Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/827E77F2F71311EC9205FD0DC4F9AE02.roa
File: 827E77F2F71311EC9205FD0DC4F9AE02.roa (raw, json)
Hash identifier: 61XoceeGXIvRT/OqMfuEZkSsTQaswp+FNhfbGJ5+yEc=
Subject key identifier: 83:7A:12:93:0F:F5:87:65:ED:BF:CA:58:9E:1F:68:DC:C1:73:F5:56
Certificate issuer: /CN=A9197202/serialNumber=E3CF45F8051063BBDB317FDD151132A94004FD5B
Certificate serial: 0A
Authority key identifier: E3:CF:45:F8:05:10:63:BB:DB:31:7F:DD:15:11:32:A9:40:04:FD:5B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/827E77F2F71311EC9205FD0DC4F9AE02.roa
Signing time: Wed 29 Jun 2022 09:22:32 +0000
ROA not before: Wed 29 Jun 2022 09:22:32 +0000
ROA not after: Thu 31 Aug 2023 00:00:00 +0000
asID: 55714
IP address blocks: 103.189.68.0/24 maxlen: 24
103.189.69.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10 (0xa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9197202/serialNumber=E3CF45F8051063BBDB317FDD151132A94004FD5B
Validity
Not Before: Jun 29 09:22:32 2022 GMT
Not After : Aug 31 00:00:00 2023 GMT
Subject: CN=62bc19d8-50da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:63:46:d0:06:ba:be:4b:40:9c:c3:c4:f4:74:
f4:fc:d8:3a:d9:e1:5f:20:9a:5f:cb:58:ac:8b:2f:
7c:57:c1:78:23:0e:d1:a4:fc:93:a6:c1:44:26:c4:
1f:ce:27:59:c9:21:a7:40:d6:c4:44:6c:91:c9:fa:
12:74:e0:47:63:51:87:12:15:9d:aa:27:31:ac:2b:
cf:08:0d:78:3d:32:d0:b2:07:45:f8:7d:5f:ba:6c:
13:08:5e:40:26:6b:7d:db:e2:e2:9c:17:8a:2c:ff:
85:4e:cb:59:b7:f7:8d:28:c3:26:76:50:86:97:3c:
38:a1:1a:d7:4b:d1:78:99:ba:e4:b8:06:ff:84:cc:
13:e7:16:df:fb:9b:df:2c:29:fe:0a:51:23:69:cf:
77:cc:82:8b:53:80:2b:19:b9:62:4f:5f:22:4c:3c:
b7:96:b2:df:2b:ea:8a:42:dd:71:1c:b6:54:61:69:
ae:ea:34:1b:96:d1:86:d7:8a:53:eb:8c:db:ef:bd:
e8:b6:f7:3d:f1:93:2c:44:2a:21:ac:7f:6c:a1:21:
fa:2c:2e:c6:39:5c:0d:bc:14:a5:8d:72:e7:ef:4a:
76:41:40:23:12:44:f3:5d:13:bd:a8:68:20:14:4e:
4e:a6:ef:8a:77:c0:21:95:30:db:16:55:3c:3e:4b:
18:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:7A:12:93:0F:F5:87:65:ED:BF:CA:58:9E:1F:68:DC:C1:73:F5:56
X509v3 Authority Key Identifier:
keyid:E3:CF:45:F8:05:10:63:BB:DB:31:7F:DD:15:11:32:A9:40:04:FD:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/827E77F2F71311EC9205FD0DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.189.68.0/23
Signature Algorithm: sha256WithRSAEncryption
3b:11:9b:fb:a9:2f:0a:10:71:a8:e8:96:86:a7:89:dd:b5:33:
b2:03:e5:a9:f9:2f:e1:ea:c0:19:7b:b4:9b:25:48:1b:e3:22:
aa:e2:8c:7b:9a:22:5c:3d:1f:9a:49:9a:1f:43:ad:5c:5c:55:
37:b1:5a:65:74:6d:05:82:40:c1:a1:f1:68:30:b5:76:8a:e4:
6f:75:35:39:4d:aa:7b:f7:a2:64:af:00:61:a7:1b:53:01:57:
75:ea:f4:30:c7:78:ea:e6:b6:0d:02:62:43:39:06:fd:46:23:
84:36:35:df:f1:d9:77:94:ea:7d:5c:91:56:35:72:ec:98:37:
07:e7:8a:7d:ad:23:a1:d6:fe:99:d0:7a:33:57:47:cf:18:21:
40:7f:58:0b:98:a0:70:8a:f2:7e:c3:26:b0:44:85:a8:fc:44:
19:26:50:fa:e9:f9:e7:67:31:a0:a4:fd:ec:c1:7f:02:b3:a7:
64:5c:0d:01:a4:e6:27:ec:b4:3d:28:f2:71:8c:f8:9d:7e:0a:
1e:4a:d3:99:b3:16:85:f3:9a:41:97:91:f1:c9:25:39:ab:c5:
17:d8:19:cd:61:6f:5a:7e:a5:00:aa:a9:c1:f9:46:4b:6a:f8:
4c:dc:d5:c3:29:4f:62:3d:ee:83:27:51:80:82:b7:ed:35:02:
07:90:53:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:48 2024 by rpki-client on console-ams.rpki-client.org