Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9148BFA/04A24C34114311EC97369F73C4F9AE02/5835D2F057BC11EEB787310BC4F9AE02.roa
File: 5835D2F057BC11EEB787310BC4F9AE02.roa (raw, json)
Hash identifier: zPszTZ7YkyMg1UIsTLXKK4lAstc8ZoTZycVYXKh3KQI=
Subject key identifier: AA:F7:A4:2B:BB:F9:0D:35:4D:49:0B:EF:21:CA:A0:AD:6A:00:9B:9D
Certificate issuer: /CN=A9148BFA/serialNumber=157B0BDE0E3CADB294839BC9815655644DB26E91
Certificate serial: 03D9
Authority key identifier: 15:7B:0B:DE:0E:3C:AD:B2:94:83:9B:C9:81:56:55:64:4D:B2:6E:91
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FXsL3g48rbKUg5vJgVZVZE2ybpE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9148BFA/04A24C34114311EC97369F73C4F9AE02/5835D2F057BC11EEB787310BC4F9AE02.roa
Signing time: Wed 20 Sep 2023 13:48:14 +0000
ROA not before: Wed 20 Sep 2023 13:48:14 +0000
ROA not after: Sun 31 Mar 2024 00:00:00 +0000
asID: 206264
IP address blocks: 103.46.143.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 985 (0x3d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9148BFA/serialNumber=157B0BDE0E3CADB294839BC9815655644DB26E91
Validity
Not Before: Sep 20 13:48:14 2023 GMT
Not After : Mar 31 00:00:00 2024 GMT
Subject: CN=650af81e-50a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:7d:c5:a9:75:d9:31:86:e7:87:e3:fb:0e:cd:
f8:12:5d:21:dc:7e:c1:44:15:21:7c:a5:04:bf:27:
3e:45:f8:9b:ea:56:ca:6f:7c:20:f6:c8:d8:bb:db:
92:26:eb:29:68:13:35:fe:e6:fb:bf:59:64:1c:b4:
83:82:14:b0:98:6d:7a:3c:0b:3a:be:5c:74:ae:71:
5a:6a:c5:b5:c5:10:84:ab:7e:a9:36:fe:6c:7d:1e:
62:9b:d9:fa:01:08:fa:68:51:88:fc:86:dc:69:4c:
dd:31:da:be:21:22:85:98:93:7c:3c:c2:83:b9:b7:
1a:43:3b:ed:f4:b8:3c:cc:3f:e1:0d:b9:1f:23:6e:
c8:98:d8:6b:30:c2:e8:19:e7:87:57:32:7d:9d:90:
15:97:0f:b2:e2:77:c6:05:3e:31:dd:b1:92:85:f8:
b4:83:64:d1:bb:54:4e:20:0a:e6:ff:f6:e9:95:eb:
b7:76:2c:08:71:37:ac:e1:a3:98:e8:9b:53:ce:68:
e0:e0:0e:f9:87:b1:f6:83:35:39:66:2d:fa:44:ef:
93:cd:d2:a4:ca:59:5a:d3:45:71:fa:b8:ba:5e:80:
90:cf:e6:c8:8e:2b:f7:64:b9:11:68:1d:ea:ac:83:
25:8c:be:73:79:bf:e4:3c:d0:f8:f3:a9:c9:8b:d0:
b4:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:F7:A4:2B:BB:F9:0D:35:4D:49:0B:EF:21:CA:A0:AD:6A:00:9B:9D
X509v3 Authority Key Identifier:
keyid:15:7B:0B:DE:0E:3C:AD:B2:94:83:9B:C9:81:56:55:64:4D:B2:6E:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9148BFA/04A24C34114311EC97369F73C4F9AE02/FXsL3g48rbKUg5vJgVZVZE2ybpE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FXsL3g48rbKUg5vJgVZVZE2ybpE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148BFA/04A24C34114311EC97369F73C4F9AE02/5835D2F057BC11EEB787310BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.46.143.0/24
Signature Algorithm: sha256WithRSAEncryption
13:18:df:9c:ad:61:27:14:da:cb:ef:a3:4c:60:69:ae:8d:74:
da:8c:e3:73:c0:9c:80:48:70:5e:bb:44:2f:0c:4a:2d:22:11:
52:f9:2a:a2:d3:19:a0:77:92:c8:a5:48:f3:31:a0:f4:1c:b2:
f2:34:e3:6a:c2:93:0f:d5:b0:82:18:78:37:ef:83:c0:2a:a8:
9d:93:18:54:9a:0b:df:88:00:bd:16:d8:98:46:a6:97:ee:d8:
c1:b3:a5:4d:78:64:dd:3a:9f:8b:6f:42:b7:56:37:e9:56:b2:
81:4a:d5:96:b6:5f:3b:f4:77:7d:dc:cd:e5:71:a8:45:80:83:
80:db:cb:2f:1e:f1:cc:0c:73:e8:e7:83:61:2b:c2:ff:b9:ba:
a5:3e:5c:2c:d1:ac:45:41:90:44:c8:14:63:93:24:1b:38:df:
39:10:57:f3:94:9c:77:5c:26:d9:60:6f:d1:cf:5d:7a:bc:1e:
02:0c:16:5a:47:ff:db:64:63:a4:06:73:56:24:8d:d3:36:82:
f2:71:e8:8b:0a:e9:e2:f4:ff:81:81:ee:3c:63:40:87:14:06:
62:03:36:45:5d:ee:4c:c5:a9:53:92:a1:a6:fe:0a:77:e8:4b:
80:69:5a:a9:a1:8d:01:12:9f:f4:f4:cf:42:ff:d2:50:f5:60:
61:45:85:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:05 2024 by rpki-client on console-fra.rpki-client.org