Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/066E56B6AD8C11EDB8562C1AC4F9AE02.roa
File: 066E56B6AD8C11EDB8562C1AC4F9AE02.roa (raw, json)
Hash identifier: uRPQEfAPnWAcaFwJKh/41ac2mAo7aYKSLPyzKJaDSNk=
Subject key identifier: DE:98:6A:C9:04:68:5F:68:D8:92:9A:A9:62:99:3E:47:DC:BE:F0:FC
Certificate issuer: /CN=A9178AF2/serialNumber=1005CCD5E18230FBA9ADD3D27F85DA38F13E4172
Certificate serial: 0166
Authority key identifier: 10:05:CC:D5:E1:82:30:FB:A9:AD:D3:D2:7F:85:DA:38:F1:3E:41:72
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EAXM1eGCMPuprdPSf4XaOPE-QXI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/066E56B6AD8C11EDB8562C1AC4F9AE02.roa
Signing time: Wed 15 Feb 2023 23:54:04 +0000
ROA not before: Wed 15 Feb 2023 23:54:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213165
IP address blocks: 103.229.116.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 358 (0x166)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9178AF2/serialNumber=1005CCD5E18230FBA9ADD3D27F85DA38F13E4172
Validity
Not Before: Feb 15 23:54:04 2023 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=63ed709b-4f95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:a0:69:be:e7:3a:0f:93:67:d4:75:c4:60:eb:
ce:7d:63:c2:88:9b:b5:cb:62:20:78:a9:95:dc:30:
d1:2b:3c:d0:d3:af:2b:bd:a4:2f:0f:1d:be:5b:8c:
b7:eb:f9:6d:29:82:a2:14:70:75:5d:f4:64:d3:7f:
d9:67:b5:16:82:8e:cb:9c:7b:00:b8:15:0a:81:57:
a8:f9:6b:af:43:81:97:b7:ff:13:e4:73:fe:cf:8f:
8c:08:40:6c:60:a4:95:03:92:ff:56:6f:96:15:75:
d0:17:fd:0b:59:45:86:e4:5d:7d:0a:9a:61:b8:05:
af:8e:0f:2c:19:ac:cb:b4:64:53:d9:ca:ea:cb:ba:
1f:66:0b:14:4f:ba:86:80:e3:2e:cd:a2:c3:9f:be:
72:56:1e:e9:3a:99:86:d5:9b:d8:6b:d8:bf:b1:e7:
f9:29:72:96:2b:48:86:89:91:41:a7:ac:e6:6b:f2:
31:cd:c8:6d:0e:83:42:fb:0a:66:59:87:65:44:a6:
b8:bf:d6:9f:0b:5b:b3:32:1e:0e:e7:b7:f2:b0:4c:
49:0c:87:d2:7c:5a:ea:23:46:f5:cf:f4:29:19:1f:
05:2f:4e:56:26:25:18:0b:05:eb:d7:06:fe:11:b5:
be:f4:04:b7:4d:7e:bf:bd:58:31:1d:4d:38:5d:4b:
cd:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:98:6A:C9:04:68:5F:68:D8:92:9A:A9:62:99:3E:47:DC:BE:F0:FC
X509v3 Authority Key Identifier:
keyid:10:05:CC:D5:E1:82:30:FB:A9:AD:D3:D2:7F:85:DA:38:F1:3E:41:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/EAXM1eGCMPuprdPSf4XaOPE-QXI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EAXM1eGCMPuprdPSf4XaOPE-QXI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/066E56B6AD8C11EDB8562C1AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.229.116.0/24
Signature Algorithm: sha256WithRSAEncryption
72:99:f2:7d:99:3e:6c:dd:9d:5b:a0:00:88:9f:55:cf:d1:87:
89:41:17:49:4a:4e:34:29:49:be:b6:5d:c3:39:9b:4a:2b:17:
81:64:23:1b:8b:ca:03:f3:cd:be:6f:a6:8c:d8:e5:02:42:5d:
43:34:aa:41:07:fa:db:36:f4:73:b1:c8:7c:5e:3e:c8:d4:44:
cc:a0:89:6e:0e:d3:14:39:e6:77:bf:8c:29:8e:12:34:9c:1a:
39:1b:90:d2:d7:20:f3:27:c9:3b:06:51:ca:69:63:1a:28:33:
1c:2d:97:8c:fe:cc:89:1d:44:28:bf:cb:9d:03:1f:73:d7:a2:
7d:63:4a:8e:b2:f9:f9:8f:44:c0:e0:2b:d4:2a:3b:85:9c:ec:
69:10:3d:43:19:39:93:0e:bf:cb:91:3c:c9:c3:b3:e3:6a:45:
83:fc:1f:b4:a2:cd:9b:94:b0:9e:4f:b2:98:0a:65:3e:e6:e8:
ba:1d:b7:df:68:6b:72:59:7a:3a:89:82:5c:35:4f:65:62:6d:
84:cb:74:e0:20:9b:d7:9f:8e:2c:4c:a9:1a:8d:a7:7c:21:cd:
43:dd:d2:3b:ec:31:0f:ab:fe:79:76:83:e0:8d:46:31:4b:00:
a2:26:08:68:e7:c5:e1:cb:dc:ff:2e:64:f3:07:c6:ba:3f:40:
a1:82:93:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:44 2023 by rpki-client on console-ams.rpki-client.org