Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A916C032/F00CD4C6011D11ED85B34173C4F9AE02/D3395628012011ED86C8D975C4F9AE02.roa
File: D3395628012011ED86C8D975C4F9AE02.roa (raw, json)
Hash identifier: e/MGpKAymf0MgL8FOi3voNJWdEGPD1NhjcCpsC2MNAc=
Subject key identifier: 50:74:8A:50:84:0C:75:CC:A8:EA:55:FD:63:7B:E7:D8:12:80:9F:87
Certificate issuer: /CN=A916C032/serialNumber=D75D44682406B0B3E78BC5284A54279B1E3FFF94
Certificate serial: 06
Authority key identifier: D7:5D:44:68:24:06:B0:B3:E7:8B:C5:28:4A:54:27:9B:1E:3F:FF:94
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/111EaCQGsLPni8UoSlQnmx4__5Q.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916C032/F00CD4C6011D11ED85B34173C4F9AE02/D3395628012011ED86C8D975C4F9AE02.roa
Signing time: Mon 11 Jul 2022 14:33:46 +0000
ROA not before: Mon 11 Jul 2022 14:33:46 +0000
ROA not after: Sun 30 Jul 2023 00:00:00 +0000
asID: 56290
IP address blocks: 103.5.70.0/24 maxlen: 24
103.39.4.0/23 maxlen: 23
103.247.210.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6 (0x6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916C032/serialNumber=D75D44682406B0B3E78BC5284A54279B1E3FFF94
Validity
Not Before: Jul 11 14:33:46 2022 GMT
Not After : Jul 30 00:00:00 2023 GMT
Subject: CN=62cc34ca-022b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:8f:04:39:6d:3e:69:17:a4:3b:91:bf:1a:03:
c0:db:59:eb:ca:97:bb:24:0d:5c:90:8a:1d:e9:8a:
26:57:28:d4:92:ee:9d:87:2d:0f:53:1d:df:5a:7a:
37:b6:94:f5:1c:26:c7:c0:00:eb:84:80:f3:6c:e3:
e3:fc:d0:81:4d:0a:40:e6:ed:8b:ca:9a:da:b5:e8:
cd:36:c7:b8:d9:4b:d3:e4:52:e3:2e:86:cf:84:eb:
6f:c7:e7:ae:0a:90:8d:1e:5a:63:96:f7:2f:f0:11:
1a:62:b9:e0:8b:21:a2:dd:6d:e2:a7:7d:13:0b:c8:
80:5e:58:71:05:ee:94:5e:9c:f0:61:19:f3:ea:13:
8e:52:89:32:0e:ea:28:04:aa:b1:04:3a:7f:87:58:
9a:d0:d3:f4:bd:98:90:c6:b4:df:30:57:c2:7d:0f:
03:6b:32:5d:56:58:58:06:18:e8:7f:81:45:e8:e5:
a0:cc:e5:74:a7:29:d0:d2:6a:32:cd:2a:ce:68:24:
71:a6:23:2a:6a:0b:2a:74:52:89:cd:50:a7:87:7d:
c9:82:3f:f6:6e:3e:d9:3e:0b:09:69:5b:45:ce:bd:
3d:65:f0:26:13:a8:3c:d1:cd:b5:5b:01:12:8f:15:
37:a7:c2:fa:73:95:9d:32:bf:57:d9:02:06:22:e5:
62:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:74:8A:50:84:0C:75:CC:A8:EA:55:FD:63:7B:E7:D8:12:80:9F:87
X509v3 Authority Key Identifier:
keyid:D7:5D:44:68:24:06:B0:B3:E7:8B:C5:28:4A:54:27:9B:1E:3F:FF:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916C032/F00CD4C6011D11ED85B34173C4F9AE02/111EaCQGsLPni8UoSlQnmx4__5Q.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/111EaCQGsLPni8UoSlQnmx4__5Q.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C032/F00CD4C6011D11ED85B34173C4F9AE02/D3395628012011ED86C8D975C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.5.70.0/24
103.39.4.0/23
103.247.210.0/24
Signature Algorithm: sha256WithRSAEncryption
94:0d:44:f8:9c:98:6a:2d:67:be:98:02:ea:66:dc:8a:7e:63:
73:8b:3a:96:38:cd:1b:e4:eb:3d:a3:db:40:87:d5:ab:c3:8d:
a9:e9:b6:da:da:8a:c8:c5:7f:7d:e9:1b:9c:d2:d5:da:6d:9e:
19:cb:21:f7:08:94:74:3f:8d:42:6a:e3:89:ba:14:14:24:33:
d1:d6:6e:dd:53:9a:68:05:b2:bc:ca:64:7f:91:2b:d5:c7:2e:
18:b6:57:33:c1:23:7d:12:79:d3:ff:35:95:e6:fd:dc:00:4c:
68:c2:b3:64:42:28:8d:30:90:8a:8e:ea:d9:95:cc:1e:73:55:
e6:4e:d7:47:5c:7c:ab:7e:59:e9:de:b3:95:fa:88:58:7b:ad:
af:97:8c:21:91:99:b4:a2:c3:5d:98:52:76:c4:f0:bb:25:32:
dd:74:f9:76:46:1e:56:1a:63:c1:f9:eb:c2:e8:79:4a:6b:6a:
73:55:5e:b2:24:b9:c1:82:6c:48:a7:a3:d3:67:13:80:81:42:
c3:91:03:55:55:33:ae:90:8c:da:37:4a:49:12:7e:65:53:00:
9e:62:c1:ca:d8:1b:c3:f4:41:b2:24:26:25:23:99:35:06:f9:
7e:58:dc:b2:95:9a:b1:53:40:0c:9d:0b:d6:f2:bd:d3:43:20:
f1:fc:a1:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:20 2024 by rpki-client on console-ams.rpki-client.org