Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/529CAC3AA4F111ECAFBA8D65C4F9AE02.roa
File: 529CAC3AA4F111ECAFBA8D65C4F9AE02.roa (raw, json)
Hash identifier: quVxQEHx5vI2k89AlgdXkqjBTJXSdfFj8JyOfEMqInA=
Subject key identifier: FD:4C:3C:57:F6:FD:D3:8E:41:CB:5C:11:8F:38:6A:48:0C:0B:76:76
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 5177
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/529CAC3AA4F111ECAFBA8D65C4F9AE02.roa
Signing time: Mon 16 May 2022 04:16:01 +0000
ROA not before: Mon 16 May 2022 04:16:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 137181
IP address blocks: 103.109.136.0/24 maxlen: 24
103.109.137.0/24 maxlen: 24
103.109.138.0/24 maxlen: 24
103.109.139.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20855 (0x5177)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: May 16 04:16:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6281d001-035b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:8c:fb:7b:ad:b5:63:cb:59:01:46:af:c8:24:
5a:35:cd:55:50:3e:4e:33:d9:b6:95:83:81:9b:d6:
ae:d6:a0:b1:08:86:94:ce:a7:cc:6c:40:a5:9d:c0:
ab:0c:44:3e:29:89:ff:af:7a:84:c1:25:20:2a:0f:
4e:c9:6c:fa:1f:2b:32:c2:54:bf:2a:6d:f7:33:0b:
cf:0b:59:c5:92:94:6d:2f:ef:af:62:13:8c:86:47:
aa:a7:cf:72:24:28:27:ed:ef:1d:7a:57:ab:42:98:
d9:1f:a4:f3:4f:24:c0:7b:cb:eb:c4:3d:9a:96:d7:
1b:ee:a0:dc:a6:6d:5f:de:c7:5c:f4:8c:65:c1:57:
9f:c2:e4:27:3f:e4:e5:59:a1:55:bc:2a:0e:a6:10:
eb:d4:81:07:a1:82:21:fc:6c:36:20:c1:1f:21:a1:
31:46:a7:b7:3e:a2:5f:f9:39:28:42:ad:c4:33:6b:
15:bf:c9:79:d3:f7:e7:b3:38:37:ba:f9:11:4f:58:
21:bd:d6:5e:23:94:61:c8:53:bb:b9:9e:a5:27:b1:
7d:a6:59:d5:5f:b5:eb:6f:2c:e3:8f:c5:08:71:6d:
33:05:c0:eb:5f:37:91:77:4a:45:34:bc:f7:d3:b6:
5e:3d:7e:b4:fb:06:a7:11:8f:c8:6f:a4:d6:4b:2a:
ea:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:4C:3C:57:F6:FD:D3:8E:41:CB:5C:11:8F:38:6A:48:0C:0B:76:76
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/529CAC3AA4F111ECAFBA8D65C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.109.136.0/22
Signature Algorithm: sha256WithRSAEncryption
83:c3:74:91:6e:81:19:54:23:12:25:fe:6e:fe:4f:b8:00:08:
dd:a6:9a:4c:8a:37:ed:f4:7b:4d:84:51:2b:63:0b:ff:00:c8:
8e:32:c2:2b:e5:5f:6b:2a:cb:e2:4b:c2:10:42:b0:0a:ac:ed:
80:a5:a0:94:24:ec:af:57:bb:81:03:fa:98:f0:5d:c4:75:9c:
15:64:79:f9:79:34:0d:38:3b:78:6d:06:d2:fe:36:78:39:94:
36:22:a0:ac:f9:9d:55:41:5e:81:dd:6b:e2:f9:99:91:ce:26:
0c:2a:e9:6a:e4:1f:02:06:b2:ac:28:78:d4:ad:78:a4:87:8d:
f7:f1:21:e1:46:5f:66:0d:bb:6c:d6:18:5e:6e:a4:d5:7e:ed:
76:0e:85:77:2f:1a:38:50:99:5b:81:10:ea:7d:af:5e:73:ce:
4c:16:3f:cd:6b:d4:af:b8:48:ba:b5:32:2b:96:df:a9:7f:b3:
d9:e7:88:db:a5:e3:a1:fe:ea:98:e6:85:64:35:79:0f:5f:53:
c8:93:27:22:66:35:01:f6:c3:2c:45:a4:d7:c7:8d:27:3a:41:
50:e5:33:d1:41:85:be:73:5f:02:0e:4c:37:b2:0b:65:0a:1e:
81:8a:64:7d:0d:a5:47:f9:b4:8d:dd:9e:33:0d:73:7d:9f:2a:
b3:f0:a9:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:52 2023 by rpki-client on console-ams.rpki-client.org