Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A914B5BD/33CB117AB5A911E79C74CB72C4F9AE02/5FF4579639BC11EEA3EAE732C4F9AE02.roa
File: 5FF4579639BC11EEA3EAE732C4F9AE02.roa (raw, json)
Hash identifier: B3RMM2WYW16HmfvDSidTLoITaBIAI/AVed2cK55NA1o=
Subject key identifier: D9:50:79:E2:03:7C:56:98:22:FD:7C:4E:91:51:4D:55:B8:1D:13:98
Certificate issuer: /CN=A914B5BD/serialNumber=22E81B327CB1FB3501E05AFAB94121918FDB5B5E
Certificate serial: 16EE
Authority key identifier: 22:E8:1B:32:7C:B1:FB:35:01:E0:5A:FA:B9:41:21:91:8F:DB:5B:5E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IugbMnyx-zUB4Fr6uUEhkY_bW14.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914B5BD/33CB117AB5A911E79C74CB72C4F9AE02/5FF4579639BC11EEA3EAE732C4F9AE02.roa
Signing time: Sun 13 Aug 2023 09:32:52 +0000
ROA not before: Sun 13 Aug 2023 09:32:52 +0000
ROA not after: Fri 01 Dec 2023 00:00:00 +0000
asID: 150786
IP address blocks: 103.248.54.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5870 (0x16ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914B5BD/serialNumber=22E81B327CB1FB3501E05AFAB94121918FDB5B5E
Validity
Not Before: Aug 13 09:32:52 2023 GMT
Not After : Dec 1 00:00:00 2023 GMT
Subject: CN=64d8a344-7ad1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ee:92:66:28:82:9f:0b:5a:1e:7f:f8:88:13:
a8:1f:42:fa:7c:80:d1:43:c7:0e:65:fc:17:32:4d:
dd:d6:c5:20:d9:32:1c:2b:79:3b:4c:98:9b:ac:10:
c3:b0:f7:36:7e:eb:6f:81:03:c6:d0:25:68:a6:3f:
07:3a:cc:16:f0:1a:2f:7d:fd:08:6b:ba:fb:51:17:
51:5d:ac:2b:3f:ac:d3:14:45:f5:31:3e:a3:cd:4b:
e9:37:ad:8e:68:b6:53:36:5a:68:64:2f:99:25:24:
6f:eb:ec:e4:53:b1:0b:67:63:1d:0a:02:04:f5:a2:
c6:70:b3:35:36:de:94:30:5e:2b:dd:25:20:13:fe:
2c:70:9b:04:60:c4:a3:a4:53:bb:59:0a:b9:a6:31:
26:fa:f2:c1:46:6c:c7:9f:24:9c:57:c7:8e:75:0c:
ad:a8:6e:d2:74:2c:2d:5c:8b:75:2c:20:27:6d:36:
45:d8:36:98:f6:bc:b7:05:e9:b7:19:92:3b:69:96:
4e:af:2c:16:bf:13:39:4e:36:11:95:82:f6:ff:eb:
b2:bf:54:f3:16:a5:ab:8f:7d:5b:3c:84:04:db:c5:
63:83:32:b0:d0:f8:64:2a:8e:7b:aa:01:92:fe:89:
66:08:18:d8:28:53:8c:37:6e:9c:bf:34:97:3d:8f:
7e:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:50:79:E2:03:7C:56:98:22:FD:7C:4E:91:51:4D:55:B8:1D:13:98
X509v3 Authority Key Identifier:
keyid:22:E8:1B:32:7C:B1:FB:35:01:E0:5A:FA:B9:41:21:91:8F:DB:5B:5E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914B5BD/33CB117AB5A911E79C74CB72C4F9AE02/IugbMnyx-zUB4Fr6uUEhkY_bW14.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IugbMnyx-zUB4Fr6uUEhkY_bW14.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B5BD/33CB117AB5A911E79C74CB72C4F9AE02/5FF4579639BC11EEA3EAE732C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.248.54.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:c0:11:6c:30:81:14:80:95:a7:63:99:d3:b8:f8:a0:8b:f7:
d4:bb:1b:4e:56:15:f2:42:83:7d:1e:87:7e:13:a6:eb:9e:0a:
07:7e:33:9c:29:af:1a:2d:72:4c:a3:c7:cd:de:7b:3f:80:3d:
e8:ac:06:1d:37:da:5e:db:d2:d0:7f:8c:f6:31:0e:f1:13:06:
56:26:60:f8:5e:0f:5b:2b:b2:c9:23:d7:13:ed:03:75:74:73:
ae:c2:2a:88:c3:9f:4a:50:85:fe:82:fb:90:67:82:75:ef:5b:
23:69:57:24:4c:90:90:8b:dc:a4:66:b3:03:d2:c6:a0:00:a5:
90:1b:d4:d1:ba:cb:46:0e:a0:49:77:a9:68:f8:98:d3:05:de:
bc:df:7f:ae:d6:9f:7b:d4:15:c6:bc:14:22:a5:9f:c7:3b:18:
11:fd:49:0b:9f:75:22:30:d6:ad:a8:71:b9:68:ae:16:12:bb:
3d:4b:55:1c:61:79:37:cf:ad:15:9f:00:86:82:56:1b:d1:79:
38:34:bd:c2:3b:27:d4:5e:20:b0:d9:5a:27:a4:7a:40:c9:9d:
19:fa:29:9b:f9:3e:85:f0:8a:d0:55:c3:fd:bb:12:c5:d1:22:
f2:94:95:fa:3a:a7:83:19:59:5a:8b:5b:bf:99:ab:11:a7:62:
56:0e:fa:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:05 2024 by rpki-client on console-fra.rpki-client.org