Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1D8FD91ED29011ECABE11541C4F9AE02.roa
File: 1D8FD91ED29011ECABE11541C4F9AE02.roa (raw, json)
Hash identifier: iKGWVkEjZyL0lmvsPKJfw6UdvY1KpNH8pUCvMSUg97M=
Subject key identifier: 7B:3F:E4:8F:7C:C0:20:F7:18:24:36:64:BF:E4:CC:52:B8:63:47:FA
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 4E82
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1D8FD91ED29011ECABE11541C4F9AE02.roa
Signing time: Fri 13 May 2022 07:41:36 +0000
ROA not before: Fri 13 May 2022 07:41:36 +0000
ROA not after: Fri 01 Jul 2022 00:00:00 +0000
asID: 133967
IP address blocks: 103.54.100.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20098 (0x4e82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: May 13 07:41:36 2022 GMT
Not After : Jul 1 00:00:00 2022 GMT
Subject: CN=627e0baf-a20c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:1f:00:30:2c:07:04:50:b6:a6:32:3c:e8:23:
dd:74:8a:59:40:10:c0:a0:f4:b6:3e:76:18:07:5e:
06:ab:5a:c4:07:ad:ed:ab:40:38:62:c9:1a:19:b7:
59:44:1e:60:93:08:cc:54:c5:91:31:79:0b:c8:0e:
01:93:4e:f6:54:b4:11:ae:96:4c:b7:9b:6d:49:ce:
26:ce:3c:56:5c:b2:31:88:a3:a5:07:94:37:37:f3:
e9:d8:7a:ed:e0:1c:8a:3a:2a:20:75:34:3a:23:6b:
7f:c9:ab:dc:4b:4d:79:41:92:0f:bf:c7:63:a3:b4:
e7:69:01:ea:2f:27:86:40:5d:0d:6d:b8:a0:32:dc:
aa:36:70:80:e2:7d:b6:ad:a7:9e:d1:22:e7:1d:77:
90:5c:a6:a3:c3:3d:b1:16:d5:a8:06:16:85:eb:a9:
78:f8:94:14:49:0f:62:cc:41:34:9b:0a:c9:3c:fd:
fe:e7:0a:59:78:10:31:9c:42:1f:27:ca:15:ce:1c:
d9:8d:0e:0c:b2:86:10:0e:35:a9:02:92:d3:0b:d3:
b5:81:52:91:7d:93:6a:cf:9b:39:69:f1:5b:f4:ff:
0a:2c:68:1e:26:a7:6d:0c:9a:ec:b1:97:5b:db:bd:
97:a8:e5:36:07:1e:37:ca:dd:d5:87:21:03:75:57:
07:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:3F:E4:8F:7C:C0:20:F7:18:24:36:64:BF:E4:CC:52:B8:63:47:FA
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1D8FD91ED29011ECABE11541C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.54.100.0/22
Signature Algorithm: sha256WithRSAEncryption
b3:6b:08:75:9b:16:59:39:d6:9b:37:e5:bb:0a:1b:1e:31:2a:
11:b1:96:55:af:a6:9f:a2:2f:53:1e:69:d5:f3:e4:10:7f:ac:
61:b7:0d:d0:3e:e0:fc:01:9a:ab:60:54:72:e9:82:d2:ae:95:
71:33:20:5c:28:3a:d4:d9:5b:eb:92:0a:ba:ba:dd:a4:21:55:
f0:62:5a:50:0e:5a:d0:3c:1f:c9:af:2c:4e:2c:11:8d:0d:4d:
12:ba:4c:ac:e7:09:03:76:67:6f:e0:5f:cd:6b:1a:54:3e:33:
0f:31:f3:d9:71:ef:29:f8:af:89:6d:b8:eb:58:2b:0b:a0:c4:
1c:c8:6a:90:48:a2:f9:78:00:d5:fc:c6:a1:47:5e:ff:f1:65:
3a:8a:e0:02:6a:15:4a:6f:e1:46:5c:48:63:e5:ed:96:3d:7d:
f6:25:17:73:10:49:f4:76:80:86:fe:a6:13:1a:42:59:4a:8e:
67:bb:f9:f7:8c:50:8a:d4:ba:3a:e2:95:c9:6d:80:fb:19:f9:
d9:1e:8e:41:99:97:8d:4b:b3:1f:fb:40:cb:14:5d:4c:db:94:
ce:36:46:5b:9b:9c:b6:fc:0b:8c:cf:bf:4f:db:4e:69:16:d8:
5e:0a:f4:d6:30:47:fa:1c:62:f8:6a:94:ad:aa:ab:93:24:a6:
13:dd:40:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:48 2023 by rpki-client on console-ams.rpki-client.org