Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917C1DC/B2D1DE20594F11EB88F7A73EC4F9AE02/D00935440C3911ED906B0183C4F9AE02.roa
File: D00935440C3911ED906B0183C4F9AE02.roa (raw, json)
Hash identifier: DMEbXu52JiViTJHMQtPqkrKpPrVRYx9HoKmgvxbvzBg=
Subject key identifier: 50:71:52:63:F1:89:59:ED:26:77:8E:CA:CC:52:01:46:04:89:93:98
Certificate issuer: /CN=A917C1DC/serialNumber=A8D576D4AFBB64045BB0295641B99427D7F878F2
Certificate serial: 0487
Authority key identifier: A8:D5:76:D4:AF:BB:64:04:5B:B0:29:56:41:B9:94:27:D7:F8:78:F2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qNV21K-7ZARbsClWQbmUJ9f4ePI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917C1DC/B2D1DE20594F11EB88F7A73EC4F9AE02/D00935440C3911ED906B0183C4F9AE02.roa
Signing time: Mon 25 Jul 2022 17:10:27 +0000
ROA not before: Mon 25 Jul 2022 17:10:27 +0000
ROA not after: Sun 28 May 2023 00:00:00 +0000
asID: 212238
IP address blocks: 103.110.104.0/24 maxlen: 24
103.110.107.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1159 (0x487)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917C1DC/serialNumber=A8D576D4AFBB64045BB0295641B99427D7F878F2
Validity
Not Before: Jul 25 17:10:27 2022 GMT
Not After : May 28 00:00:00 2023 GMT
Subject: CN=62dece83-db79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:05:7b:30:5a:d2:82:00:9b:f5:97:9a:cf:4a:
3e:9b:bd:26:d9:83:ea:3b:5b:d0:7b:b5:65:6d:ec:
56:3c:2b:ee:e5:92:74:93:50:1d:e1:86:f4:ca:8c:
b3:b1:a6:d8:78:fe:d7:08:e4:a6:b5:22:12:88:59:
55:85:df:62:42:a1:9c:3e:9e:ae:3a:fe:e1:a6:04:
a7:2e:a2:3c:75:ed:71:5a:c5:f4:a9:a1:fd:56:6b:
78:40:78:a1:1a:3d:e1:57:f3:58:11:be:29:8c:bc:
3c:fc:8e:3f:5e:5b:33:c5:79:bb:26:60:e1:b0:6c:
d4:53:42:68:42:14:a7:34:7a:30:ad:c8:8c:8f:1a:
b0:dd:ce:61:a6:a9:67:c9:e0:9b:07:b0:92:18:60:
fe:ce:41:e8:4c:ca:86:aa:f8:e9:7f:e9:b0:23:6e:
a6:07:4b:9a:be:64:1e:57:6c:10:62:8f:00:0f:ac:
cf:74:12:8f:12:26:dd:4e:ad:6f:b8:19:79:c3:e8:
58:3e:4c:64:7d:fb:7e:16:a4:6d:9a:58:db:00:ed:
c3:36:53:c3:85:06:77:b4:13:e9:75:d5:40:68:3e:
6d:22:f0:ac:a9:0c:78:38:26:82:5f:c0:3b:7a:38:
79:90:a0:cc:e1:0f:29:7d:fe:86:53:87:36:5d:fc:
78:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:71:52:63:F1:89:59:ED:26:77:8E:CA:CC:52:01:46:04:89:93:98
X509v3 Authority Key Identifier:
keyid:A8:D5:76:D4:AF:BB:64:04:5B:B0:29:56:41:B9:94:27:D7:F8:78:F2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917C1DC/B2D1DE20594F11EB88F7A73EC4F9AE02/qNV21K-7ZARbsClWQbmUJ9f4ePI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qNV21K-7ZARbsClWQbmUJ9f4ePI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C1DC/B2D1DE20594F11EB88F7A73EC4F9AE02/D00935440C3911ED906B0183C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.110.104.0/24
103.110.107.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:12:f8:aa:87:4e:f3:ca:19:6b:a8:73:73:13:ce:af:87:4f:
3e:87:ac:78:be:89:ad:8b:82:d4:3a:2c:08:1e:3c:74:3b:3f:
b8:d1:8c:6c:86:3f:08:72:22:6c:c4:91:8b:c1:4f:af:f6:92:
4b:fc:2b:f1:3c:9e:25:14:95:2a:16:76:85:81:d0:1a:1e:a5:
63:d4:f5:3b:d7:e2:6e:3d:de:4d:72:31:53:1f:fd:44:65:db:
b7:cf:29:1d:06:f2:f6:14:2b:19:70:39:da:ac:5e:d3:9b:9f:
b2:f4:24:3b:ab:fd:c0:a1:4c:00:73:ea:4b:d4:8d:af:a1:68:
be:dc:83:70:40:0c:ed:7a:1f:eb:6d:43:33:bc:1a:19:3d:fc:
e5:c0:49:a8:7f:43:68:d3:06:c0:af:71:46:28:2a:49:26:70:
f5:42:ef:e5:ff:78:b8:c6:80:ff:fd:ca:2d:70:bb:b0:b0:8c:
b9:cf:c6:bc:ae:7c:3d:6f:27:f5:e2:81:04:ff:bb:7e:2c:e8:
67:bb:9f:a0:06:b8:46:64:c4:f4:8b:3d:78:e2:f8:a4:03:9c:
e1:63:40:27:8b:4e:4c:29:c4:69:f2:26:8f:4e:e3:74:95:8d:
2f:63:a0:50:cd:66:de:1a:f0:6d:13:eb:6a:5e:46:b2:0a:fc:
74:d6:8a:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:22 2024 by rpki-client on console-ams.rpki-client.org