Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7E9AFED2456311ED8D288A63C4F9AE02.roa
File: 7E9AFED2456311ED8D288A63C4F9AE02.roa (raw, json)
Hash identifier: TgOVhH5+aaVA45DhilpL1r/f0oGzcI/IdMnLSUF3r+U=
Subject key identifier: BC:FE:A2:63:28:3C:8C:C2:FC:22:AD:EC:20:11:CA:29:72:AC:09:8E
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 5E34
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7E9AFED2456311ED8D288A63C4F9AE02.roa
Signing time: Thu 06 Oct 2022 10:41:55 +0000
ROA not before: Thu 06 Oct 2022 10:41:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 150066
IP address blocks: 103.191.180.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24116 (0x5e34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Oct 6 10:41:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=633eb0f2-6f2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:64:8c:fc:e6:42:fb:0b:65:09:5f:11:aa:43:
a2:ab:e0:1c:a2:25:75:4b:34:2f:32:9d:df:c7:87:
bd:a9:4e:f0:6a:61:8d:a1:62:7f:5d:59:5f:b3:ac:
0c:0b:87:d2:37:c5:bf:be:2d:e5:9d:af:bb:90:9f:
fb:28:53:6d:a1:cd:8e:b4:ec:9d:b2:b0:54:08:8e:
2e:3c:d5:3f:e7:fa:be:4d:e8:13:ef:98:c0:e9:5c:
34:1d:31:f5:32:a5:d9:56:68:d6:64:09:28:b1:e2:
de:5d:4e:71:59:a7:be:76:dd:23:23:b1:a5:4d:eb:
6a:a3:c7:b2:4c:dc:57:d8:70:9c:98:1c:1b:39:dd:
5a:89:cc:43:27:80:19:12:ee:7d:14:b1:3c:17:7c:
bd:af:01:3a:72:d9:ca:89:93:85:70:c0:28:2a:77:
cc:e2:46:df:a9:fd:07:60:93:fa:42:4b:8e:94:6b:
dd:93:cc:68:f0:37:81:cd:33:0c:72:bc:6a:dd:ce:
9b:d0:7c:da:12:ba:55:d5:8f:48:c8:5a:b1:3f:68:
0a:fe:90:da:ac:0a:c2:5e:c0:db:21:c4:2f:3e:d2:
e1:63:c7:ba:2e:45:b1:46:dd:fd:07:d2:64:d8:6c:
62:d2:dd:0b:04:98:e0:ef:8f:ee:5b:26:3e:7c:14:
0f:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:FE:A2:63:28:3C:8C:C2:FC:22:AD:EC:20:11:CA:29:72:AC:09:8E
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7E9AFED2456311ED8D288A63C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.191.180.0/24
Signature Algorithm: sha256WithRSAEncryption
23:9a:68:35:19:57:64:34:67:41:be:c0:31:81:56:26:55:61:
18:8e:ad:16:68:6b:68:88:d0:75:ff:0f:3f:6e:e8:24:35:04:
27:40:98:80:cd:c4:b5:a4:bf:72:5a:88:50:b3:dc:cc:e3:5d:
43:31:82:3d:8d:e6:6c:b7:97:5e:8c:99:68:78:db:db:0c:4d:
74:32:ab:dd:72:76:b3:95:36:c9:8e:05:20:2e:b3:69:67:9a:
f6:cc:c0:c3:22:c6:a6:36:4d:f4:00:c4:00:c9:e9:0b:da:a7:
39:fd:b1:1d:50:8d:7a:06:2e:be:54:ce:d7:34:76:12:b4:80:
ec:94:39:96:af:05:da:7d:1d:8a:46:c9:1e:23:48:ab:e4:1c:
9c:f0:b7:5f:69:ef:23:82:90:64:38:26:71:8b:e3:25:3b:94:
5e:f0:5c:a9:b7:d0:00:d9:aa:60:90:5f:16:f9:cb:7d:19:af:
98:fa:46:1e:4a:8c:ea:0d:93:a5:1a:47:d1:22:c4:88:e1:63:
cd:4c:b2:38:5b:64:d5:81:e7:f0:cb:ba:5a:58:ee:f1:ae:a0:
ca:70:99:05:24:d6:fc:9d:a1:ef:c2:bf:68:7d:e5:ab:9d:a3:
d6:61:c6:8a:5a:4e:98:13:7b:25:87:f0:ca:58:53:4c:34:3c:
62:d4:8a:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:56 2023 by rpki-client on console-fra.rpki-client.org