Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918BBEF/F791C37EA04211EB85699E21C4F9AE02/26FAF65823C311ED9CF26A56C4F9AE02.roa
File: 26FAF65823C311ED9CF26A56C4F9AE02.roa (raw, json)
Hash identifier: cTeCtmfubLRsGLVbRh43VSm8RSHuRf6Ui1Ss5r9+huo=
Subject key identifier: 45:9E:39:00:86:DE:8C:66:C1:05:64:80:29:BF:34:45:96:31:F9:7B
Certificate issuer: /CN=A918BBEF/serialNumber=2412876430E2ACF4A1A83E5A575C7F97AB2B3B2E
Certificate serial: 03F5
Authority key identifier: 24:12:87:64:30:E2:AC:F4:A1:A8:3E:5A:57:5C:7F:97:AB:2B:3B:2E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JBKHZDDirPShqD5aV1x_l6srOy4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918BBEF/F791C37EA04211EB85699E21C4F9AE02/26FAF65823C311ED9CF26A56C4F9AE02.roa
Signing time: Wed 31 Aug 2022 14:01:14 +0000
ROA not before: Wed 31 Aug 2022 14:01:14 +0000
ROA not after: Tue 31 Oct 2023 00:00:00 +0000
asID: 149457
IP address blocks: 103.97.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1013 (0x3f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918BBEF
Validity
Not Before: Aug 31 14:01:14 2022 GMT
Not After : Oct 31 00:00:00 2023 GMT
Subject: CN=630f69aa-2d69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:21:94:7f:56:03:51:4c:71:f1:d6:9e:2e:b8:
43:b4:20:6f:db:df:b1:22:eb:26:2b:30:84:c7:57:
0f:a7:96:7e:12:0e:91:9e:32:51:8c:6b:8d:01:dd:
ee:4e:74:1f:ef:5e:09:ab:2c:a9:e6:47:18:94:82:
5c:c4:ed:03:95:4b:8b:66:61:b7:f5:b6:c2:cb:43:
7e:68:df:b7:04:37:b9:68:ab:02:26:e4:ff:29:cd:
79:97:34:6c:e3:4b:2a:40:32:d1:04:2d:a6:6e:8b:
62:aa:6d:c8:8d:99:6c:3b:ba:90:33:3d:94:24:10:
71:00:28:1a:91:d6:83:07:75:3a:58:69:c8:4a:a8:
0f:e6:8b:b8:86:0c:3a:7f:14:6b:18:64:a3:03:49:
b3:92:c9:bb:f1:dd:8e:7f:7b:c4:4f:3f:e0:be:8c:
e0:02:d2:22:5f:ae:76:cf:0f:49:9a:b9:c4:92:c4:
2f:3c:2a:6e:40:fa:79:44:aa:d0:0a:03:76:0c:ff:
ba:a2:d3:ca:d4:61:76:b8:b3:f2:d2:19:10:32:21:
03:46:2d:3e:19:90:2f:14:2e:96:93:99:7c:ab:a1:
92:57:45:e7:10:8b:9d:38:88:dd:35:93:8d:a7:75:
87:78:93:8f:de:f6:b8:f5:b2:66:34:b4:dd:3c:d0:
9c:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:9E:39:00:86:DE:8C:66:C1:05:64:80:29:BF:34:45:96:31:F9:7B
X509v3 Authority Key Identifier:
keyid:24:12:87:64:30:E2:AC:F4:A1:A8:3E:5A:57:5C:7F:97:AB:2B:3B:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918BBEF/F791C37EA04211EB85699E21C4F9AE02/JBKHZDDirPShqD5aV1x_l6srOy4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JBKHZDDirPShqD5aV1x_l6srOy4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BBEF/F791C37EA04211EB85699E21C4F9AE02/26FAF65823C311ED9CF26A56C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.97.35.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:26:b5:bc:5e:4a:42:37:d7:ce:43:3f:a6:5e:75:92:9f:4a:
9e:eb:f0:f8:95:6e:92:7f:2c:97:cd:cd:ba:91:05:81:cb:54:
57:7b:20:de:fe:df:b2:28:8b:34:14:1a:a2:e1:b5:95:fb:3f:
a8:99:71:96:9b:7e:da:84:20:c6:84:32:5a:07:49:5e:71:d9:
46:1f:6b:8f:a4:5c:1f:ba:e5:4e:99:23:cf:9e:7d:d4:de:3e:
9c:ff:04:15:1f:45:71:b0:d6:c0:88:c9:49:cd:6d:a0:f2:00:
dc:8a:8b:46:44:5f:5c:4a:fb:00:8f:cd:c2:15:cb:dd:c5:a1:
d6:98:a3:5b:08:ce:94:03:58:64:25:8f:a5:b0:2d:3f:63:aa:
bd:35:41:4b:b7:8b:e9:ba:50:1d:26:9e:99:c7:f3:8f:33:1e:
9a:9c:88:f8:75:ca:c7:5e:27:04:3f:e8:a3:32:7c:2c:99:4b:
43:23:e8:8e:36:70:e6:54:b2:08:b8:61:3f:bf:67:32:5d:87:
69:2b:80:a8:f5:a6:c4:46:1a:52:35:58:96:b1:8e:b1:4d:a7:
ea:d3:b5:f5:b3:54:46:d7:0e:9f:ce:ee:fb:77:0f:d2:d0:0a:
98:1a:b7:38:bc:81:91:24:ee:74:fb:c8:92:89:00:4b:27:d8:
9f:23:94:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:03:53 2025 by rpki-client