Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917419E/981EE9860B2111EC8421494DC4F9AE02/CD9406F0EE4211EC8CA72A7DC4F9AE02.roa
File: CD9406F0EE4211EC8CA72A7DC4F9AE02.roa (raw, json)
Hash identifier: RDVezyJ/K78f+4XhocfiUJ9M3bNc+RwrMkMaYoReh6Q=
Subject key identifier: A0:0C:AE:E9:21:C1:30:61:30:54:E6:D8:90:1A:6D:82:1D:26:00:17
Certificate issuer: /CN=A917419E/serialNumber=1445489FDD50AA44AC1D2A3C3A166E06C662AFD5
Certificate serial: 032A
Authority key identifier: 14:45:48:9F:DD:50:AA:44:AC:1D:2A:3C:3A:16:6E:06:C6:62:AF:D5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FEVIn91QqkSsHSo8OhZuBsZir9U.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917419E/981EE9860B2111EC8421494DC4F9AE02/CD9406F0EE4211EC8CA72A7DC4F9AE02.roa
Signing time: Sun 02 Oct 2022 03:22:38 +0000
ROA not before: Sun 02 Oct 2022 03:22:38 +0000
ROA not after: Fri 01 Dec 2023 00:00:00 +0000
asID: 48266
IP address blocks: 103.172.134.0/24 maxlen: 24
103.172.135.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 810 (0x32a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917419E
Validity
Not Before: Oct 2 03:22:38 2022 GMT
Not After : Dec 1 00:00:00 2023 GMT
Subject: CN=633903fe-cc88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:74:01:a7:ba:5b:dd:49:6c:56:10:96:f4:78:
3c:89:b6:26:e2:30:a1:f3:e0:a5:ac:39:37:83:4b:
c7:88:af:e8:2f:9d:82:2c:93:20:50:4e:44:a3:b7:
0b:17:54:1c:35:0d:69:2c:33:ce:a4:a1:4c:05:bf:
a7:8c:df:a1:2c:f4:e8:12:53:d9:78:57:a7:21:09:
af:00:37:20:97:e1:e9:d2:cf:be:ca:fd:f1:4a:77:
5c:0e:07:24:92:ad:a5:fa:24:9c:06:ec:3c:7e:57:
ff:98:3c:09:e3:1d:a1:e8:3d:71:06:87:79:c2:02:
66:fc:db:3b:9a:c7:35:7b:e0:bb:1b:30:38:98:c9:
56:07:31:7d:0f:95:16:fc:f1:8f:0a:d5:b6:b9:6a:
61:b9:5a:4f:ad:65:26:35:22:8a:32:91:fb:a7:f5:
a9:1e:b1:44:af:1b:c9:be:13:42:b5:25:53:06:f1:
54:06:49:c2:c6:b5:f8:3a:5c:b6:76:4b:68:75:f9:
aa:19:d1:af:6a:f5:f0:0b:b3:e4:09:3f:45:e5:cc:
20:f9:28:2c:a0:24:1f:8f:af:02:3c:0b:3d:6c:83:
f4:bd:e5:f1:e1:45:b6:26:93:b0:70:b0:76:b5:ba:
d5:d2:2f:9a:b7:a1:9a:82:cc:9f:12:57:cd:31:f5:
1b:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:0C:AE:E9:21:C1:30:61:30:54:E6:D8:90:1A:6D:82:1D:26:00:17
X509v3 Authority Key Identifier:
keyid:14:45:48:9F:DD:50:AA:44:AC:1D:2A:3C:3A:16:6E:06:C6:62:AF:D5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917419E/981EE9860B2111EC8421494DC4F9AE02/FEVIn91QqkSsHSo8OhZuBsZir9U.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FEVIn91QqkSsHSo8OhZuBsZir9U.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917419E/981EE9860B2111EC8421494DC4F9AE02/CD9406F0EE4211EC8CA72A7DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.172.134.0/23
Signature Algorithm: sha256WithRSAEncryption
15:cd:eb:d7:ab:2e:76:67:a0:86:83:6b:10:ad:af:ae:e7:68:
e6:6d:05:1d:d7:ea:29:9e:4b:b5:5e:14:1d:f7:8a:02:df:f2:
78:47:39:c7:49:08:bd:ce:9e:1a:a7:3f:cf:9d:bf:ee:8d:2d:
c2:26:e2:9d:ff:52:b3:82:f6:e4:70:d9:92:05:31:d6:00:1d:
26:ca:21:d8:fb:98:1d:cd:e1:23:fa:e5:2b:d0:81:ee:38:40:
c2:94:a7:a4:cc:a3:33:42:b9:be:81:07:00:f8:5b:1d:13:6e:
61:0a:e8:98:60:f3:7d:74:99:98:62:5a:d1:99:69:b6:ff:5d:
07:1a:46:5a:8c:e5:93:a2:2e:0e:b5:a7:38:01:cc:e6:6b:b8:
20:4f:a8:3f:bb:38:10:d8:dc:f9:03:ce:03:92:f1:95:7c:f2:
38:ca:ce:cb:70:59:76:4c:5b:31:8e:14:aa:4e:c9:ee:32:32:
d4:92:a9:8a:45:ad:78:16:0a:04:f6:e4:d8:9b:6e:79:55:07:
f9:07:26:e2:09:b8:22:b0:38:20:7a:ec:59:22:61:71:84:23:
31:5e:f0:af:82:38:52:0f:27:e7:81:f4:04:57:db:f6:4b:68:
1a:40:31:1a:b1:d0:d8:17:63:65:e4:dd:84:31:a6:d5:43:0a:
b6:e0:3e:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:32:06 2025 by rpki-client