Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3CC8EE227F5311EDA470A383C4F9AE02.roa
File: 3CC8EE227F5311EDA470A383C4F9AE02.roa (raw, json)
Hash identifier: g4cURhHMj0dTKwl8cDLHG3gxDbafB6RxlEikEMS+oxk=
Subject key identifier: 62:4B:6D:5F:DE:86:7C:5D:35:D2:90:55:97:7C:5C:46:F7:58:F1:41
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 618E
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3CC8EE227F5311EDA470A383C4F9AE02.roa
Signing time: Mon 19 Dec 2022 04:11:40 +0000
ROA not before: Mon 19 Dec 2022 04:11:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 136923
IP address blocks: 103.181.202.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24974 (0x618e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Dec 19 04:11:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=639fe47c-cdfd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:25:e6:de:f9:f3:0b:9f:5c:db:7d:e6:29:1a:
be:90:43:91:6e:05:f4:5b:8f:d3:8b:9a:0b:fe:40:
1a:e8:9f:10:df:45:11:99:9c:20:b9:6b:b8:26:04:
a8:27:c0:e0:a1:4a:3c:8b:89:20:e7:73:47:63:ab:
b1:a7:e3:32:c2:58:0d:2d:6f:1c:df:cb:14:18:e0:
6b:02:20:74:01:92:68:01:8e:d0:17:07:a2:51:f9:
eb:80:a6:45:3b:c0:25:ac:53:54:c4:17:2e:3b:aa:
16:c0:09:ee:89:72:ee:ed:b4:87:d0:da:72:20:93:
4e:b9:c6:d9:33:86:4a:f3:25:5a:61:cd:73:ca:f0:
f5:a3:81:26:25:af:d4:7c:42:f9:07:bd:39:c3:0c:
55:34:97:3e:d5:d9:7f:67:5f:81:a7:09:20:63:7c:
74:e5:b3:fb:96:5d:0a:ca:32:23:a2:7a:cf:42:a6:
f1:30:a4:03:37:11:ed:e8:c8:ee:a1:6d:82:7e:c3:
27:67:43:a0:d7:55:eb:4b:f0:7d:b2:12:ac:0c:9e:
06:e8:96:2a:ce:f4:40:6f:a6:84:9c:40:22:ce:43:
84:23:af:fe:dc:07:7d:a2:9a:01:5d:1e:9b:3a:3e:
6d:ee:e4:2d:36:50:c6:81:0e:17:0d:21:26:a5:eb:
7f:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:4B:6D:5F:DE:86:7C:5D:35:D2:90:55:97:7C:5C:46:F7:58:F1:41
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3CC8EE227F5311EDA470A383C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.181.202.0/23
Signature Algorithm: sha256WithRSAEncryption
55:af:2b:d0:92:7d:35:db:ba:ef:cb:25:f9:f9:8e:29:d4:4d:
11:8b:9a:bb:57:50:c2:61:4f:2d:a3:80:c1:f5:85:2c:eb:5f:
1f:4c:31:ff:b9:87:e0:52:1c:e4:a3:ce:a5:80:88:e9:5f:2f:
e9:eb:8c:d4:d7:2b:a3:32:33:2f:1c:67:47:f5:00:40:95:ac:
53:d8:1c:a5:d0:1e:8e:9a:25:00:be:87:63:fc:9f:7c:e3:bf:
6d:27:38:ff:8c:1a:9c:ab:db:c7:62:5b:cc:55:51:d1:a5:ed:
56:c5:f5:ce:03:bc:64:19:da:dd:6d:43:b3:fb:29:f6:3b:ea:
89:dd:31:c1:38:80:20:2c:e6:8e:c9:a5:85:ff:88:bf:19:68:
e8:09:6a:e5:02:4e:8c:f9:b0:83:e0:2d:c8:d1:59:d8:77:42:
fb:7f:87:e2:44:49:38:44:46:4e:7c:5c:cc:0c:df:a7:05:e2:
58:7e:ca:17:f7:e1:6e:39:67:ce:45:a0:b1:df:aa:61:c3:03:
ee:e0:0f:62:c7:94:3a:b2:0e:35:46:fd:83:50:76:26:70:3b:
fa:ae:7b:d7:f5:b9:cf:b1:0a:37:91:32:06:50:13:d4:2f:1b:
2c:c7:84:aa:a3:63:1e:59:dc:4a:4d:35:16:f4:4e:54:79:f3:
28:f2:11:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:52 2023 by rpki-client on console-fra.rpki-client.org