Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/23603330F6C511ECBDF7DD40C4F9AE02.roa
File: 23603330F6C511ECBDF7DD40C4F9AE02.roa (raw, json)
Hash identifier: R0A4w+Vi3I9RmejsY+bPktSHRmuP76t9JiXUMXt+ejA=
Subject key identifier: AA:72:A3:6D:91:5A:C0:DE:DA:80:64:16:48:63:C7:B2:0F:57:52:B0
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 5820
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/23603330F6C511ECBDF7DD40C4F9AE02.roa
Signing time: Tue 28 Jun 2022 09:31:50 +0000
ROA not before: Tue 28 Jun 2022 09:31:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 134044
IP address blocks: 103.65.20.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22560 (0x5820)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Jun 28 09:31:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=62baca86-94e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:dc:a9:ce:93:73:5a:a6:44:e7:99:c6:61:e4:
4e:9a:49:65:c2:66:d2:81:77:70:b8:de:24:4f:94:
71:75:8f:0a:85:aa:f1:c3:8b:61:af:43:2d:c6:56:
a3:c1:dd:8c:25:46:f4:03:d8:c4:06:ba:b3:5c:d8:
3f:b1:25:ec:47:5f:e3:ef:4a:ce:c6:c5:d2:89:5d:
22:25:a8:4d:91:f5:92:12:76:0d:a7:dc:fc:7c:fc:
d5:6c:6f:f9:94:0e:44:c2:82:cb:56:d4:a0:c1:fd:
0d:93:1f:ce:3c:dd:8c:93:33:6d:75:ff:fa:2a:18:
f2:af:bb:12:0a:e8:df:5e:4f:b2:4f:7e:c6:74:0e:
ca:b9:7c:c5:d6:6b:47:9d:f5:1b:0b:92:14:1f:f4:
18:55:6b:14:e8:03:48:08:9c:e4:ee:ee:cc:16:3f:
62:80:ac:be:08:ab:9c:5a:cc:cf:52:3b:67:59:5f:
34:bb:a7:6c:5a:1f:ac:b9:69:42:08:02:c9:a9:7b:
b4:4f:db:a4:68:f3:b5:cf:ef:2f:e3:d0:a0:f9:ed:
6a:e4:88:96:a0:ce:3f:4f:1d:90:26:82:56:14:77:
2c:27:2f:7f:f6:9d:6e:98:a0:67:c6:b7:a9:06:01:
33:8c:75:01:02:c6:4f:4d:c1:4d:c3:6e:98:6a:b2:
38:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:72:A3:6D:91:5A:C0:DE:DA:80:64:16:48:63:C7:B2:0F:57:52:B0
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/23603330F6C511ECBDF7DD40C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.65.20.0/23
Signature Algorithm: sha256WithRSAEncryption
5e:79:c4:5f:61:d1:f9:03:89:25:40:2a:ae:cc:a6:39:73:9c:
82:d5:b1:94:69:b6:db:80:4b:a0:70:6a:4b:c0:2f:da:35:48:
a7:50:56:06:4c:54:6e:b1:1e:04:ba:7b:cd:be:07:04:ff:a5:
f4:e8:d9:8f:51:5f:bf:cc:31:df:ab:47:14:21:12:b8:1e:3b:
c3:7e:71:93:f1:38:98:5f:28:ac:fa:3b:e4:b6:ce:b5:a9:c1:
56:c1:5b:d2:bb:9a:c9:b7:38:55:f2:0c:51:0b:92:3a:eb:db:
df:04:5a:84:c4:a0:ed:7d:85:3f:fd:17:2d:55:e8:05:a4:0d:
1e:3d:57:ac:c7:5c:d3:57:b1:0d:5f:68:d4:75:20:1f:cd:cf:
c4:47:f4:df:df:cf:91:20:7b:96:65:12:f6:d1:d2:67:a3:b3:
37:c7:09:2c:1a:2e:16:34:1c:22:bd:56:54:e7:45:d1:d2:51:
e1:fb:29:7c:97:eb:2a:50:90:94:60:74:49:d8:52:ae:0d:17:
e5:45:e0:2c:2b:25:4c:85:d3:d3:c1:91:ba:bd:3d:82:37:c2:
5e:10:f0:8b:c5:16:59:c8:83:d1:e5:73:77:a7:58:6c:ce:a8:
1a:a1:6c:2e:04:f9:37:ac:b0:70:00:e7:0c:f8:cc:96:72:a9:
38:06:49:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:48 2023 by rpki-client on console-ams.rpki-client.org