Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F8BBBE0E2CAF11EC9A237030C4F9AE02.roa
File: F8BBBE0E2CAF11EC9A237030C4F9AE02.roa (raw, json)
Hash identifier: F+uLVYIwECDK+XaQpUuQRHSsV2ctd70p0uZqFRXC+NE=
Subject key identifier: 71:58:5B:38:82:0E:D3:ED:98:72:58:42:23:20:D0:E7:C5:95:81:F9
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 3F2D
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F8BBBE0E2CAF11EC9A237030C4F9AE02.roa
Signing time: Thu 14 Oct 2021 05:31:25 +0000
ROA not before: Thu 14 Oct 2021 05:31:25 +0000
ROA not after: Fri 01 Jul 2022 00:00:00 +0000
asID: 137167
IP address blocks: 103.109.44.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16173 (0x3f2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Oct 14 05:31:25 2021 GMT
Not After : Jul 1 00:00:00 2022 GMT
Subject: CN=6167c0ac-aa10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:31:d7:20:50:83:ed:f9:00:6b:ca:ab:57:18:
21:8e:3b:83:7f:a8:ee:a7:9c:a0:ef:1b:09:10:19:
56:f9:08:c8:df:53:35:a7:07:a1:15:41:38:32:ea:
43:36:22:51:75:63:07:51:11:53:2f:4a:6e:0e:e0:
e4:5f:62:2e:20:08:a7:9c:af:54:4f:bd:8b:cd:74:
3f:76:3e:59:2a:9d:ec:18:27:91:e8:42:4b:c1:2d:
d6:a6:d4:dc:11:2d:77:ad:1d:63:14:95:98:6a:9d:
6b:44:66:c2:e0:23:b6:9c:ad:cd:d3:25:6e:bd:c1:
50:bc:66:29:d8:22:6e:f2:20:8b:1e:1f:28:33:39:
fa:9c:34:ff:aa:d6:5a:05:3c:9c:e1:2a:bb:70:8d:
97:b8:f8:20:fd:df:91:89:c4:2c:a5:de:a9:e3:e7:
f3:bf:9e:2d:a0:8b:a7:4b:0c:78:79:73:05:71:b8:
cd:3c:be:9a:45:cc:71:06:08:f8:c1:11:d0:96:11:
6d:29:97:a7:76:63:64:5d:37:26:e0:41:71:3e:13:
fb:e7:b9:b1:cb:7f:00:0b:75:68:44:14:29:77:01:
2a:f3:ab:42:a9:70:93:f3:ec:71:9f:2c:0a:3d:70:
79:80:43:2a:74:0a:7c:b1:52:75:74:3c:e4:a8:a0:
44:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:58:5B:38:82:0E:D3:ED:98:72:58:42:23:20:D0:E7:C5:95:81:F9
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F8BBBE0E2CAF11EC9A237030C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.109.44.0/22
Signature Algorithm: sha256WithRSAEncryption
85:31:9f:97:20:dc:0e:a8:a1:e6:b5:63:f1:34:13:85:13:d3:
f2:42:ee:4e:51:79:cc:ea:73:a4:97:48:98:16:44:ec:27:dc:
17:5f:c3:c8:26:9b:6c:78:ac:88:d2:bc:23:42:2a:55:7d:c2:
9f:58:7a:02:b6:9f:0d:f0:84:3c:7c:56:69:bd:c7:55:c0:d1:
45:56:5a:f3:d0:57:25:bc:bf:86:1d:05:89:9d:67:14:7a:87:
47:b0:81:9b:45:29:ba:94:70:4f:22:ee:2e:5b:d9:ee:ff:0d:
45:5d:2f:fe:f3:b6:c8:fa:46:bb:64:52:dc:ef:21:7a:76:cd:
37:c4:31:53:27:d5:94:02:d3:fb:13:5b:a1:b0:e0:bb:6a:d3:
60:bd:6b:76:5b:ff:40:9e:19:62:40:78:88:c7:53:b1:f7:c5:
f6:99:9d:2b:08:1d:5a:c2:37:8f:65:ea:56:3b:1f:8c:40:45:
7b:c3:17:33:09:02:6a:8e:b2:26:81:a5:b3:37:8f:35:1c:51:
dd:72:f5:72:40:aa:48:49:c6:05:80:c2:9e:03:c5:a1:01:f1:
0d:e3:b5:00:c6:99:d0:10:30:8d:7e:3b:36:c3:dd:37:d6:32:
f5:33:6e:e1:ee:f9:23:52:86:eb:56:bd:c9:77:e3:42:7c:cb:
04:dd:37:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:55 2023 by rpki-client on console-ams.rpki-client.org