Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9187E45/5F6AB10C529711ECA377E670C4F9AE02/D2F718BE529B11EC976D617AC4F9AE02.roa
File: D2F718BE529B11EC976D617AC4F9AE02.roa (raw, json)
Hash identifier: lLMK6i+uw++7oPocQKaikLbxyfmH4IHT/PndclStcr4=
Subject key identifier: 63:C9:8B:B4:9A:FD:C0:CA:D6:97:FD:62:20:B5:09:2C:0D:EC:CA:31
Certificate issuer: /CN=A9187E45/serialNumber=B7C2BECC97B42379C44AD1AEB5E073E2A3DA511E
Certificate serial: 011B
Authority key identifier: B7:C2:BE:CC:97:B4:23:79:C4:4A:D1:AE:B5:E0:73:E2:A3:DA:51:1E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t8K-zJe0I3nEStGuteBz4qPaUR4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9187E45/5F6AB10C529711ECA377E670C4F9AE02/D2F718BE529B11EC976D617AC4F9AE02.roa
Signing time: Tue 19 Apr 2022 09:32:49 +0000
ROA not before: Tue 19 Apr 2022 09:32:49 +0000
ROA not after: Tue 31 Jan 2023 00:00:00 +0000
asID: 210777
IP address blocks: 103.176.189.0/24 maxlen: 24
2400:7060::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 283 (0x11b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9187E45/serialNumber=B7C2BECC97B42379C44AD1AEB5E073E2A3DA511E
Validity
Not Before: Apr 19 09:32:49 2022 GMT
Not After : Jan 31 00:00:00 2023 GMT
Subject: CN=625e81c1-948c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:b6:c8:d5:2a:3f:a4:5e:d4:d2:c6:86:b7:0c:
82:45:a7:64:f1:de:2d:3e:c1:2e:61:19:35:d7:fe:
81:81:1f:95:1f:97:63:1b:f9:6f:60:4c:18:d8:4e:
3a:a7:d6:66:f7:03:86:20:30:90:13:5d:32:42:df:
67:db:a5:04:18:81:22:87:0c:8d:83:07:89:d6:70:
17:e3:3a:5e:b0:87:27:af:ad:1e:5d:e3:9e:36:2c:
67:2d:fe:97:60:75:9a:9c:40:58:ec:47:f4:e6:12:
e6:db:b2:c8:94:51:c8:f3:18:50:b3:c1:18:03:e3:
b3:45:05:b0:36:b6:b9:98:1e:03:21:3a:62:ce:96:
2c:f9:6a:24:6b:c0:5a:54:d9:01:4c:d4:c2:b4:c5:
66:ce:9b:62:9a:b7:af:86:fd:20:2e:e3:05:c8:35:
1d:8a:99:b7:4a:54:1f:cd:d8:62:18:21:f8:90:42:
aa:5c:bb:66:84:4b:ff:c0:7f:cc:78:e5:9b:ad:1a:
d0:1a:24:70:09:13:2a:f8:03:21:8a:45:a8:d9:d6:
6c:8a:8f:d1:75:4a:70:8b:61:66:e5:b6:c2:3e:92:
da:5c:23:34:c0:ba:5c:ab:96:cc:a2:3c:07:ca:a0:
dd:89:e4:e0:3b:58:12:5b:8e:75:34:91:28:d8:ef:
46:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:C9:8B:B4:9A:FD:C0:CA:D6:97:FD:62:20:B5:09:2C:0D:EC:CA:31
X509v3 Authority Key Identifier:
keyid:B7:C2:BE:CC:97:B4:23:79:C4:4A:D1:AE:B5:E0:73:E2:A3:DA:51:1E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9187E45/5F6AB10C529711ECA377E670C4F9AE02/t8K-zJe0I3nEStGuteBz4qPaUR4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t8K-zJe0I3nEStGuteBz4qPaUR4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187E45/5F6AB10C529711ECA377E670C4F9AE02/D2F718BE529B11EC976D617AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.176.189.0/24
IPv6:
2400:7060::/32
Signature Algorithm: sha256WithRSAEncryption
c7:d5:57:80:6d:46:d3:cb:e9:00:b6:0c:bd:e6:30:b6:47:aa:
d3:e2:f5:60:d6:07:52:fe:1a:fd:78:e4:d1:78:81:20:42:42:
09:fb:4b:4e:c5:e9:14:78:64:20:fa:73:f3:ea:32:4b:37:49:
89:49:3f:d4:84:e2:34:b7:7d:6b:73:0c:e6:8d:be:ae:62:1a:
dd:08:ea:f8:04:5e:69:56:5c:1b:01:92:cc:f4:6d:2b:67:da:
94:d7:e3:3e:a9:17:ce:ce:21:72:6a:62:46:d3:58:e7:a1:9f:
32:11:8d:2a:ad:86:b8:fd:a2:3f:a1:a1:e2:fc:14:61:db:87:
24:a3:d1:25:b3:c3:ee:0d:55:44:bb:f5:ad:fb:e1:18:ae:61:
f3:ef:c1:65:14:07:8e:05:c5:9e:3b:0c:2a:af:8c:db:2e:8a:
1d:7c:83:60:99:43:6d:be:50:fe:07:ec:06:12:83:4b:cc:13:
82:52:08:93:3a:51:8e:50:d7:5f:4c:f7:ef:96:a8:3e:76:e7:
9c:87:95:31:d4:7b:02:65:ea:d7:c2:23:29:f4:a9:43:34:33:
20:7e:a4:18:41:c8:e3:aa:81:e4:bf:f4:c1:91:98:d8:39:77:
7d:c4:4c:8a:bd:33:fb:8a:35:f1:e4:40:60:c6:3a:0b:72:fe:
da:00:38:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:46 2023 by rpki-client on console-ams.rpki-client.org