Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F790104ABDCD11EA8E393E09C4F9AE02.roa
File: F790104ABDCD11EA8E393E09C4F9AE02.roa (raw, json)
Hash identifier: BSHz+uaaNJjYVvsuipNJvhRALRBW3hG8H+4iXD5qaqU=
Subject key identifier: 89:6F:3A:71:F6:7E:75:EE:98:8C:E0:A5:8B:C7:CF:90:6B:63:56:BB
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 51F1
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F790104ABDCD11EA8E393E09C4F9AE02.roa
Signing time: Mon 16 May 2022 04:18:16 +0000
ROA not before: Mon 16 May 2022 04:18:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 138723
IP address blocks: 103.124.240.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20977 (0x51f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: May 16 04:18:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6281d087-c3ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:00:bd:01:c4:1a:67:4a:7a:e6:e4:a5:01:1c:
99:05:04:70:f5:2e:72:f6:3e:be:9b:d2:cc:cd:9b:
4e:69:84:d9:e2:65:11:3a:ed:3b:f6:5e:fa:00:7e:
5a:8f:2c:b3:d1:0a:1b:88:90:1e:7c:c0:78:ff:56:
dc:cd:56:07:5e:01:69:ee:21:06:fa:85:e4:6e:73:
5d:46:6b:76:5d:7a:b0:4d:5f:cb:84:76:02:93:b8:
f6:ec:c6:c7:8d:93:d9:1c:48:f0:83:81:16:2a:14:
9e:f5:b7:6c:a1:96:70:3e:67:6d:05:5f:3d:ac:d4:
d0:04:8b:3c:32:4d:14:4e:51:61:73:71:dd:ae:af:
74:c8:3d:36:9e:19:77:78:c5:a5:ed:24:e0:e2:ab:
2a:dd:41:fa:a5:c0:13:1f:06:e1:95:04:4f:ca:35:
e5:66:53:8b:34:07:33:b0:ad:57:a7:a9:5f:e4:e0:
a4:39:63:83:d1:15:5b:cd:a6:7c:8e:53:44:da:cc:
0e:08:14:69:f9:a0:0d:1a:e1:d8:a2:62:f6:31:67:
59:ad:4c:35:7b:61:a9:2b:a5:41:52:17:83:24:7b:
34:7c:68:9d:3c:c9:d0:d3:1c:94:eb:17:48:20:d1:
81:0f:36:e6:f9:de:97:a6:6e:7c:b6:74:d1:da:a0:
9e:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:6F:3A:71:F6:7E:75:EE:98:8C:E0:A5:8B:C7:CF:90:6B:63:56:BB
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F790104ABDCD11EA8E393E09C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.124.240.0/22
Signature Algorithm: sha256WithRSAEncryption
76:0e:1f:c7:e8:60:85:0a:49:26:c3:07:05:50:b0:17:f6:7b:
af:a0:a5:be:a1:9c:01:78:6d:b4:93:c8:09:a6:83:03:ea:70:
01:a8:95:f9:bf:d5:57:0f:bd:d8:1c:98:b9:84:00:60:cd:90:
fe:db:07:cd:39:89:84:ea:c7:2a:53:2b:0a:00:c5:a0:7a:75:
ba:0c:a9:03:54:26:a2:06:d3:9a:77:d9:8b:1e:51:cf:e9:5a:
06:49:4c:f8:7e:d6:93:b8:cd:d0:c5:bc:1b:01:a1:cb:be:bc:
4a:36:f3:3c:78:e4:9c:49:a9:a2:72:88:5e:e7:72:40:05:85:
e3:bd:ec:cf:c4:c6:5c:a0:40:c8:43:1c:6b:ca:4b:f1:26:8a:
f6:70:e0:18:0c:9a:9f:09:e8:43:93:bd:22:2f:b6:63:7d:dd:
ea:bc:0c:8d:89:48:93:df:1e:ef:95:3d:51:57:73:a1:f9:50:
98:bd:82:1e:b9:b6:01:39:2f:f5:6d:79:57:98:92:e5:7a:e7:
da:62:b1:99:c8:70:f2:b2:97:27:74:d1:69:14:e7:52:da:f3:
37:13:de:4f:80:62:78:6e:b3:4d:b1:e7:be:d5:66:68:19:7a:
de:b7:86:85:56:e9:0e:70:51:90:f8:d8:07:d2:b5:fd:83:24:
ce:e2:9c:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:58 2023 by rpki-client on console-fra.rpki-client.org