Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/93329CC69F0811ECAE659F82C4F9AE02.roa
File: 93329CC69F0811ECAE659F82C4F9AE02.roa (raw, json)
Hash identifier: ihofSuD9shEWy0X5MoWOddN+FG+pMG1p09oUfwW9aL0=
Subject key identifier: 59:8F:06:13:7A:4E:76:E6:EB:90:53:73:F1:21:40:CF:3C:D0:DC:5A
Certificate issuer: /CN=A914E9C1/serialNumber=0A1DE18DFC98E4ACB3FA233368105A73D1D419F3
Certificate serial: 5F
Authority key identifier: 0A:1D:E1:8D:FC:98:E4:AC:B3:FA:23:33:68:10:5A:73:D1:D4:19:F3
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/93329CC69F0811ECAE659F82C4F9AE02.roa
Signing time: Tue 08 Mar 2022 17:52:52 +0000
ROA not before: Tue 08 Mar 2022 17:52:52 +0000
ROA not after: Thu 01 Dec 2022 00:00:00 +0000
asID: 57724
IP address blocks: 103.91.217.0/24 maxlen: 24
103.99.208.0/24 maxlen: 24
103.99.209.0/24 maxlen: 24
103.99.210.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95 (0x5f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914E9C1
Validity
Not Before: Mar 8 17:52:52 2022 GMT
Not After : Dec 1 00:00:00 2022 GMT
Subject: CN=622797f4-3b2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:7d:6d:b8:f5:44:3e:d7:f6:5a:c8:ce:9d:0a:
61:3d:10:54:31:7a:d3:68:7f:be:30:b8:9b:a5:1d:
dc:49:9a:24:0f:b1:72:58:f5:aa:ef:63:dd:ea:e2:
41:a9:2d:2a:7f:2b:f4:cf:1e:37:1f:9b:e0:08:19:
7a:98:93:5d:46:85:e1:df:09:03:16:4a:99:32:ea:
b4:98:22:92:a8:53:e2:ca:dc:00:b9:3f:7d:91:ea:
6b:ae:92:ba:37:b0:9c:53:db:ff:15:f0:a1:1b:cb:
b0:f4:a9:5a:da:8c:bb:3a:fd:56:ed:2d:0d:2a:05:
a7:28:71:ef:c7:87:d3:60:c6:80:40:0c:3c:28:42:
82:f4:04:4a:67:20:cd:d0:ff:e4:0a:ee:aa:54:93:
8d:1c:f1:65:bc:13:b6:34:e0:2d:94:21:43:ce:b9:
ef:f8:9d:e8:b5:a1:99:41:44:e7:7d:de:85:62:0d:
fc:a3:22:ed:0a:d6:4a:7e:cc:bf:28:bd:19:09:45:
76:ec:36:9b:f6:b9:07:d1:fc:8b:85:83:2a:ca:2a:
bb:6b:7c:97:10:71:51:47:a8:87:32:6f:4c:15:7c:
c5:c2:fa:18:3d:31:14:4d:76:59:86:dc:f2:41:2b:
7b:ac:ce:7d:6e:44:fd:a0:23:0f:ea:37:fa:44:6f:
d2:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:8F:06:13:7A:4E:76:E6:EB:90:53:73:F1:21:40:CF:3C:D0:DC:5A
X509v3 Authority Key Identifier:
keyid:0A:1D:E1:8D:FC:98:E4:AC:B3:FA:23:33:68:10:5A:73:D1:D4:19:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/93329CC69F0811ECAE659F82C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.91.217.0/24
103.99.208.0-103.99.210.255
Signature Algorithm: sha256WithRSAEncryption
7e:e7:d2:ca:54:20:4d:bb:c6:f1:0f:a6:04:4d:e6:ff:4a:bf:
c1:cb:f3:47:69:83:77:e3:9f:0d:63:63:0b:06:1a:f6:13:6f:
7d:5f:d0:aa:ca:a8:c0:37:93:53:74:a4:81:0c:88:55:4d:48:
7a:1f:ae:83:af:37:11:f6:10:54:59:15:f7:ff:6e:c5:0c:59:
4c:59:3e:8e:2e:96:c9:3d:b3:bc:f8:80:5f:b2:f8:4a:3c:0b:
ea:c8:a3:dc:7a:a8:fc:9d:7e:5b:a6:be:d2:02:03:70:32:81:
b8:2f:0d:20:13:6e:70:a7:46:9d:81:09:f8:08:e3:19:81:df:
7b:5e:ac:e8:4a:35:e2:19:e5:8b:cb:1a:5d:89:d0:3f:cd:a8:
ca:e1:c7:48:0e:b6:55:b4:9e:3d:e0:8f:fd:5a:c4:a8:72:83:
a7:76:c6:ec:be:98:12:9a:10:07:ee:a6:a0:18:95:27:ef:0f:
2f:12:00:8c:16:c5:0a:27:c1:84:98:c0:5f:be:5d:38:0d:17:
fb:ac:4d:64:60:cc:a0:bb:2a:d2:85:30:98:1f:e1:f0:92:2d:
74:10:20:99:7c:a4:f4:e0:50:ad:03:45:09:be:41:06:41:4c:
38:f8:42:aa:94:9a:ba:e6:70:d5:90:de:3f:fa:ef:37:14:16:
14:88:75:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:40:39 2025 by rpki-client