Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915AF7A/E0533336BAC911EBB807D51CC4F9AE02/D43988E03C9411EDBDC49E31C4F9AE02.roa
File: D43988E03C9411EDBDC49E31C4F9AE02.roa (raw, json)
Hash identifier: JX2MsVlf6YXF7RDtxnWDfst/0vtGSl29PCie/ItuEec=
Subject key identifier: FB:2D:30:8C:9C:68:C2:22:BE:DC:92:B5:FB:6F:52:84:C7:DE:73:53
Certificate issuer: /CN=A915AF7A/serialNumber=6880D323AA3F2D5146050640F321A6129000DF03
Certificate serial: 0496
Authority key identifier: 68:80:D3:23:AA:3F:2D:51:46:05:06:40:F3:21:A6:12:90:00:DF:03
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIDTI6o_LVFGBQZA8yGmEpAA3wM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915AF7A/E0533336BAC911EBB807D51CC4F9AE02/D43988E03C9411EDBDC49E31C4F9AE02.roa
Signing time: Sat 03 Jun 2023 02:40:29 +0000
ROA not before: Sat 03 Jun 2023 02:40:29 +0000
ROA not after: Sun 01 Oct 2023 00:00:00 +0000
asID: 139300
IP address blocks: 103.167.41.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1174 (0x496)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915AF7A/serialNumber=6880D323AA3F2D5146050640F321A6129000DF03
Validity
Not Before: Jun 3 02:40:29 2023 GMT
Not After : Oct 1 00:00:00 2023 GMT
Subject: CN=647aa81d-7895
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:42:3a:0e:36:5d:ec:a9:b3:b3:41:1a:ce:00:
4d:3f:8c:73:60:b0:87:94:8b:9f:fb:22:49:af:ab:
ef:62:27:83:a2:6b:d9:f6:f3:f5:97:50:e1:55:9d:
28:43:03:db:59:4c:ac:52:d7:b4:6d:7e:df:96:90:
32:02:0d:40:14:fb:0a:5e:45:8f:15:fb:4b:19:a1:
90:91:cb:bb:93:dd:4d:ba:a5:63:5b:4e:9e:87:ce:
44:0f:b4:d3:4c:1a:e6:04:05:00:ee:93:e9:e2:c7:
4b:93:c3:af:3b:2d:9b:38:51:58:34:a2:91:86:11:
3a:02:32:99:85:72:38:e7:8b:19:7d:af:a1:2e:06:
39:f2:87:62:e1:ef:7d:b8:a0:b4:65:23:37:59:aa:
11:d3:4f:01:18:f4:3c:1a:55:3b:6b:ba:b4:4f:b7:
03:3d:25:33:36:e9:61:0f:c9:f7:38:bc:2f:b4:51:
ca:72:ff:c7:e8:e4:79:74:91:7e:b9:fb:6d:07:c8:
50:99:5b:ba:7c:d9:44:9b:81:b3:2d:ad:08:12:c3:
fc:d2:68:7c:9e:44:dd:72:21:4b:a9:9a:59:ec:53:
31:27:44:87:4b:6c:e5:f2:4b:c2:64:c6:20:8f:06:
58:c7:f7:28:e9:2b:c5:eb:c4:31:f8:0b:65:8f:24:
21:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:2D:30:8C:9C:68:C2:22:BE:DC:92:B5:FB:6F:52:84:C7:DE:73:53
X509v3 Authority Key Identifier:
keyid:68:80:D3:23:AA:3F:2D:51:46:05:06:40:F3:21:A6:12:90:00:DF:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915AF7A/E0533336BAC911EBB807D51CC4F9AE02/aIDTI6o_LVFGBQZA8yGmEpAA3wM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIDTI6o_LVFGBQZA8yGmEpAA3wM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915AF7A/E0533336BAC911EBB807D51CC4F9AE02/D43988E03C9411EDBDC49E31C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.167.41.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:82:a5:de:45:45:4e:6a:7d:d5:ec:4c:27:e0:05:cc:c0:ac:
a8:cb:fb:a0:0a:81:d1:6b:d7:1a:b1:5e:d0:c5:d5:ae:f6:fa:
91:37:16:69:95:05:6c:44:b9:6e:b5:31:a1:f5:f8:b2:ac:14:
4b:27:65:04:e5:92:77:13:66:dd:aa:cf:18:ef:c4:61:c3:cc:
61:86:56:8b:bb:73:8f:2c:0a:03:51:df:70:23:d4:5b:f5:66:
61:6f:15:c6:49:f4:85:d7:95:03:ef:5a:fc:8b:17:2a:06:cc:
78:30:e8:35:e1:9d:29:b7:12:1e:7d:47:5a:3f:01:f3:cb:f3:
05:51:84:2b:bc:20:99:8b:36:32:d8:d6:a7:dd:50:15:9d:28:
4a:25:29:4c:9f:63:46:9f:d1:50:7e:0d:8a:e3:57:bb:2b:55:
bc:3c:57:d8:f7:05:eb:f3:d5:02:45:7b:81:ca:88:d8:d0:70:
91:09:b6:1f:9d:65:25:94:82:cc:57:25:5f:d2:ca:5c:a4:8f:
d1:ed:5a:69:ba:c1:3b:f4:da:95:26:71:3c:82:4d:e7:b2:c3:
8c:f2:76:6c:b5:23:62:71:0a:c0:ac:08:f0:14:a5:27:fb:2b:
ab:a1:90:6c:a5:57:cd:bc:69:ec:3d:d3:1c:af:55:9f:16:ba:
5d:9b:91:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:08 2024 by rpki-client on console-fra.rpki-client.org