Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/81683668EF0711ED8F57D842C4F9AE02.roa
File: 81683668EF0711ED8F57D842C4F9AE02.roa (raw, json)
Hash identifier: b9NAIsTNQrK0kB9PI2F7rutaCcLDOQCDgan0IAGFbAE=
Subject key identifier: AC:6F:8B:1A:25:4E:F4:E1:6F:FC:D8:12:B4:F3:76:E1:FC:58:9E:6D
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 69D5
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/81683668EF0711ED8F57D842C4F9AE02.roa
Signing time: Wed 10 May 2023 07:51:43 +0000
ROA not before: Wed 10 May 2023 07:51:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 150025
IP address blocks: 103.160.142.0/24 maxlen: 24
103.160.143.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27093 (0x69d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: May 10 07:51:43 2023 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=645b4d0f-4b26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:e8:e6:9f:f6:d4:48:50:81:e1:04:b7:0e:44:
c8:08:8d:fb:e4:f9:e3:4b:35:e5:5c:c2:34:3a:e3:
31:1a:f9:60:49:e4:68:8a:1a:3d:86:98:d2:b3:08:
2e:48:19:ff:6d:56:3d:47:61:54:ff:05:e6:16:22:
e5:5e:13:57:e4:71:62:d3:9f:74:67:02:99:90:77:
7d:49:24:fe:a6:49:64:a8:fb:30:04:e5:c4:94:04:
e2:6d:a7:5d:fb:af:51:27:04:91:6f:46:5b:c9:c5:
ef:28:5a:00:c4:42:83:61:7e:18:91:b6:a9:ea:0a:
53:a8:be:61:ea:6c:2c:a7:4e:55:13:57:71:f3:42:
94:ae:5f:f2:c9:60:eb:52:0b:79:13:e5:cf:18:04:
9f:76:df:0d:df:20:57:1f:62:1b:97:ec:35:07:6f:
50:ae:15:bc:4a:37:e5:e4:eb:9b:f6:25:d7:17:04:
3c:b4:60:66:5c:9e:07:6e:bf:af:1e:a8:92:2b:31:
a0:9f:6d:01:2b:e2:38:3d:46:61:c7:5f:18:ff:36:
8e:45:a9:d2:41:aa:95:a5:8a:07:b3:96:a4:48:29:
6f:b6:90:7a:93:45:50:48:13:66:d9:4e:2f:57:b6:
9c:e4:50:be:3b:53:a6:93:3d:5a:3e:3b:3c:56:08:
44:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:6F:8B:1A:25:4E:F4:E1:6F:FC:D8:12:B4:F3:76:E1:FC:58:9E:6D
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/81683668EF0711ED8F57D842C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.160.142.0/23
Signature Algorithm: sha256WithRSAEncryption
03:fd:6c:f6:fa:09:76:6d:84:4a:be:1f:93:56:72:24:3e:f3:
8f:cc:5e:bf:3e:5c:43:93:ec:f1:26:d2:bd:e8:cc:ef:37:30:
83:b1:8c:6b:10:a8:6c:52:2a:d6:26:04:eb:5f:e0:e7:df:f6:
dd:18:01:08:06:d3:f7:d3:1d:3d:ed:73:b0:b5:01:e4:ae:d5:
a2:ce:70:3f:7c:01:e4:fb:fa:ab:e4:fb:fe:e1:05:08:64:45:
33:aa:09:d7:de:82:91:f8:9e:dd:8c:6b:c0:cd:c6:6a:59:58:
ec:7d:06:56:15:a6:f0:7a:56:ab:84:f2:fa:74:c5:ac:50:a4:
78:8f:c9:87:33:e1:d1:66:73:03:1f:d9:7c:3e:b8:c4:d0:bb:
dd:92:03:65:49:8a:c4:db:e8:c2:4d:75:93:df:70:42:1f:bd:
b7:81:a8:17:5f:05:60:13:de:73:2b:4b:cf:64:e2:a7:84:30:
84:22:18:a2:05:29:7e:88:39:62:39:14:a1:c7:db:bb:42:fb:
a0:78:24:20:3f:26:fd:c3:61:b9:16:a5:9f:07:7a:df:30:6e:
bf:7a:c2:eb:24:76:03:c3:ca:a4:f0:14:f6:8b:39:94:c2:25:
8b:35:40:5f:27:59:22:a0:f8:5c:7d:8c:1e:cc:c8:ee:ca:a4:
d6:ff:dd:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:53 2023 by rpki-client on console-ams.rpki-client.org