Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917295C/1F2074C8968211EBA399115BC4F9AE02/D6BFD208968311EB8BA64B5DC4F9AE02.roa
File: D6BFD208968311EB8BA64B5DC4F9AE02.roa (raw, json)
Hash identifier: OUCtm+HJ05SHOBzCDxdKvA2OFe0Tg1+9M4Z5Ek3RjLk=
Subject key identifier: DB:0A:ED:E6:44:52:D8:F9:44:96:61:68:EB:81:DC:0A:2C:F4:60:BA
Certificate issuer: /CN=A917295C/serialNumber=542414FBE3FF232AACC62E73DDC37E275282ED4A
Certificate serial: 0192
Authority key identifier: 54:24:14:FB:E3:FF:23:2A:AC:C6:2E:73:DD:C3:7E:27:52:82:ED:4A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCQU--P_Iyqsxi5z3cN-J1KC7Uo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917295C/1F2074C8968211EBA399115BC4F9AE02/D6BFD208968311EB8BA64B5DC4F9AE02.roa
Signing time: Mon 25 Oct 2021 14:50:19 +0000
ROA not before: Mon 25 Oct 2021 14:50:19 +0000
ROA not after: Fri 30 Dec 2022 00:00:00 +0000
asID: 136933
IP address blocks: 103.143.158.0/24 maxlen: 24
103.143.159.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 402 (0x192)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917295C/serialNumber=542414FBE3FF232AACC62E73DDC37E275282ED4A
Validity
Not Before: Oct 25 14:50:19 2021 GMT
Not After : Dec 30 00:00:00 2022 GMT
Subject: CN=6176c42b-631d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:7a:e4:3a:96:04:37:b9:8e:00:a9:c6:6a:9d:
4a:62:fb:83:6c:39:69:6e:89:92:28:53:20:0c:5f:
6d:99:44:a1:8c:6e:92:c0:a7:3a:fc:2f:7a:79:fc:
f2:94:89:07:8d:ad:d9:f6:b4:0c:58:ef:b1:8a:e6:
fa:49:80:d9:40:7e:55:00:61:b5:fd:bb:53:cc:3b:
d3:4c:01:a6:ff:2e:d1:cc:c3:9b:40:c5:e8:6a:cc:
86:53:49:fb:b2:62:a9:8e:7d:05:3b:e2:5f:74:a4:
7f:97:df:07:12:bb:66:11:6b:7c:0d:4b:07:18:cb:
a6:2f:0b:b1:e3:3e:48:33:5b:8d:04:c8:ff:49:0f:
49:2c:25:d2:d9:98:4d:d8:c9:5e:e0:c6:43:7a:b3:
ad:ad:4f:b7:eb:16:27:de:58:be:3b:f0:9c:63:50:
a8:ef:20:ef:c8:80:89:df:3b:3e:e9:c9:d0:5f:ae:
01:62:59:15:2c:56:fd:25:aa:7f:19:25:cc:a2:83:
c8:f7:b5:4f:38:65:08:68:62:a4:0b:aa:26:ec:5a:
1d:09:50:b1:fe:1e:44:b0:a9:86:55:f5:70:71:89:
05:d0:d5:63:85:86:4a:b1:cd:de:9f:5b:dd:54:26:
77:d5:0b:33:d8:22:a3:19:21:77:f4:b1:86:f4:69:
24:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:0A:ED:E6:44:52:D8:F9:44:96:61:68:EB:81:DC:0A:2C:F4:60:BA
X509v3 Authority Key Identifier:
keyid:54:24:14:FB:E3:FF:23:2A:AC:C6:2E:73:DD:C3:7E:27:52:82:ED:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917295C/1F2074C8968211EBA399115BC4F9AE02/VCQU--P_Iyqsxi5z3cN-J1KC7Uo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCQU--P_Iyqsxi5z3cN-J1KC7Uo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917295C/1F2074C8968211EBA399115BC4F9AE02/D6BFD208968311EB8BA64B5DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.143.158.0/23
Signature Algorithm: sha256WithRSAEncryption
9f:d1:0d:0c:96:d3:fd:42:2d:07:3f:98:e7:88:0d:2a:b3:0f:
91:c5:f2:6f:43:11:e0:cd:b5:e0:7a:90:dd:d0:3e:49:8c:40:
fc:59:c2:d4:bb:b3:51:a0:74:cc:c0:6b:f6:c4:b7:e7:5f:6f:
de:fc:bf:05:86:77:e3:c0:da:d2:01:e0:51:ae:79:d1:08:2d:
13:86:3f:1e:75:24:bc:c4:cc:8c:9e:6f:2f:49:49:72:83:38:
68:d9:45:2a:8e:9b:fe:e6:76:d5:4e:d1:53:b5:2a:4b:36:bd:
c3:10:14:85:de:b0:2d:f5:fc:6b:49:5a:4e:b6:a2:b8:e0:c0:
3b:12:a6:f2:38:5f:d4:9c:9a:cd:e8:bf:75:82:99:ee:bf:34:
f0:fb:ba:1e:5b:e1:a1:41:a3:00:26:93:30:9c:02:76:44:33:
f3:64:09:c2:20:0f:33:65:fc:fc:ab:12:12:3a:9b:5e:a1:f1:
81:f3:6c:1f:17:72:3d:92:fa:46:ba:5b:8c:d5:a3:b9:5a:b5:
ac:74:42:e9:c5:c2:b1:68:78:9d:31:dc:42:02:aa:42:8d:0b:
1e:a1:b7:4b:49:df:f1:81:13:72:5f:4c:93:6c:0e:21:7f:86:
08:2c:85:a8:69:00:dd:9f:6d:fb:1d:a1:25:03:6a:47:ca:4c:
d0:b8:ae:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:11 2024 by rpki-client on console-fra.rpki-client.org