Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/5104B9EE6ABC11ED9B764B4DC4F9AE02.roa
File: 5104B9EE6ABC11ED9B764B4DC4F9AE02.roa (raw, json)
Hash identifier: YzDfPGIj0eAYUyjVVbavokD/N8dynsiIwQVXoTAbxmQ=
Subject key identifier: B4:09:52:A2:A6:00:32:58:A1:A0:CA:DA:89:1D:F7:86:42:90:34:FB
Certificate issuer: /CN=A915BF76/serialNumber=63EC4E6380FAAEA51107E9C40C2F1058E08F856E
Certificate serial: 32CC
Authority key identifier: 63:EC:4E:63:80:FA:AE:A5:11:07:E9:C4:0C:2F:10:58:E0:8F:85:6E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/5104B9EE6ABC11ED9B764B4DC4F9AE02.roa
Signing time: Tue 22 Nov 2022 23:20:57 +0000
ROA not before: Tue 22 Nov 2022 23:20:57 +0000
ROA not after: Sat 30 Dec 2023 00:00:00 +0000
asID: 210636
IP address blocks: 103.21.137.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13004 (0x32cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915BF76/serialNumber=63EC4E6380FAAEA51107E9C40C2F1058E08F856E
Validity
Not Before: Nov 22 23:20:57 2022 GMT
Not After : Dec 30 00:00:00 2023 GMT
Subject: CN=637d5958-37a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:79:8d:49:dc:57:d1:9d:c9:35:3a:27:7d:8e:
05:69:ab:44:79:7c:48:25:47:80:0e:8b:4e:d6:9a:
c2:d6:e6:9b:e2:f5:45:51:e0:ce:e8:58:a1:ba:f6:
fe:c0:79:53:d5:75:ea:c4:1a:05:fb:ee:e0:30:ce:
5d:2a:16:73:05:cd:0e:80:1c:0c:a0:34:b1:fd:81:
ba:c1:1a:76:22:a1:b1:ae:4c:4f:30:e4:82:15:81:
70:da:63:28:e1:ad:78:28:0f:0d:c0:5f:4e:f4:e9:
ce:80:6f:f4:df:5f:a2:ba:3b:be:00:e1:43:39:81:
e5:86:78:38:8e:33:4a:9b:fb:15:09:50:75:97:7f:
1c:37:7f:be:5e:4b:4d:b4:54:c2:89:04:5e:5d:c4:
e3:ad:32:bb:a9:ed:bc:27:47:21:cb:ec:29:6d:ab:
23:5c:01:50:ef:5c:6e:a3:a1:07:e6:d7:24:8d:a6:
38:60:19:4a:3f:39:22:ea:93:aa:2a:1c:66:74:4c:
ee:65:3f:a4:be:8b:5f:5d:e5:1f:a5:57:d2:59:e4:
82:a4:ea:1a:19:12:c2:06:29:f4:33:86:64:ed:d5:
d6:41:7a:61:18:ff:2e:f7:8a:92:81:f9:90:0d:12:
64:01:ee:f7:46:84:c6:f5:c3:8f:d0:4a:e4:d7:a2:
21:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:09:52:A2:A6:00:32:58:A1:A0:CA:DA:89:1D:F7:86:42:90:34:FB
X509v3 Authority Key Identifier:
keyid:63:EC:4E:63:80:FA:AE:A5:11:07:E9:C4:0C:2F:10:58:E0:8F:85:6E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/5104B9EE6ABC11ED9B764B4DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.21.137.0/24
Signature Algorithm: sha256WithRSAEncryption
92:7c:17:f7:ef:65:8c:38:6e:d8:f4:b0:6d:2c:57:8f:37:ce:
22:b9:9c:d0:db:f2:79:99:6d:71:18:6d:f4:61:17:e8:26:e5:
b6:a3:1b:e8:31:b9:ae:8f:9d:07:5d:7e:57:a0:c6:8a:73:d3:
65:9d:b4:62:69:2f:d8:e2:70:ba:c6:8e:4a:49:d0:a6:da:21:
3c:1f:51:05:3f:ef:b7:97:60:10:76:a4:31:74:9f:bb:6c:19:
35:28:d3:0d:be:a5:59:c7:e8:04:6e:23:e7:d3:d1:df:61:05:
60:83:c1:76:d3:96:30:d4:9a:46:73:dc:59:55:be:30:d8:82:
3e:5c:e0:bc:14:37:c2:26:cf:de:d8:3b:68:99:be:fb:d5:b9:
1f:b4:50:2d:a4:f9:22:5d:16:bc:3e:fe:54:1f:3c:fc:34:29:
06:6a:f5:75:35:3f:b8:66:fd:d2:87:f5:40:a4:b3:92:55:ac:
25:94:d9:ce:9d:42:83:b0:a6:a6:2e:62:5f:2b:90:3c:3d:6a:
f2:f4:78:9c:7b:35:84:98:ac:04:34:67:8a:14:d5:3e:57:f1:
54:5c:88:d1:4c:1b:b0:c7:cc:5c:0f:cf:5c:8d:fa:33:e4:e1:
e5:81:93:30:01:f4:78:3a:48:b9:1c:8d:cb:f2:e7:75:ad:d5:
e8:1b:43:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:08 2024 by rpki-client on console-fra.rpki-client.org