Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9186CDF/4481F0A811DE11EBB9F9F777C4F9AE02/0D188E72B22A11ECACE14878C4F9AE02.roa
File: 0D188E72B22A11ECACE14878C4F9AE02.roa (raw, json)
Hash identifier: 4zjUn7YlKRflVjkMwBUH/JAJFQesqhwVZg9cTTxXtGE=
Subject key identifier: 04:53:C5:C2:8E:54:AA:EC:2B:03:83:F1:9E:1A:6C:1A:2A:1E:43:2F
Certificate issuer: /CN=A9186CDF/serialNumber=A5322E98206815276DC12617961938FFC6C8848A
Certificate serial: 05B9
Authority key identifier: A5:32:2E:98:20:68:15:27:6D:C1:26:17:96:19:38:FF:C6:C8:84:8A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pTIumCBoFSdtwSYXlhk4_8bIhIo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9186CDF/4481F0A811DE11EBB9F9F777C4F9AE02/0D188E72B22A11ECACE14878C4F9AE02.roa
Signing time: Sat 03 Dec 2022 00:09:33 +0000
ROA not before: Sat 03 Dec 2022 00:09:33 +0000
ROA not after: Wed 31 Jan 2024 00:00:00 +0000
asID: 396356
IP address blocks: 103.157.137.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1465 (0x5b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9186CDF/serialNumber=A5322E98206815276DC12617961938FFC6C8848A
Validity
Not Before: Dec 3 00:09:33 2022 GMT
Not After : Jan 31 00:00:00 2024 GMT
Subject: CN=638a93bd-b4b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:2d:78:98:80:2b:5d:2f:0f:28:ce:13:41:a9:
53:dc:12:ce:91:c8:0f:f7:19:9b:ad:ce:eb:b1:fc:
59:6b:75:b1:1f:47:de:bc:93:15:c2:3c:6e:fa:97:
18:c7:24:b1:62:c2:c0:98:96:34:b9:54:75:ea:25:
03:be:cb:d4:ef:e4:84:5b:6d:15:80:49:2e:db:12:
17:59:b6:80:7d:24:2f:1e:d0:4f:a4:18:2f:2e:0e:
24:29:df:53:db:ce:87:57:47:2d:e1:6c:8b:3d:ad:
42:1e:85:cd:c9:a3:f1:7f:86:4e:f9:04:97:2e:50:
b4:c9:53:92:e7:97:0b:d2:54:4b:91:a8:73:81:ec:
33:0b:da:43:e7:ce:24:e7:14:30:b3:58:4e:ed:b8:
3d:d3:0e:c7:bf:c6:6b:5f:de:9b:39:b3:d5:70:2a:
a0:86:9f:29:c5:23:a1:08:f9:05:0e:d1:17:a0:bd:
8a:33:57:88:00:a2:68:76:7b:4b:29:89:dc:50:b6:
77:30:54:f8:46:9b:b6:3f:65:b1:6b:68:27:4c:96:
61:9c:a4:92:1e:8c:96:f0:ad:68:6e:b4:ef:6c:2d:
dd:82:7c:b6:21:d5:ce:ee:e3:64:c7:9a:50:4e:67:
7a:a3:b2:20:8f:8f:ae:5d:a2:52:42:de:d6:37:b6:
c6:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:53:C5:C2:8E:54:AA:EC:2B:03:83:F1:9E:1A:6C:1A:2A:1E:43:2F
X509v3 Authority Key Identifier:
keyid:A5:32:2E:98:20:68:15:27:6D:C1:26:17:96:19:38:FF:C6:C8:84:8A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9186CDF/4481F0A811DE11EBB9F9F777C4F9AE02/pTIumCBoFSdtwSYXlhk4_8bIhIo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pTIumCBoFSdtwSYXlhk4_8bIhIo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186CDF/4481F0A811DE11EBB9F9F777C4F9AE02/0D188E72B22A11ECACE14878C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.157.137.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:ec:93:17:9c:58:0c:be:4b:8c:07:0c:f0:f2:4e:06:6a:78:
77:40:a5:67:4e:1c:67:cb:55:db:87:c0:cf:a1:27:db:04:38:
cc:80:c3:d2:4d:1e:81:3c:31:8c:61:73:5f:ef:12:cb:95:71:
11:61:5a:db:10:7d:5b:2d:f8:57:a8:e1:56:ff:bc:7d:3c:88:
2d:8f:de:be:57:dd:d5:58:45:79:e8:da:c2:10:ba:b8:28:ee:
f8:59:e5:46:e8:ae:1c:48:ba:97:61:37:ab:6c:fc:08:34:e9:
f4:8e:9f:fe:6c:d7:64:f0:08:d9:8d:84:ee:25:ee:32:57:0a:
32:b6:d6:4a:6c:85:3f:d0:f3:06:8f:0a:d0:d9:06:b7:91:f0:
a7:bc:82:8c:1b:6e:9a:c2:c1:25:be:8d:3a:1b:5e:75:88:b4:
e5:2d:4f:ae:55:6e:b2:e9:2b:9b:ff:4d:e9:c4:08:29:17:fb:
09:87:f9:55:e9:d0:8c:df:11:77:31:f7:80:0a:26:eb:14:16:
17:54:4c:7d:05:60:69:05:b4:c9:64:86:e3:dd:4e:3f:87:7a:
eb:0b:da:ba:60:d2:7d:66:43:15:a6:b0:d5:1d:bc:8a:48:95:
29:dc:a6:fc:f1:cb:9b:9f:44:89:47:88:50:6f:8d:23:69:92:
ea:b8:b7:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:25 2024 by rpki-client on console-ams.rpki-client.org