Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91580D2/EBC1AC2C184F11EDADBC3C65C4F9AE02/A95915EA973A11EDB1E3C460C4F9AE02.roa
File: A95915EA973A11EDB1E3C460C4F9AE02.roa (raw, json)
Hash identifier: JrEmfcCqL/brEfxI5jbl8wawKOKQpWoWo8ablisLmec=
Subject key identifier: 2F:36:5B:2D:C5:43:AA:0F:ED:B0:E2:2C:78:FD:20:18:50:3B:EA:DB
Certificate issuer: /CN=A91580D2/serialNumber=CA90D4D2125F0336B5398EE09977296F2E4092B4
Certificate serial: B9
Authority key identifier: CA:90:D4:D2:12:5F:03:36:B5:39:8E:E0:99:77:29:6F:2E:40:92:B4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypDU0hJfAza1OY7gmXcpby5AkrQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91580D2/EBC1AC2C184F11EDADBC3C65C4F9AE02/A95915EA973A11EDB1E3C460C4F9AE02.roa
Signing time: Wed 18 Jan 2023 14:16:13 +0000
ROA not before: Wed 18 Jan 2023 14:16:13 +0000
ROA not after: Wed 31 Jan 2024 00:00:00 +0000
asID: 398343
IP address blocks: 103.102.124.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 185 (0xb9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91580D2/serialNumber=CA90D4D2125F0336B5398EE09977296F2E4092B4
Validity
Not Before: Jan 18 14:16:13 2023 GMT
Not After : Jan 31 00:00:00 2024 GMT
Subject: CN=63c7ff2c-34a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:9d:74:4f:dd:74:a7:a4:78:6c:40:97:5c:f6:
fc:45:4b:0d:00:9e:5a:ce:6c:76:c0:e5:66:a7:e6:
b3:cb:56:8a:a3:6a:bd:91:70:3e:58:82:c6:02:f3:
0f:04:02:89:56:8d:4c:15:e2:b0:49:66:2a:31:3d:
d2:5d:76:5f:4a:33:34:7c:f1:d9:bb:29:a1:f1:24:
2b:3a:b9:b2:8a:98:c4:6a:35:02:e8:98:46:73:db:
64:77:65:56:ed:45:1e:28:ce:fd:fc:5f:2a:5b:8a:
90:c2:1e:b5:5a:b8:95:68:c2:4a:f7:14:07:66:96:
42:ca:56:78:10:e9:8d:02:df:19:d2:27:4d:f4:c3:
6e:00:18:81:4a:e5:f7:95:1a:c9:a4:97:ea:68:7f:
09:56:50:54:de:b5:da:e6:d3:03:e6:39:50:03:40:
fa:c7:10:18:19:cc:92:1d:18:53:47:11:63:ed:cc:
03:5f:9a:eb:01:7f:c8:13:c8:b1:44:85:fc:09:32:
f9:98:c8:ae:e9:0b:86:48:88:48:54:aa:4e:0e:29:
c6:83:ba:03:03:6b:07:15:1c:07:6b:05:ef:0e:f6:
2d:fe:42:0a:c5:c6:e2:8e:7c:e4:c7:ba:88:80:fe:
0f:65:62:67:ec:d5:58:1d:de:f2:64:4e:38:b8:6a:
73:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:36:5B:2D:C5:43:AA:0F:ED:B0:E2:2C:78:FD:20:18:50:3B:EA:DB
X509v3 Authority Key Identifier:
keyid:CA:90:D4:D2:12:5F:03:36:B5:39:8E:E0:99:77:29:6F:2E:40:92:B4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91580D2/EBC1AC2C184F11EDADBC3C65C4F9AE02/ypDU0hJfAza1OY7gmXcpby5AkrQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypDU0hJfAza1OY7gmXcpby5AkrQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91580D2/EBC1AC2C184F11EDADBC3C65C4F9AE02/A95915EA973A11EDB1E3C460C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.102.124.0/24
Signature Algorithm: sha256WithRSAEncryption
64:11:82:0f:77:ae:74:1e:88:14:29:43:8f:84:2e:57:15:0d:
7a:4d:1c:10:45:e8:c7:42:82:64:e7:1f:0f:8f:2e:81:89:77:
04:cd:16:df:89:70:ef:23:4b:71:e8:5d:2d:99:ce:21:4a:2c:
b8:cd:f0:8f:7e:4e:81:a9:47:f9:01:d8:d2:80:cd:03:25:b9:
ec:91:03:18:3a:79:31:dd:92:9e:c9:84:ac:82:0a:61:59:df:
f1:ac:fc:3b:4b:48:d4:64:ff:6e:52:f8:4b:d1:a5:fe:e4:55:
d3:01:60:14:83:60:08:0d:51:97:8c:b5:75:36:5d:eb:89:33:
6f:bc:b4:93:fb:a0:1e:2c:2a:7a:eb:49:55:76:80:9c:4f:49:
3f:c6:ca:f0:06:85:1b:3a:9a:07:08:2e:71:d0:f0:d5:32:46:
7b:fa:87:12:d8:26:7e:0a:bb:e2:b3:b6:1a:f9:8a:00:38:d9:
46:eb:d7:43:ec:c0:4c:75:15:de:e6:b0:cd:1c:47:48:1e:18:
c1:b6:14:79:83:fa:b4:5c:d5:96:a6:34:a1:5f:5f:14:1e:ab:
90:b3:31:0e:91:35:12:f0:f8:85:97:43:6c:80:33:18:3f:c3:
03:09:e2:20:c0:29:3b:65:d8:19:d6:5a:03:98:2d:35:ac:93:
4e:9c:b5:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:07 2024 by rpki-client on console-fra.rpki-client.org