Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2D4A0D20182911EB93449831C4F9AE02.roa
File: 2D4A0D20182911EB93449831C4F9AE02.roa (raw, json)
Hash identifier: esJb6f5uvo0wUM/Mt7PxLUBh2pesvwGgiooLzTk+9ls=
Subject key identifier: 05:56:B2:F1:03:AF:14:E8:D7:A2:6E:73:62:8B:96:2B:F0:27:CD:C5
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 52ED
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2D4A0D20182911EB93449831C4F9AE02.roa
Signing time: Mon 16 May 2022 04:22:52 +0000
ROA not before: Mon 16 May 2022 04:22:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 141327
IP address blocks: 103.157.166.0/23 maxlen: 24
2406:a340::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21229 (0x52ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: May 16 04:22:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6281d19b-ffbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:3f:52:59:5d:e3:9a:00:0a:e2:a1:41:71:e4:
ed:8c:b6:32:f8:80:f9:0f:24:2c:03:8d:b6:fe:cf:
bf:25:4b:4e:d5:ed:d6:c2:0c:4d:41:2d:fb:08:a1:
de:d4:8e:37:69:2f:9f:c2:18:92:eb:2d:c4:ce:b2:
1e:08:48:50:25:72:79:53:a6:8c:71:2f:13:d8:3e:
13:1b:15:ca:5e:49:0c:bf:d9:50:f8:5f:f8:cc:f9:
2d:0b:43:54:41:06:0a:6d:a5:58:46:f5:a4:b4:f9:
99:55:32:00:f4:df:ee:96:9e:97:3b:c7:8d:93:44:
b1:cc:c1:ae:c9:8b:c6:06:4e:df:e2:91:02:68:b2:
cf:e9:22:92:4d:49:64:b4:69:90:83:d3:d3:a6:9d:
24:bc:4a:d4:ee:bf:8e:9d:66:37:d4:47:1a:d6:a2:
95:db:d8:92:e0:92:f2:57:cc:f3:48:96:0e:6c:13:
3b:a3:92:06:a7:52:40:4d:77:73:c1:d4:92:e3:ab:
31:63:80:b7:8b:47:8c:ed:5c:de:07:ee:f4:3d:19:
74:63:f2:c1:76:8c:71:17:3f:b6:cb:39:19:15:49:
37:59:01:23:bc:d0:84:46:ae:c1:0e:6a:09:80:55:
e7:d1:57:b3:da:cc:f6:fe:e7:76:ae:03:6f:5b:59:
98:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:56:B2:F1:03:AF:14:E8:D7:A2:6E:73:62:8B:96:2B:F0:27:CD:C5
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2D4A0D20182911EB93449831C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.157.166.0/23
IPv6:
2406:a340::/32
Signature Algorithm: sha256WithRSAEncryption
af:aa:3c:73:4d:8f:36:c8:7e:ef:5b:30:cc:bb:bd:ba:e5:0d:
8f:85:f7:ba:84:0e:42:bd:dd:f3:bd:f0:1c:b8:f2:6a:00:c2:
be:9c:13:25:f8:df:be:4a:37:81:ac:dd:9f:df:a2:a2:7d:af:
48:8c:7a:f0:ed:38:a3:28:3f:dd:d3:7b:d8:8b:92:e0:71:35:
f2:39:0c:b8:10:f2:a2:3b:92:c6:25:c2:dd:62:00:b7:46:c1:
a8:f1:ba:58:89:b9:c8:8f:d4:85:73:5b:cc:49:af:92:ac:db:
1b:c5:09:cd:f3:58:9c:c0:7b:80:e0:9a:a7:96:81:fd:55:85:
24:43:08:87:c3:08:34:2a:a9:bb:71:53:e8:92:aa:a2:e5:7c:
99:18:bb:18:9d:c1:03:3a:2a:8f:fa:a2:b3:9f:5f:70:e1:1a:
fb:51:66:ab:76:b6:05:43:8c:7a:2c:21:32:1b:b0:fe:bf:b1:
ed:b9:97:21:cd:93:c7:6e:87:3c:1f:d3:18:4c:e6:85:1e:8a:
44:22:1a:20:2c:48:13:a9:98:cb:36:82:c1:d9:76:5e:c8:c7:
68:b0:89:03:a8:2b:0c:f9:4d:1d:79:72:4f:64:8b:1d:ba:7b:
32:f1:d1:8e:2c:88:16:98:e9:56:88:9a:04:f3:51:ee:42:e9:
f0:cc:dc:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:51 2023 by rpki-client on console-fra.rpki-client.org