Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/27CA2A56E2F311ECBE61B628C4F9AE02.roa
File: 27CA2A56E2F311ECBE61B628C4F9AE02.roa (raw, json)
Hash identifier: tAkULGA9NIMhdEhv9xUtR80Y0sKe/jt7W+5N65hL8Ag=
Subject key identifier: 35:3C:1A:67:47:1B:5E:FC:CC:34:69:6B:DC:D1:28:CF:C0:52:51:03
Certificate issuer: /CN=A915BF76/serialNumber=63EC4E6380FAAEA51107E9C40C2F1058E08F856E
Certificate serial: 31A9
Authority key identifier: 63:EC:4E:63:80:FA:AE:A5:11:07:E9:C4:0C:2F:10:58:E0:8F:85:6E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/27CA2A56E2F311ECBE61B628C4F9AE02.roa
Signing time: Fri 03 Jun 2022 04:10:51 +0000
ROA not before: Fri 03 Jun 2022 04:10:51 +0000
ROA not after: Fri 30 Dec 2022 00:00:00 +0000
asID: 136557
IP address blocks: 103.21.138.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12713 (0x31a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915BF76/serialNumber=63EC4E6380FAAEA51107E9C40C2F1058E08F856E
Validity
Not Before: Jun 3 04:10:51 2022 GMT
Not After : Dec 30 00:00:00 2022 GMT
Subject: CN=629989cb-dc7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:b5:ec:e9:e3:41:6e:58:4e:ff:3f:4c:15:d7:
3a:c8:a1:e5:96:6f:0b:34:6b:d7:f1:64:58:f8:c5:
25:1a:f9:12:c5:0d:c5:72:59:66:82:e3:3f:e9:75:
22:4e:02:28:85:33:a3:f0:94:82:b5:8c:cc:8b:5a:
68:03:5e:96:1f:ed:fc:60:03:49:1f:77:13:a2:c6:
38:75:c0:6c:88:1e:87:d5:1f:28:37:5d:fa:a6:a3:
71:b0:d3:4d:89:a1:53:86:1e:65:99:61:0b:78:12:
4e:ea:8c:da:5a:a1:6b:cd:12:c8:0b:6d:e3:90:c4:
ec:9b:23:ba:38:f5:56:de:41:45:de:74:b9:21:6f:
ec:36:7e:ca:43:29:f9:4e:4d:bb:af:bb:d7:7e:0c:
af:ac:ec:63:8d:77:ab:6f:e2:13:d6:75:7e:a9:64:
f7:bf:03:d2:1d:6f:e7:f3:60:39:16:7c:1e:92:fe:
b5:c2:b3:0d:cb:15:74:29:45:fb:67:2f:99:dd:eb:
a2:31:c8:4d:7b:01:eb:0a:2c:59:e2:77:53:d9:fb:
d6:47:8c:1a:78:a8:c1:8a:8d:e3:48:4d:ef:e5:40:
34:c7:22:17:a0:ac:f1:5d:08:1a:95:33:b8:cd:61:
ad:d6:97:ab:2c:60:d0:14:ff:77:1a:d5:20:ad:b5:
d2:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:3C:1A:67:47:1B:5E:FC:CC:34:69:6B:DC:D1:28:CF:C0:52:51:03
X509v3 Authority Key Identifier:
keyid:63:EC:4E:63:80:FA:AE:A5:11:07:E9:C4:0C:2F:10:58:E0:8F:85:6E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/27CA2A56E2F311ECBE61B628C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.21.138.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:8f:5c:d5:1e:a9:3a:81:5e:23:a1:a3:dc:e2:13:77:72:5a:
b3:7f:58:9a:ae:27:8b:f2:96:81:c5:72:63:00:54:33:75:57:
03:16:32:81:19:53:d3:e4:10:8f:b9:44:12:05:a3:02:d2:dd:
64:88:11:6f:32:71:c6:05:17:db:f2:34:19:10:73:f8:91:57:
f8:7b:5c:c6:ca:9f:0d:fb:e9:b7:b8:46:64:9e:b8:89:0a:f8:
2d:ec:69:c4:e7:88:ed:c4:54:25:e7:f3:81:31:3c:ff:a7:1f:
29:ad:fc:22:9e:4a:09:33:1d:40:02:e9:18:b3:e3:62:da:56:
79:e6:a8:f2:cc:cc:cf:d5:d8:2d:61:d6:99:3e:93:e7:54:47:
b6:1c:0b:b1:77:fc:6f:bf:05:32:93:99:0f:b1:f7:5f:bb:10:
b5:98:bf:81:b6:b3:1d:27:81:c0:2e:dc:1c:dc:57:9c:8b:1d:
2e:7c:af:ca:5f:c1:03:5a:fd:47:16:3d:55:24:72:7b:ae:dc:
96:09:a8:20:b0:2f:7e:0e:d7:12:66:e9:63:e0:47:03:b2:52:
60:9f:11:64:38:15:0b:29:21:b4:79:28:5b:22:0e:d0:df:ff:
35:2e:a1:85:76:f6:3f:c5:6a:6b:41:9c:11:c1:30:cb:80:89:
40:c0:ee:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:43 2023 by rpki-client on console-fra.rpki-client.org