Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/27400FD4C89D11EDB150A277C4F9AE02.roa
File: 27400FD4C89D11EDB150A277C4F9AE02.roa (raw, json)
Hash identifier: jSN3fVc4vtgDtocRy5h6quS/zB9caR3JTLhZUCOn7RQ=
Subject key identifier: A4:2B:7C:44:F9:26:CD:6C:90:45:B6:41:79:B4:D2:69:A4:65:63:65
Certificate issuer: /CN=A9197202/serialNumber=E3CF45F8051063BBDB317FDD151132A94004FD5B
Certificate serial: 0136
Authority key identifier: E3:CF:45:F8:05:10:63:BB:DB:31:7F:DD:15:11:32:A9:40:04:FD:5B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/27400FD4C89D11EDB150A277C4F9AE02.roa
Signing time: Wed 22 Mar 2023 10:34:42 +0000
ROA not before: Wed 22 Mar 2023 10:34:42 +0000
ROA not after: Thu 31 Aug 2023 00:00:00 +0000
asID: 140499
IP address blocks: 103.189.68.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 310 (0x136)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9197202/serialNumber=E3CF45F8051063BBDB317FDD151132A94004FD5B
Validity
Not Before: Mar 22 10:34:42 2023 GMT
Not After : Aug 31 00:00:00 2023 GMT
Subject: CN=641ad9c1-19f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:47:20:a0:2a:22:e2:8e:a8:8f:d7:3f:17:5c:
41:eb:f8:62:a6:17:17:a2:79:4a:92:63:94:3c:03:
f0:ec:aa:88:fe:16:13:ab:88:92:18:6a:07:7f:59:
b0:ab:e2:17:ad:d1:90:29:96:7c:7c:70:ba:4b:1f:
f3:70:30:c7:52:50:33:7d:a5:0d:3f:02:92:f0:c2:
57:ec:8d:e3:b1:23:11:25:23:e0:8f:37:e7:10:a7:
60:13:d7:ac:91:20:ef:fe:3e:cf:f9:49:bc:a5:e8:
4b:12:8e:66:c4:b3:d8:7e:95:5d:cf:0c:32:09:c2:
7c:bf:ab:90:99:bb:cb:9d:80:52:ff:f4:1f:2d:33:
4f:0e:57:68:81:5f:1a:f3:84:37:c0:bf:58:88:11:
62:88:09:ad:b0:b6:40:6e:4c:bb:fd:dd:04:44:ef:
0a:e3:5a:ef:f9:68:29:ad:39:5f:69:7e:fa:a9:28:
ea:6d:59:d2:d9:92:fd:14:10:6e:35:9f:33:5d:e2:
63:c2:47:51:bd:54:da:bc:c4:02:33:ba:f8:e0:39:
59:ee:49:e2:32:8f:56:17:6f:ed:a5:5c:e7:96:18:
3f:f6:0a:bf:80:b0:dc:19:4d:cc:2f:2d:23:fd:a7:
cb:1a:65:3c:18:a0:60:b6:60:31:6a:b1:b6:5f:88:
e3:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:2B:7C:44:F9:26:CD:6C:90:45:B6:41:79:B4:D2:69:A4:65:63:65
X509v3 Authority Key Identifier:
keyid:E3:CF:45:F8:05:10:63:BB:DB:31:7F:DD:15:11:32:A9:40:04:FD:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/27400FD4C89D11EDB150A277C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.189.68.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:0b:6c:37:9c:de:54:da:a2:90:f3:eb:85:3f:07:5f:1a:09:
8e:4d:c9:d4:04:e6:db:b8:b6:3a:93:36:36:17:e0:dd:4b:2c:
68:c1:9a:99:1b:85:12:79:66:75:6f:9b:e7:b3:18:73:38:46:
62:42:54:5b:5c:12:52:71:b9:65:73:a5:80:58:35:82:f5:e2:
e0:1a:b3:27:22:c4:62:c9:fc:06:e4:0a:21:e1:fd:d0:2f:4b:
4c:9a:af:37:24:4b:a7:c5:b5:88:1a:17:d1:b2:ea:c4:48:bb:
d6:a0:e0:c0:38:76:fc:91:63:75:27:53:28:e8:91:e9:3b:dd:
9b:31:50:5a:cb:55:8a:6d:55:4f:2d:25:ac:00:6b:ca:88:33:
b2:ec:0c:25:59:17:77:a4:66:54:8b:a5:bb:37:b5:e1:ea:96:
c6:cb:be:10:d1:ed:3a:aa:2b:35:4e:a9:31:83:be:bf:86:74:
59:87:d8:b2:be:4d:14:09:54:3d:68:0c:f6:77:7e:ba:55:3e:
f0:b2:87:cc:ae:6b:67:a8:6a:81:e5:b5:1a:7f:83:fe:df:a9:
a5:b8:c5:9a:18:a9:6f:7f:32:2a:44:b6:4e:5f:05:61:5f:50:
c6:4b:71:0a:6e:e6:66:3e:fa:b5:cc:81:50:20:84:58:8e:c9:
15:ec:9b:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:34 2024 by rpki-client on console-fra.rpki-client.org