95:0b:89:41:1f:67:51:3e:a3:e2:34:29:12:35:
2d:e9:17:3b:72:0d:29:d5:65:d1:88:63:ba:6b:52:
24:ef:17:56:19:7f:f6:e7:d3:b8:53:c3:8b:15:55:
d2:4f:e8:9b:7a:f2:e1:bb:60:b2:b6:06:43:b8:4f:
7f:4d:4f:9f:9a:09:15:b4:39:0a:79:07:07:fb:59:
9e:48:1b:f0:11:56:c6:e6:8c:7f:30:03:ad:9d:b6:
03:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:3F:CD:A2:26:20:08:4B:64:12:4C:14:FF:AC:D3:D8:44:B2:DB:00
X509v3 Authority Key Identifier:
keyid:9B:C7:65:1A:C4:BA:BF:8C:44:78:53:4F:AD:A6:10:AC:DA:74:6B:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9143DB0/B895AF74051511E58D49AE42C4F9AE02/m8dlGsS6v4xEeFNPraYQrNp0a9Q.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m8dlGsS6v4xEeFNPraYQrNp0a9Q.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143DB0/B895AF74051511E58D49AE42C4F9AE02/45E496AA08E011EB8B19B054C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.228.202.0/23
Signature Algorithm: sha256WithRSAEncryption
b1:8a:09:28:e5:25:e9:4a:1a:73:42:22:a7:3c:66:1a:b4:7e:
d3:75:38:fd:98:ff:e1:a3:88:70:a9:e8:5f:a6:19:50:47:bf:
37:50:a3:82:1d:be:81:26:3a:a9:5a:bf:86:b6:80:cc:92:12:
ce:7e:35:92:f7:1c:9a:b7:40:9b:af:17:d7:f5:5d:8e:6b:03:
a3:74:06:8c:fa:cb:e5:f2:eb:95:b7:30:96:33:e6:49:fa:d0:
fb:b1:52:91:9a:e4:19:bb:59:de:2a:75:61:20:6a:bf:09:09:
ce:c6:c3:15:e1:17:74:ef:41:64:08:e3:e4:d1:8f:b7:41:b7:
50:38:cf:1b:eb:1b:db:ca:25:71:c0:14:fc:9e:6c:07:38:38:
a8:1f:de:f6:c4:3f:70:28:e1:f1:ee:27:e7:ab:75:64:3e:52:
01:e8:e2:01:b1:24:20:06:f7:af:35:23:01:d6:d2:0d:92:56:
1f:12:a7:eb:23:4c:f0:ef:3c:55:d0:33:6f:86:85:66:12:e8:
5c:b6:47:e4:b7:44:0e:22:fb:20:bb:3d:e4:33:7f:c3:2c:70:
61:f6:a2:80:c0:30:06:9e:61:22:e1:05:b5:43:46:9a:9e:e2:
05:7e:bb:f6:b0:e9:d6:0a:64:12:96:3b:cb:cc:b7:57:d3:6c:
4f:7c:95:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:04 2024 by rpki-client on console-fra.rpki-client.org