Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/728F1974F1F911EC8812366EC4F9AE02.roa
File: 728F1974F1F911EC8812366EC4F9AE02.roa (raw, json)
Hash identifier: cGgsAdU6CgrLQAhtt8Bp/cHPaFitl2cUvEvR9BK533w=
Subject key identifier: 45:27:5E:B8:05:54:56:48:46:40:6B:44:41:06:31:CC:06:68:22:6C
Certificate issuer: /CN=A91998BE/serialNumber=D0D0D6CD68770C38783BBEB841B112D0560174A2
Certificate serial: 06B1
Authority key identifier: D0:D0:D6:CD:68:77:0C:38:78:3B:BE:B8:41:B1:12:D0:56:01:74:A2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/728F1974F1F911EC8812366EC4F9AE02.roa
Signing time: Mon 26 Dec 2022 22:59:00 +0000
ROA not before: Mon 26 Dec 2022 22:59:00 +0000
ROA not after: Fri 01 Mar 2024 00:00:00 +0000
asID: 147186
IP address blocks: 103.125.147.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1713 (0x6b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91998BE/serialNumber=D0D0D6CD68770C38783BBEB841B112D0560174A2
Validity
Not Before: Dec 26 22:59:00 2022 GMT
Not After : Mar 1 00:00:00 2024 GMT
Subject: CN=63aa2734-f006
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:29:77:86:55:fe:ff:c0:65:99:5f:6d:9b:49:
36:a8:ea:17:e5:16:7e:1d:3f:6a:5f:b3:a9:d5:12:
15:63:2e:91:ec:8f:f4:25:d5:3d:46:e7:fc:27:f3:
ea:bf:9d:1e:49:d4:ff:8f:88:ad:46:54:35:a1:e5:
da:e9:ad:0c:cf:58:ee:83:1d:7e:05:b8:1c:40:78:
fc:6d:38:1d:ca:76:9f:43:53:fd:e4:65:f9:fa:a5:
86:b0:73:b3:79:42:51:1e:6e:28:de:83:59:dd:3d:
78:98:10:a6:65:95:ea:b2:91:e2:71:ea:c6:5d:20:
92:8e:83:ad:99:9b:be:2d:24:2d:e9:bb:3c:df:9e:
c9:38:2d:6a:c7:7b:78:9c:e7:a7:84:e2:58:56:59:
01:ef:fd:b3:70:28:c8:7e:eb:c3:68:8a:8f:41:c8:
b7:1e:b2:a9:6c:ed:8e:22:95:b9:d2:62:46:7c:03:
af:9c:57:29:1d:78:96:fc:69:f0:e1:f8:48:14:e2:
b6:b9:da:74:9b:6f:ef:d9:3f:80:e9:32:b5:f6:20:
60:db:1e:31:34:17:e8:2a:8f:98:89:8b:5c:a8:fe:
fa:7e:88:df:7a:51:64:14:81:59:a9:cd:28:0d:a1:
bc:00:ae:8d:15:72:b7:bd:0e:80:1e:7b:36:f9:24:
d7:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:27:5E:B8:05:54:56:48:46:40:6B:44:41:06:31:CC:06:68:22:6C
X509v3 Authority Key Identifier:
keyid:D0:D0:D6:CD:68:77:0C:38:78:3B:BE:B8:41:B1:12:D0:56:01:74:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/728F1974F1F911EC8812366EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.125.147.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:c3:41:d2:f6:d2:ea:4a:5a:40:aa:81:e2:68:0c:7a:17:f0:
d8:be:4e:53:36:48:73:8e:54:7a:f8:96:05:a2:8b:ed:8f:e9:
89:20:a3:61:0c:f8:5c:e5:18:13:e0:33:f9:f8:d5:fb:0c:e1:
4c:44:59:e4:fc:91:0d:84:8a:d1:00:42:33:8e:f2:bd:ef:de:
82:ab:ab:ff:d8:3b:06:aa:06:b4:c7:5c:1a:4f:34:23:3b:cd:
26:3e:b3:e8:e4:59:e0:6d:90:f6:f2:c6:75:70:12:11:76:0c:
f9:68:9a:a9:0b:6e:60:d3:c7:b5:0c:a3:28:3d:1e:60:0d:1c:
e9:94:ce:e2:cd:c1:93:b9:65:b9:12:d5:d7:a6:e6:70:c7:75:
50:2b:d0:4d:ad:6a:24:40:d5:d8:bd:cb:9a:86:70:ae:51:b9:
08:28:eb:c6:ef:34:66:6d:49:32:c6:65:e9:71:0c:57:59:3e:
c7:a6:cc:78:ba:a9:58:d4:52:1d:1e:48:67:84:05:59:3a:7c:
dc:67:5a:f7:de:14:8f:d5:ec:5f:72:08:4a:53:d5:b1:f7:2d:
fc:cf:59:2d:22:f3:78:d1:b3:61:62:55:54:95:16:a7:95:84:
76:13:c0:24:57:51:8a:cc:4a:6f:76:2a:02:c0:12:24:83:30:
fd:02:01:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:34 2024 by rpki-client on console-fra.rpki-client.org