Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9170829/7667BED063A011ECAD82991CC4F9AE02/AA34B2D4EAE311EC91966955C4F9AE02.roa
File: AA34B2D4EAE311EC91966955C4F9AE02.roa (raw, json)
Hash identifier: 5VimadcPQX+jM+OEuGa/JeWNQ/QUc0RLGGAfhVeu7LE=
Subject key identifier: B4:5A:9E:B7:B6:EE:46:5A:B7:D8:99:9D:B6:72:41:EE:ED:51:97:16
Certificate issuer: /CN=A9170829/serialNumber=B8F846B4353B6429AC4043F32BB7894CF83855FD
Certificate serial: 018A
Authority key identifier: B8:F8:46:B4:35:3B:64:29:AC:40:43:F3:2B:B7:89:4C:F8:38:55:FD
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uPhGtDU7ZCmsQEPzK7eJTPg4Vf0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9170829/7667BED063A011ECAD82991CC4F9AE02/AA34B2D4EAE311EC91966955C4F9AE02.roa
Signing time: Mon 27 Jun 2022 16:20:58 +0000
ROA not before: Mon 27 Jun 2022 16:20:58 +0000
ROA not after: Thu 31 Aug 2023 00:00:00 +0000
asID: 205960
IP address blocks: 103.151.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 394 (0x18a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9170829
Validity
Not Before: Jun 27 16:20:58 2022 GMT
Not After : Aug 31 00:00:00 2023 GMT
Subject: CN=62b9d8e9-f328
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:84:c4:40:44:2d:f2:06:ee:b5:7f:c1:a7:58:
41:a1:99:57:bf:af:4f:0f:ce:32:68:42:70:ac:ec:
db:bd:68:21:7a:6a:24:00:7f:a5:bf:34:a3:76:90:
97:53:5a:d9:22:e2:7f:0b:2f:3d:85:9b:ee:10:d2:
89:a3:0e:79:ac:62:ac:86:86:af:dd:c1:ae:b2:b6:
70:01:69:d9:97:c1:fb:30:79:38:ea:f6:62:68:17:
63:dd:9d:c0:54:60:19:54:6c:94:3c:55:5e:e3:81:
00:9d:0d:e0:b8:af:d6:cc:7e:ed:8f:6e:8c:6a:90:
e7:f7:51:14:0e:ac:83:bf:5d:70:aa:86:b5:0d:0b:
38:31:e0:92:e4:5f:eb:6f:35:9d:00:3d:1e:c5:99:
c5:de:60:aa:46:a4:3c:af:2e:a3:df:47:35:8a:ef:
07:00:a1:d3:b1:d8:b8:9f:6b:ee:67:d9:1e:aa:ad:
5e:29:37:cf:63:77:2a:09:d3:75:14:cd:a0:bc:84:
d7:14:77:4f:b2:11:0e:6b:9a:c1:69:e1:b0:1f:31:
e9:89:e8:ab:ae:82:81:16:d3:01:7e:5b:41:2e:b4:
83:c3:05:c6:de:be:62:d3:aa:90:a9:62:ec:80:a1:
25:5d:5c:82:d8:fc:2e:04:b2:0c:f2:62:2b:b0:ba:
84:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:5A:9E:B7:B6:EE:46:5A:B7:D8:99:9D:B6:72:41:EE:ED:51:97:16
X509v3 Authority Key Identifier:
keyid:B8:F8:46:B4:35:3B:64:29:AC:40:43:F3:2B:B7:89:4C:F8:38:55:FD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9170829/7667BED063A011ECAD82991CC4F9AE02/uPhGtDU7ZCmsQEPzK7eJTPg4Vf0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uPhGtDU7ZCmsQEPzK7eJTPg4Vf0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170829/7667BED063A011ECAD82991CC4F9AE02/AA34B2D4EAE311EC91966955C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.151.173.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:cd:0e:52:48:8d:1f:49:32:13:1d:ef:79:72:8e:2a:de:e3:
78:81:df:d5:82:08:1e:6a:bf:df:e8:11:e2:c4:70:b0:43:8a:
ac:2b:79:08:c6:c8:78:50:92:c1:51:4e:1c:2c:07:50:d7:f9:
21:c2:3f:b1:90:f1:48:58:9f:b3:f3:40:82:9f:d0:15:8a:78:
72:62:7c:f3:08:75:cd:f7:da:ca:f7:93:27:10:30:2f:95:99:
1d:71:85:d1:76:59:37:28:9b:a1:77:c7:34:d2:a1:df:c4:3d:
5f:6c:c0:69:d1:fd:d9:f2:d0:e9:f5:ea:27:ab:09:ce:2a:fe:
fd:17:0f:5b:a4:7e:c0:e9:1f:87:a5:c2:d3:01:ce:dc:3c:73:
10:f0:b8:53:e6:44:c3:e3:11:bb:28:81:67:77:b9:e9:6c:6d:
99:f4:85:08:24:99:00:99:79:04:c7:a5:6c:af:92:62:01:b1:
fa:6b:79:a7:c2:33:ab:2d:34:3d:b2:75:7b:ce:27:51:1f:ad:
13:53:77:ef:dd:20:79:b9:ae:2d:d3:f1:0e:75:bc:ad:95:54:
30:c2:37:51:a0:8c:0e:df:bb:09:ae:90:5f:76:9f:64:3e:50:
51:05:bb:19:2a:e4:6b:64:40:cd:96:9e:e1:b9:30:7f:fa:11:
63:b7:76:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:17:33 2025 by rpki-client