Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/375ABF72444211EB8A576D64C4F9AE02.roa
File: 375ABF72444211EB8A576D64C4F9AE02.roa (raw, json)
Hash identifier: eyklm23FxfzMQAI6fcFM+JqpOzbbbMJ9lzpPz0cxtk4=
Subject key identifier: FB:35:8D:E7:E4:F9:6C:7A:8F:EA:1D:26:E9:64:2C:48:D6:7D:A6:C9
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 52D6
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/375ABF72444211EB8A576D64C4F9AE02.roa
Signing time: Mon 16 May 2022 04:22:25 +0000
ROA not before: Mon 16 May 2022 04:22:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 141301
IP address blocks: 103.160.166.0/23 maxlen: 24
103.170.64.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21206 (0x52d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: May 16 04:22:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6281d181-a352
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ae:e8:5b:7d:c5:5e:d3:bd:fc:23:4b:d5:b0:
0f:5b:82:d2:54:a7:d1:7d:ae:72:4e:df:59:4a:e0:
e2:6e:a7:cc:f5:65:0d:09:b3:7d:9c:d3:0a:03:98:
12:9d:fa:d0:48:6d:57:a1:6c:74:ed:e1:6c:9b:4f:
44:69:a8:3b:05:d7:4c:4b:0a:a8:5f:0d:17:4c:f4:
13:28:97:d1:ee:5a:ce:50:60:7f:56:b0:f7:69:8b:
c9:b1:02:7c:f7:9a:8a:87:55:58:c5:f0:69:a3:0e:
34:c3:cc:86:46:f0:1a:c7:0c:8c:6a:b0:ab:00:e2:
0b:c6:22:1c:be:31:5d:bd:26:50:b0:6c:d5:0f:f9:
67:ad:dd:28:90:b5:cc:ce:d2:63:7a:af:14:40:78:
db:2e:93:e1:38:c2:54:70:8c:ba:ce:0f:4b:79:b5:
f0:e4:ed:b9:79:d3:c3:51:72:f0:94:44:55:b1:86:
27:34:73:8a:ff:e5:12:29:45:44:82:32:e6:a6:17:
03:15:95:05:15:38:86:e8:73:11:43:1b:ae:5e:92:
2d:68:79:89:47:a4:be:5c:93:2f:b2:0c:da:ab:10:
93:4a:09:b2:71:42:08:69:5b:97:ba:44:26:72:9b:
07:d9:8f:a8:18:91:1d:bc:0e:e7:9e:51:18:ae:67:
89:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:35:8D:E7:E4:F9:6C:7A:8F:EA:1D:26:E9:64:2C:48:D6:7D:A6:C9
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/375ABF72444211EB8A576D64C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.160.166.0/23
103.170.64.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:0d:79:51:4d:e0:13:fd:52:89:ea:5a:6c:36:6d:8e:1e:40:
96:26:fd:c0:0d:8b:10:c4:41:6e:33:75:ce:47:b2:0b:35:03:
49:e3:96:57:ed:b2:9a:7b:26:32:0b:64:61:46:af:74:bb:c6:
6c:61:8e:49:12:0d:34:c8:f4:8d:31:3f:72:fe:ef:06:cb:10:
ac:1b:f0:e6:b6:03:d6:74:0c:be:7e:d6:56:ff:bb:cd:93:6e:
eb:fc:10:c4:32:fa:73:b5:5e:40:7b:8a:91:11:29:c5:db:db:
bb:07:f5:40:45:bf:0f:07:b5:2d:44:7a:8a:b2:60:d1:12:09:
57:47:e3:6b:b6:e0:34:b6:74:c7:af:bc:d1:6e:87:37:a5:6c:
0a:79:90:2a:5c:ca:2b:4e:e4:01:e8:e2:1a:9d:a7:51:1e:6c:
ab:c8:3b:8d:44:27:d7:40:f5:83:14:7c:54:61:8a:9f:de:8a:
30:fb:94:d1:9b:95:e1:3b:76:1e:fd:4f:e3:31:c8:e5:e5:04:
0f:cf:7c:fb:90:24:5b:2f:da:67:95:c5:d4:2d:51:18:91:bc:
db:28:86:1a:ca:7e:df:79:f7:15:4a:61:3c:80:9c:a7:4e:f8:
b1:dc:2b:dc:20:91:c2:4b:d4:4c:1b:29:8f:59:7f:12:ec:7b:
9f:36:e8:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:48 2023 by rpki-client on console-ams.rpki-client.org