Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/5FB104E223AA11ED95ECB53FC4F9AE02.roa
File: 5FB104E223AA11ED95ECB53FC4F9AE02.roa (raw, json)
Hash identifier: 7/wWqZNqR7fEOcDqPq8euw0GKIFuwOE4mgK5N4iYU/0=
Subject key identifier: 2D:05:C4:DC:D7:4F:E7:98:25:01:46:A4:D0:16:CA:5A:54:A4:66:A1
Certificate issuer: /CN=A9170E11/serialNumber=3D6447D7297483294ECECB853A5E500935D1B8D7
Certificate serial: 021D
Authority key identifier: 3D:64:47:D7:29:74:83:29:4E:CE:CB:85:3A:5E:50:09:35:D1:B8:D7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PWRH1yl0gylOzsuFOl5QCTXRuNc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/5FB104E223AA11ED95ECB53FC4F9AE02.roa
Signing time: Wed 24 Aug 2022 12:43:38 +0000
ROA not before: Wed 24 Aug 2022 12:43:38 +0000
ROA not after: Fri 31 Mar 2023 00:00:00 +0000
asID: 38136
IP address blocks: 103.177.248.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 541 (0x21d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9170E11/serialNumber=3D6447D7297483294ECECB853A5E500935D1B8D7
Validity
Not Before: Aug 24 12:43:38 2022 GMT
Not After : Mar 31 00:00:00 2023 GMT
Subject: CN=63061cf9-92c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:b4:0c:25:af:68:b5:9e:72:56:69:36:71:a4:
89:76:1d:e8:bc:17:4a:8e:34:9a:ca:ed:da:75:33:
a5:36:c2:de:13:ce:06:32:d5:57:bc:b6:11:29:c2:
68:d9:ab:e8:ed:ad:ba:25:95:d1:ad:86:01:ff:7e:
28:1c:6b:6b:ab:b2:a7:8f:63:6d:42:0f:80:92:f5:
a0:a6:a7:b1:41:94:dd:f6:97:89:3c:3d:2d:75:7f:
81:5e:15:4d:9c:52:76:75:c9:5f:3e:ca:85:2d:5e:
69:0a:9f:78:c2:ad:a8:66:c8:5a:10:19:f6:52:34:
5f:0b:c6:2b:dc:f6:39:51:b0:93:51:ae:b2:3e:3f:
0c:96:8b:70:31:75:20:26:d8:ee:82:b3:41:84:96:
cb:9d:88:9a:c5:b4:43:8b:54:8a:23:56:8a:84:0a:
8c:b8:97:d8:12:e2:cd:4a:de:dd:75:4f:d1:32:fd:
76:b9:5c:dd:47:de:82:4c:19:db:e6:8a:0b:59:19:
b0:b7:25:99:8f:2f:d6:b2:5d:52:56:07:24:6d:6d:
f4:f6:c6:13:41:0c:41:c0:3b:31:25:f7:d2:8e:3e:
54:1f:66:38:8a:e4:43:ea:e6:59:ed:ac:9a:1d:35:
6f:4f:98:a6:3b:c5:f8:a7:8a:60:94:0b:ef:b9:65:
28:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:05:C4:DC:D7:4F:E7:98:25:01:46:A4:D0:16:CA:5A:54:A4:66:A1
X509v3 Authority Key Identifier:
keyid:3D:64:47:D7:29:74:83:29:4E:CE:CB:85:3A:5E:50:09:35:D1:B8:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PWRH1yl0gylOzsuFOl5QCTXRuNc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/5FB104E223AA11ED95ECB53FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.177.248.0/23
Signature Algorithm: sha256WithRSAEncryption
39:b3:e8:33:16:b5:67:e8:92:a3:c8:e7:43:81:b6:a3:03:80:
bd:88:2b:11:d3:16:6b:99:9f:b3:a0:51:d9:5d:9f:fc:4c:ef:
5e:d6:6a:59:3f:01:fa:68:44:26:d8:ed:2b:20:e7:e9:8b:ed:
01:f6:61:22:ce:b7:ee:39:2f:32:9b:79:0d:2d:88:b9:74:05:
d2:da:66:8f:79:99:0f:cb:ff:f8:49:84:2d:c6:bc:55:d4:7d:
39:fd:76:45:83:1a:8e:00:e5:e9:52:fe:d0:d2:d8:05:d3:48:
10:92:0c:79:c2:5f:21:fa:f2:08:02:46:c3:c2:9e:0a:15:c1:
02:7d:24:a1:e9:f4:96:d4:36:10:67:22:c7:a9:8d:49:1a:f4:
2e:8d:46:c6:c2:df:69:8f:ce:5a:e9:3b:1d:c9:92:7d:3d:fa:
e2:10:c7:fa:af:52:72:91:bf:81:3e:51:5c:01:25:ab:ce:ce:
01:8f:21:18:cf:b1:5a:d0:c3:0c:09:01:9b:2d:e3:9c:22:14:
17:55:17:30:fd:a7:49:0f:a8:99:33:fc:6d:33:af:15:45:92:
de:3a:3a:b8:22:93:46:6f:e8:f3:94:9a:fd:8c:78:87:4c:13:
71:01:7a:8f:d4:1d:22:82:1f:8c:f2:44:b7:a9:49:40:81:d0:
c7:ef:dc:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:43 2023 by rpki-client on console-ams.rpki-client.org