Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4271E01C7D9D11ECB095DB12C4F9AE02.roa
File: 4271E01C7D9D11ECB095DB12C4F9AE02.roa (raw, json)
Hash identifier: 1VcT1wqyIwRowllsDt/LsBji8xmAFT1PY56NpxuDGqM=
Subject key identifier: 19:40:CD:34:88:80:17:90:6B:FB:75:3A:83:7A:39:F9:52:0B:0A:3C
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 46BE
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4271E01C7D9D11ECB095DB12C4F9AE02.roa
Signing time: Tue 25 Jan 2022 05:11:32 +0000
ROA not before: Tue 25 Jan 2022 05:11:32 +0000
ROA not after: Fri 01 Jul 2022 00:00:00 +0000
asID: 147194
IP address blocks: 103.177.114.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18110 (0x46be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Jan 25 05:11:32 2022 GMT
Not After : Jul 1 00:00:00 2022 GMT
Subject: CN=61ef8684-4a98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:c4:6d:37:09:94:55:83:8e:4a:70:ae:7c:f8:
6e:7f:1f:ee:5e:b1:cf:9d:5f:f9:c5:4a:89:ee:54:
80:b1:7b:06:ec:a5:ae:5d:86:67:ae:4e:00:25:92:
cb:25:a2:e1:c0:c2:7f:1d:33:58:c9:2d:e9:aa:b7:
18:9b:a0:88:4f:a7:34:9a:eb:f4:41:fa:31:95:43:
50:07:45:6e:4b:59:a8:e5:f3:11:18:13:55:24:1e:
26:51:9a:de:b6:94:59:56:bb:24:69:4d:2d:8f:fe:
4b:28:53:3c:08:eb:4a:93:33:a6:d3:8a:6e:f7:39:
0b:0d:d6:b8:54:42:f1:ed:42:66:03:89:7b:1e:c3:
2a:5e:08:19:6b:f3:9c:c4:04:da:4d:fe:01:f6:7b:
d4:c5:70:e5:8c:ba:34:8d:b8:b2:66:46:f3:f3:82:
fa:06:a7:95:25:7c:16:b6:11:0b:92:da:1d:e1:55:
3f:97:d0:65:d6:98:84:05:59:ad:e3:6e:bd:5f:3f:
e4:e0:6c:d4:55:79:70:db:80:fb:dc:fc:86:33:7f:
2f:ce:f5:4e:70:88:1b:08:38:04:ce:b3:db:9a:08:
89:67:2c:f9:1c:07:d5:30:ab:38:e8:9e:e6:4a:d2:
f2:3d:63:e1:02:ef:4f:80:f7:c6:3b:07:ff:72:c9:
d1:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:40:CD:34:88:80:17:90:6B:FB:75:3A:83:7A:39:F9:52:0B:0A:3C
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4271E01C7D9D11ECB095DB12C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.177.114.0/23
Signature Algorithm: sha256WithRSAEncryption
17:ad:d5:8d:f4:d0:c3:fe:9b:82:72:81:20:d8:e6:85:fc:45:
4d:93:c5:2b:5c:52:6a:82:12:00:97:79:d1:cd:20:9b:44:9a:
ae:04:45:d9:8a:b9:27:23:41:a5:bb:7f:22:35:5d:82:ac:98:
35:44:a3:ab:47:3b:f9:c5:39:6e:81:40:60:7f:71:df:c1:d6:
70:80:9c:bb:b6:7b:52:ae:7c:1d:fd:e0:bb:1a:9b:db:6e:95:
e7:a6:75:39:5c:31:0e:82:0d:05:7b:d6:b7:13:a9:1d:e9:bd:
8e:f8:8c:79:3d:20:d1:74:00:ad:a7:76:48:01:21:e7:f1:e6:
e7:56:28:98:7a:66:5b:d2:84:61:52:8b:69:07:e6:b6:04:9f:
a7:e6:ad:1e:74:61:c0:76:99:45:ca:b2:e2:c8:3f:73:61:1c:
93:7e:bb:87:f5:07:51:28:7f:12:68:f4:74:d6:bb:b4:44:1b:
50:8b:77:43:bf:27:da:b7:db:c8:f8:21:31:0b:2e:75:d6:51:
ce:55:20:7d:1d:cc:f7:b3:da:07:db:01:25:5c:a4:ab:49:a9:
6e:59:e7:a0:7f:01:8c:60:1d:4b:c3:ff:f8:c2:ce:ce:f6:d0:
1b:67:90:e4:a1:17:3a:a2:37:5d:3e:ec:81:d7:65:46:8f:73:
de:0b:8f:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:51 2023 by rpki-client on console-ams.rpki-client.org