Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91580D2/EBC1AC2C184F11EDADBC3C65C4F9AE02/61E45538695B11ED830F450AC4F9AE02.roa
File: 61E45538695B11ED830F450AC4F9AE02.roa (raw, json)
Hash identifier: eeSAnLOP8UP1SYVVUn1HnJR2hA9fkhI7UZUKF9z7Qjs=
Subject key identifier: 63:8E:C8:9E:63:1C:54:DE:57:5F:7A:84:0E:55:1B:07:A9:BB:B3:AA
Certificate issuer: /CN=A91580D2/serialNumber=CA90D4D2125F0336B5398EE09977296F2E4092B4
Certificate serial: 94
Authority key identifier: CA:90:D4:D2:12:5F:03:36:B5:39:8E:E0:99:77:29:6F:2E:40:92:B4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypDU0hJfAza1OY7gmXcpby5AkrQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91580D2/EBC1AC2C184F11EDADBC3C65C4F9AE02/61E45538695B11ED830F450AC4F9AE02.roa
Signing time: Fri 25 Nov 2022 05:54:45 +0000
ROA not before: Fri 25 Nov 2022 05:54:45 +0000
ROA not after: Wed 31 Jan 2024 00:00:00 +0000
asID: 17447
IP address blocks: 103.102.126.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148 (0x94)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91580D2/serialNumber=CA90D4D2125F0336B5398EE09977296F2E4092B4
Validity
Not Before: Nov 25 05:54:45 2022 GMT
Not After : Jan 31 00:00:00 2024 GMT
Subject: CN=638058a5-70ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:e8:43:b5:8e:07:aa:d6:33:b2:80:e3:6c:1e:
44:22:c5:0e:67:ab:59:50:a7:b2:6c:39:e9:83:78:
94:52:e4:83:38:35:06:3d:8f:2b:c9:d4:6f:11:95:
94:91:d0:54:fe:a7:34:f5:74:56:f8:05:6e:e6:e2:
01:ed:07:e6:6b:d7:f2:38:ed:15:64:14:71:03:be:
bc:42:cd:80:4d:dd:3a:0c:4f:1e:24:f3:9b:d1:7a:
70:a0:05:81:43:c0:ae:fd:fd:6b:08:62:d5:11:4c:
45:58:2d:b0:c9:d4:ba:e9:c0:ee:4e:3b:68:42:7a:
e8:04:1b:a3:02:7b:8f:de:d3:39:89:03:62:3d:73:
34:53:7b:cf:d1:cb:d7:31:e7:5b:4c:fd:f0:48:ce:
c3:a9:19:16:b8:a4:76:bf:df:69:a7:ce:34:64:20:
ae:ca:d7:6c:8a:69:cd:4a:9d:91:4d:86:89:ac:5a:
8d:53:4c:3e:58:85:d0:7f:26:9e:b3:12:e7:e9:dd:
d0:00:fd:a5:43:28:46:2a:e0:22:58:3a:6b:e4:84:
32:af:72:72:b8:b8:4e:19:4d:65:0d:c2:7a:9a:d3:
b4:95:a5:7d:53:e0:10:5f:2a:a9:f9:47:05:6c:74:
d3:71:a5:18:29:6c:b2:a3:c6:53:a0:d6:20:29:7e:
e9:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:8E:C8:9E:63:1C:54:DE:57:5F:7A:84:0E:55:1B:07:A9:BB:B3:AA
X509v3 Authority Key Identifier:
keyid:CA:90:D4:D2:12:5F:03:36:B5:39:8E:E0:99:77:29:6F:2E:40:92:B4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91580D2/EBC1AC2C184F11EDADBC3C65C4F9AE02/ypDU0hJfAza1OY7gmXcpby5AkrQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypDU0hJfAza1OY7gmXcpby5AkrQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91580D2/EBC1AC2C184F11EDADBC3C65C4F9AE02/61E45538695B11ED830F450AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.102.126.0/24
Signature Algorithm: sha256WithRSAEncryption
25:79:da:36:18:42:e6:84:d8:bd:d7:2a:aa:93:72:20:53:dc:
86:c7:22:1f:c3:bc:e0:0f:d5:db:76:39:af:ae:59:10:e3:50:
14:76:dd:8b:58:c5:a1:7b:59:d0:b7:98:2d:e7:fa:55:f2:18:
71:a8:71:c4:d5:4b:f6:51:5e:1c:30:34:41:63:61:c2:54:16:
83:b4:0b:e1:88:89:e2:3b:01:59:10:10:35:2a:87:3d:a5:92:
81:be:73:c8:28:e3:e7:08:35:1d:bd:86:fa:ce:7a:4e:d0:47:
42:a9:cc:08:d5:14:31:88:63:6f:5b:9a:4b:3f:3e:ac:79:60:
7b:06:21:d7:8b:ca:a8:5d:f2:a0:1f:a1:77:9d:51:05:7c:6f:
d2:cb:49:dd:67:65:ba:2a:23:00:b2:6f:f3:8b:64:92:e2:55:
79:85:1f:d6:24:80:bb:e8:e4:f4:19:5f:ea:03:ea:59:f4:2b:
ab:b9:8d:12:96:38:4e:04:11:70:86:fe:c8:ff:03:de:74:a5:
48:8d:90:98:a6:ee:79:4d:35:04:f8:c8:d2:c3:d4:d6:a3:55:
69:5d:44:39:a9:1a:44:c1:8b:f3:24:9d:61:fd:e2:c9:6e:00:
74:e5:57:45:27:2a:c4:36:bd:87:8a:f4:05:13:25:a7:36:d8:
d3:4a:3f:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:07 2024 by rpki-client on console-fra.rpki-client.org