Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/90DE762C87E611EC991F6916C4F9AE02.roa
File: 90DE762C87E611EC991F6916C4F9AE02.roa (raw, json)
Hash identifier: DfMwdrfdKL/pI9VWIdg+KyuLPtoQcBSPGq+CNivuvrk=
Subject key identifier: 3C:1E:94:FC:07:6A:00:4D:FA:C6:89:D5:4F:4B:7E:CA:A6:B2:54:97
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 5477
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/90DE762C87E611EC991F6916C4F9AE02.roa
Signing time: Mon 16 May 2022 04:30:05 +0000
ROA not before: Mon 16 May 2022 04:30:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 149242
IP address blocks: 103.177.238.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21623 (0x5477)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: May 16 04:30:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6281d34d-3fba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:d4:fa:4a:68:3a:9f:bb:1c:73:96:c9:6f:25:
5b:23:2c:33:4d:f7:3d:0c:b1:d9:fb:b7:72:d9:c6:
c5:06:8b:ed:a0:8c:d4:7b:32:a5:9c:fc:96:c0:47:
73:f6:b0:29:6f:45:2b:f3:88:b0:fc:ec:76:d4:2f:
89:44:cf:45:4b:96:03:d0:2d:55:e3:c0:c3:cf:9c:
06:25:ba:05:ba:58:39:54:ca:61:b8:06:16:63:d7:
09:1a:2a:2f:04:8e:16:9a:51:6a:a2:4a:15:e2:58:
7c:18:23:12:c9:1f:3c:7c:f0:9d:5c:e2:8b:55:8e:
2d:9f:fa:e5:86:71:6a:22:e7:47:df:28:0d:6f:00:
34:5f:97:a8:e4:0e:6a:da:c3:83:cf:a9:9d:e5:d3:
0e:47:9c:57:11:1b:89:50:bf:05:a9:e4:e0:15:bc:
61:74:0d:07:5f:c0:b2:9f:60:a2:90:e8:60:f0:f4:
f1:fe:6b:61:2b:e1:9c:a8:f0:a4:cb:e1:37:62:cb:
1b:39:30:08:bb:aa:ec:c6:38:c0:db:09:f2:52:a4:
06:4e:a2:6d:b7:9d:5e:1f:59:ed:40:61:7d:25:ab:
63:dd:da:39:44:f8:0b:ad:06:ff:2a:2f:26:55:66:
13:9a:4e:b6:c5:9c:b9:f5:25:c4:c8:29:53:d0:39:
36:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:1E:94:FC:07:6A:00:4D:FA:C6:89:D5:4F:4B:7E:CA:A6:B2:54:97
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/90DE762C87E611EC991F6916C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.177.238.0/23
Signature Algorithm: sha256WithRSAEncryption
89:ba:5b:52:bc:e8:33:eb:b2:0d:dc:13:a0:24:66:0c:31:ba:
3d:93:bd:ab:f7:e9:75:00:22:de:50:93:83:4d:92:52:a9:87:
8d:85:08:8b:06:10:3c:09:c1:56:cf:52:f6:bd:af:8b:e2:99:
a9:d1:63:06:8b:7d:4a:f7:13:ce:e9:c1:43:f2:69:89:0f:57:
8c:1c:80:af:3b:42:90:04:55:d8:e7:07:c2:3c:d6:f4:e3:b2:
0a:21:97:fc:9f:26:79:d6:bc:44:8b:f4:9a:7d:ca:b9:aa:57:
24:5f:95:70:d1:95:8a:c7:e2:9e:c7:c2:6c:90:5e:2c:15:7d:
a2:f3:69:1e:ba:57:63:52:af:5c:9d:29:ec:d6:a0:2b:eb:42:
7a:e6:08:09:61:74:60:32:5e:2b:51:fc:a3:0c:a2:86:87:44:
a3:49:84:0c:d9:da:da:b3:24:ae:da:93:b8:d0:18:1b:0d:e8:
b1:9c:61:3a:c0:bc:96:32:04:7a:57:87:25:7d:e5:42:cd:d7:
b5:ff:10:0a:28:b8:67:d2:38:b8:ea:08:76:53:c5:7c:27:06:
39:cf:49:5e:93:63:9a:76:c6:e5:d4:c2:b8:96:e9:d2:55:25:
a0:0f:f7:61:3c:eb:6d:1b:e2:a3:00:d1:04:dd:0e:db:d8:e3:
a9:8c:4f:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:53 2023 by rpki-client on console-ams.rpki-client.org