Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CAE/057A25EE953411EC90E97755C4F9AE02/3C4D20B0953611ECAA862156C4F9AE02.roa
File: 3C4D20B0953611ECAA862156C4F9AE02.roa (raw, json)
Hash identifier: pXIthZSw8r0iy0yKDUYCToHCi1k7WrNioYOPfyFZe8Y=
Subject key identifier: 5C:44:7E:DE:0F:72:C7:5D:93:B0:1A:53:91:60:43:90:3F:32:99:79
Certificate issuer: /CN=A9167CAE/serialNumber=4E4453B2B66A8695A03EEA3A9BE1F85A921A2D09
Certificate serial: 03
Authority key identifier: 4E:44:53:B2:B6:6A:86:95:A0:3E:EA:3A:9B:E1:F8:5A:92:1A:2D:09
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TkRTsrZqhpWgPuo6m-H4WpIaLQk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9167CAE/057A25EE953411EC90E97755C4F9AE02/3C4D20B0953611ECAA862156C4F9AE02.roa
Signing time: Thu 24 Feb 2022 05:54:31 +0000
ROA not before: Thu 24 Feb 2022 05:54:31 +0000
ROA not after: Sat 30 Jul 2022 00:00:00 +0000
asID: 136597
IP address blocks: 103.93.148.0/24 maxlen: 24
103.93.149.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9167CAE/serialNumber=4E4453B2B66A8695A03EEA3A9BE1F85A921A2D09
Validity
Not Before: Feb 24 05:54:31 2022 GMT
Not After : Jul 30 00:00:00 2022 GMT
Subject: CN=62171d97-f1c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:02:95:ec:be:22:66:7a:b2:94:06:d9:46:8b:
9b:08:33:0f:15:c7:a1:42:97:b6:fb:00:71:eb:9f:
eb:aa:18:3a:5c:88:06:af:97:b4:4a:97:e3:f3:5c:
f2:c6:99:b6:6f:42:8a:83:a2:14:9e:fe:a7:bc:a9:
75:be:b6:41:79:e9:2c:db:5f:9b:cd:55:f0:03:19:
81:f7:95:a9:78:d7:ea:76:bf:d5:bf:ea:85:3c:35:
b1:b9:df:c4:99:a4:7e:5f:87:57:1b:55:87:6e:44:
63:2a:16:f7:74:8c:11:5d:0b:36:e1:05:61:5e:64:
74:fb:3a:f6:36:75:89:8a:bc:7b:10:74:7f:8e:d2:
47:a9:e0:49:76:7f:30:e2:0d:93:35:4d:1a:28:0e:
82:02:84:ea:28:d9:3d:4d:7d:f8:d0:69:76:07:58:
c7:36:ce:5b:ca:bc:80:5c:41:67:bd:65:ef:fa:e1:
f6:43:24:f2:2b:46:fb:d4:a3:9f:53:28:aa:33:47:
ac:88:b9:15:a5:ee:b2:ee:c9:a1:5f:9c:6a:bf:e6:
bb:2f:35:9a:7e:5f:db:67:ca:6b:85:75:20:02:f6:
7f:72:1a:44:eb:5c:85:bd:45:15:2b:0a:45:cd:6e:
1c:62:20:7a:ad:b4:b2:52:2f:db:44:ec:d1:24:35:
8b:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:44:7E:DE:0F:72:C7:5D:93:B0:1A:53:91:60:43:90:3F:32:99:79
X509v3 Authority Key Identifier:
keyid:4E:44:53:B2:B6:6A:86:95:A0:3E:EA:3A:9B:E1:F8:5A:92:1A:2D:09
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9167CAE/057A25EE953411EC90E97755C4F9AE02/TkRTsrZqhpWgPuo6m-H4WpIaLQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TkRTsrZqhpWgPuo6m-H4WpIaLQk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CAE/057A25EE953411EC90E97755C4F9AE02/3C4D20B0953611ECAA862156C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.93.148.0/23
Signature Algorithm: sha256WithRSAEncryption
46:c7:d0:66:e8:d3:32:01:1a:f1:4e:98:f0:98:8d:91:52:bd:
59:fc:38:a9:b2:9e:f3:cc:5f:be:ff:c3:82:30:ef:b7:6a:ad:
ce:89:5e:62:60:95:81:0a:23:d1:29:4b:2c:7e:b2:66:f4:21:
c7:df:47:e3:1c:98:5f:2d:8d:46:b5:17:68:2d:04:43:e8:26:
d1:14:11:03:23:58:17:41:3d:cf:5f:cd:74:b5:2e:3d:e7:53:
ce:6a:f8:1b:d6:f6:cc:4f:b9:51:48:09:d1:0e:5b:df:79:cc:
b9:9b:b4:ef:f4:80:6d:06:34:3e:80:c7:38:36:b4:0a:aa:ec:
8f:59:cc:8a:51:52:ab:f0:a3:2c:14:a0:36:74:5d:ee:5c:51:
65:1e:6c:eb:d9:38:5f:79:fa:c9:96:88:02:0f:75:97:6f:85:
cf:dc:9a:3b:08:7d:e7:49:49:5d:50:44:ed:a4:07:c3:ed:12:
e4:90:81:88:18:e7:ef:58:24:70:58:3a:14:69:7d:e0:e4:57:
66:e7:d8:74:1b:22:56:34:28:77:0b:8e:1e:04:89:d9:9c:4d:
f7:24:bc:78:63:f0:6e:f6:73:03:75:ae:70:ff:90:b2:43:58:
2c:70:56:33:41:11:b8:bb:39:05:23:53:2f:3a:be:f0:a3:99:
02:85:de:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:19 2024 by rpki-client on console-ams.rpki-client.org