Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/41D0CF1A412511EC8261CB7AC4F9AE02.roa
File: 41D0CF1A412511EC8261CB7AC4F9AE02.roa (raw, json)
Hash identifier: AzmzYDNyzKiUaqCS1SRKsGlqtyFpXAhOeXgmzmUjcpA=
Subject key identifier: 58:45:25:EE:B4:CC:F6:24:8D:3B:FF:DE:08:3A:CD:31:CD:50:0F:B3
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 541B
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/41D0CF1A412511EC8261CB7AC4F9AE02.roa
Signing time: Mon 16 May 2022 04:28:27 +0000
ROA not before: Mon 16 May 2022 04:28:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 147197
IP address blocks: 103.175.0.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21531 (0x541b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: May 16 04:28:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6281d2eb-e334
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:53:c0:19:7e:c5:a8:83:27:5f:fb:1a:9d:98:
e8:69:e0:43:d0:ea:bf:c7:6d:f1:45:ca:a7:07:df:
17:ea:04:62:05:08:d1:ce:4c:2d:a0:41:2c:f6:5c:
99:6e:3c:27:76:56:60:f2:0d:2b:0d:96:eb:7a:96:
34:8f:b3:e7:19:a7:99:1a:f0:ef:25:4b:db:c2:cf:
f5:08:49:56:19:69:a5:a1:b9:44:70:ae:63:29:f6:
58:b4:c4:39:d3:55:37:ff:28:16:ec:e9:08:3a:50:
26:35:81:51:bd:f4:89:b9:f1:c8:73:ce:f7:a5:65:
5e:31:91:97:7f:d1:1b:8d:8c:f4:a7:03:3e:1a:73:
a4:8f:a8:ae:b3:12:5b:d7:69:17:27:b2:f4:43:c8:
bb:3a:2e:ff:1e:ff:8d:70:23:e4:a8:b8:50:a7:00:
e0:0c:3a:46:00:be:05:73:c8:71:24:16:88:61:d2:
fc:f4:1a:13:4d:21:cc:1c:15:f6:13:03:b4:92:df:
f9:40:13:31:fa:e2:45:2a:22:d9:43:8a:49:22:13:
e1:ab:45:8c:d7:ee:9e:20:a6:5e:2a:9c:89:8b:e8:
f1:a0:df:84:cc:6c:ee:21:bb:ec:ba:bf:4f:81:0d:
56:0e:87:92:09:4a:b3:e6:08:4f:84:fa:38:9f:45:
ee:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:45:25:EE:B4:CC:F6:24:8D:3B:FF:DE:08:3A:CD:31:CD:50:0F:B3
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/41D0CF1A412511EC8261CB7AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.175.0.0/23
Signature Algorithm: sha256WithRSAEncryption
27:40:32:a4:49:e8:07:09:ed:50:e8:55:6c:7c:0b:18:1c:9b:
1a:2a:9d:53:87:5a:37:1c:47:60:94:94:a7:0f:ee:c9:ee:07:
9e:9e:37:70:d7:e9:4e:f7:b0:c9:2c:16:c8:db:f6:96:5a:3c:
00:b5:dd:40:f4:09:c7:76:da:7b:d8:6d:b1:72:f8:01:17:1b:
a0:7b:89:68:05:5b:47:e5:91:ac:c0:b0:c7:ae:bb:83:83:1c:
c1:e1:fe:b6:2a:28:89:54:9a:2b:26:1c:6c:ce:95:87:27:77:
be:36:54:be:e3:fb:1e:46:71:95:d1:5a:d7:6c:d8:1f:e1:95:
cf:79:d0:14:4b:7f:86:9d:ed:5c:48:7c:ce:60:5b:d6:86:8a:
c4:f4:10:fc:af:16:7c:44:b9:72:96:89:20:f3:fb:fa:a1:70:
d3:3c:7b:d9:91:75:9a:9e:fb:34:49:f3:df:22:ac:7a:96:08:
b0:f4:a2:0a:11:c9:71:eb:87:09:02:58:b2:21:41:35:ca:29:
29:74:27:e7:50:10:5f:45:d1:65:ca:c4:c8:7a:2a:4f:f7:fd:
ff:51:2f:79:38:cc:bd:1d:57:8d:2c:9c:dd:64:b2:08:39:80:
ac:d9:21:e9:64:e6:01:45:e8:53:2b:6a:ac:f7:3c:05:03:e6:
74:14:26:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:51 2023 by rpki-client on console-ams.rpki-client.org