Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91447E7/FE4469D2130111EDADCE5C7DC4F9AE02/27DFF066130411ED9E12327EC4F9AE02.roa
File: 27DFF066130411ED9E12327EC4F9AE02.roa (raw, json)
Hash identifier: Npes/W3cA3NeP6z8G1ZSDLtNpgquQe6oGVaHPN3Y8as=
Subject key identifier: 92:5D:F3:AE:AB:7A:2F:2C:F6:34:EE:B0:59:05:FC:15:A3:C0:08:36
Certificate issuer: /CN=A91447E7/serialNumber=E77B87146805E2604B49EEF2B4A438CBD2A51424
Certificate serial: 02
Authority key identifier: E7:7B:87:14:68:05:E2:60:4B:49:EE:F2:B4:A4:38:CB:D2:A5:14:24
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/53uHFGgF4mBLSe7ytKQ4y9KlFCQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91447E7/FE4469D2130111EDADCE5C7DC4F9AE02/27DFF066130411ED9E12327EC4F9AE02.roa
Signing time: Wed 03 Aug 2022 08:13:29 +0000
ROA not before: Wed 03 Aug 2022 08:13:29 +0000
ROA not after: Sat 30 Sep 2023 00:00:00 +0000
asID: 49901
IP address blocks: 103.188.234.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91447E7
Validity
Not Before: Aug 3 08:13:29 2022 GMT
Not After : Sep 30 00:00:00 2023 GMT
Subject: CN=62ea2e29-d2ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:ff:dd:ab:c0:f6:fd:18:ba:02:a9:df:b3:1e:
22:03:e9:3e:03:39:89:2d:82:25:df:44:f8:ce:b7:
56:14:5c:52:51:74:17:45:ed:6c:80:73:c8:13:7e:
cb:f6:7a:4e:0a:ac:40:2c:1f:ea:3a:3d:1c:d4:9d:
93:85:ea:bd:15:da:59:8f:10:23:55:ad:1a:29:bb:
01:01:0e:bb:0c:d4:45:2f:b2:c8:ff:05:4a:4a:64:
75:1d:b1:25:55:0c:a0:b8:9d:40:40:65:cb:d5:63:
d5:d1:3d:b3:07:97:20:81:ee:8f:fc:3f:1d:c5:c7:
4d:ab:5c:50:e3:df:ab:11:1f:f8:d3:79:28:b7:61:
25:70:70:91:5f:ba:72:df:46:d1:48:74:99:62:48:
62:a1:2c:dc:9b:63:46:5c:e9:13:c6:f9:6f:53:c5:
25:a0:c6:ba:a8:cd:7d:33:fe:9d:54:ec:78:91:ad:
d2:e1:21:92:80:aa:f3:bf:f0:04:b1:e7:eb:38:4c:
36:ef:68:09:f6:05:31:18:d3:37:29:da:86:1b:72:
57:e5:c5:88:5a:ac:3a:31:4e:ef:76:24:f9:95:0e:
5c:6f:a8:0c:3b:7d:ec:01:d2:68:85:14:3b:e9:1b:
ff:31:e5:62:7c:cd:52:b7:a5:1b:a3:e2:c4:eb:f9:
bd:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:5D:F3:AE:AB:7A:2F:2C:F6:34:EE:B0:59:05:FC:15:A3:C0:08:36
X509v3 Authority Key Identifier:
keyid:E7:7B:87:14:68:05:E2:60:4B:49:EE:F2:B4:A4:38:CB:D2:A5:14:24
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91447E7/FE4469D2130111EDADCE5C7DC4F9AE02/53uHFGgF4mBLSe7ytKQ4y9KlFCQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/53uHFGgF4mBLSe7ytKQ4y9KlFCQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91447E7/FE4469D2130111EDADCE5C7DC4F9AE02/27DFF066130411ED9E12327EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.188.234.0/24
Signature Algorithm: sha256WithRSAEncryption
95:21:a0:87:14:49:54:d8:df:ad:46:32:b0:9f:fb:8a:34:ab:
6d:3f:eb:97:a8:97:08:8b:6f:0f:ef:90:e2:c2:44:0a:0b:ca:
fe:26:64:e1:07:83:23:93:9b:5d:5a:95:23:ca:91:80:75:07:
73:03:de:a0:19:9c:7d:3d:60:15:d1:53:1e:6b:9b:0c:7e:4b:
40:33:cc:1a:a7:e8:dc:af:18:df:45:cd:3d:e2:47:b0:48:4d:
f0:bd:cc:7f:ab:f0:43:72:0a:9b:7e:54:0a:d5:c2:b5:e3:a5:
0c:06:6a:80:1f:98:35:0a:29:75:09:07:28:e4:6b:d3:df:c4:
a2:bf:ed:7f:1f:6b:b5:be:d4:5f:ec:03:90:a5:df:41:86:45:
91:36:36:88:f2:cf:80:dc:b4:3d:30:5e:ac:d7:88:c0:f0:10:
0d:31:f8:55:92:16:72:4b:06:52:86:b0:27:88:59:1c:ac:da:
a6:96:1c:38:7c:73:21:77:ab:8e:e4:45:fa:33:76:46:ec:87:
8c:e9:96:ec:46:07:52:b8:5d:7d:71:85:c2:fb:35:62:28:d2:
1a:a7:3c:8c:9e:11:53:ad:37:3b:ad:8a:0f:f0:81:72:a9:df:
6e:80:b0:81:db:d6:6b:77:58:80:78:28:b9:b7:55:8d:0f:d7:
67:3e:f7:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:54:35 2025 by rpki-client