Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/E99BE506465A11EC8D375985C4F9AE02.roa
File: E99BE506465A11EC8D375985C4F9AE02.roa (raw, json)
Hash identifier: t9RDKFLFR6wDs6f+xESb9Fo9AsDUkgClbSiQgz2DEuY=
Subject key identifier: 7B:51:F8:2F:91:95:3E:43:21:D6:DB:53:0F:D3:FD:F0:7C:BC:86:05
Certificate issuer: /CN=A91998BE/serialNumber=D0D0D6CD68770C38783BBEB841B112D0560174A2
Certificate serial: 0444
Authority key identifier: D0:D0:D6:CD:68:77:0C:38:78:3B:BE:B8:41:B1:12:D0:56:01:74:A2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/E99BE506465A11EC8D375985C4F9AE02.roa
Signing time: Wed 29 Dec 2021 23:18:19 +0000
ROA not before: Wed 29 Dec 2021 23:18:19 +0000
ROA not after: Thu 02 Mar 2023 00:00:00 +0000
asID: 2914
IP address blocks: 103.125.146.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1092 (0x444)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91998BE/serialNumber=D0D0D6CD68770C38783BBEB841B112D0560174A2
Validity
Not Before: Dec 29 23:18:19 2021 GMT
Not After : Mar 2 00:00:00 2023 GMT
Subject: CN=61ccecbb-27e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:1b:99:80:ba:a7:c3:64:88:c9:f3:8a:37:ce:
df:66:4e:5f:20:59:f2:ab:77:20:c2:b2:57:12:3f:
5e:97:d2:fe:37:a7:c1:92:d8:97:41:ba:2c:4f:60:
da:f8:72:15:1e:b3:ee:6f:87:b2:51:04:9b:01:21:
7f:68:8f:c2:46:c7:f2:08:0c:fd:be:2c:75:92:85:
a1:18:82:ee:b4:cb:5e:f4:07:fa:78:23:40:5c:59:
20:14:81:50:c7:f1:a4:ce:9b:9d:12:ae:0f:30:b4:
91:83:c1:a7:ee:09:dd:84:ed:b2:cd:63:61:65:f0:
29:dd:0b:8d:11:dd:cd:2a:5b:14:61:f1:84:c4:3c:
ee:ee:24:f1:d1:b8:04:ab:42:c3:d4:bd:92:47:e2:
16:b0:66:61:59:6c:fa:89:0d:f0:22:23:5c:92:c2:
ae:36:7e:aa:d4:c7:e1:aa:ac:1d:76:64:0f:7b:1b:
0e:be:71:3d:05:14:fb:33:15:8b:4a:2b:ca:a2:41:
cd:f7:6c:a5:27:91:53:9b:35:b8:a6:6e:fa:76:39:
5d:d7:c8:ce:34:d4:a6:5f:0a:82:ac:4e:3d:f4:0e:
2e:56:a5:a7:0e:be:a7:3e:bc:6a:68:2d:f9:c5:20:
20:48:be:e3:a7:ba:a4:0d:00:15:1d:95:e1:fd:a0:
60:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:51:F8:2F:91:95:3E:43:21:D6:DB:53:0F:D3:FD:F0:7C:BC:86:05
X509v3 Authority Key Identifier:
keyid:D0:D0:D6:CD:68:77:0C:38:78:3B:BE:B8:41:B1:12:D0:56:01:74:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/E99BE506465A11EC8D375985C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.125.146.0/24
Signature Algorithm: sha256WithRSAEncryption
72:f7:8b:e3:d5:89:2b:87:78:d1:f4:bb:b8:92:9d:a8:a2:a0:
d8:35:25:b5:0c:50:31:95:dd:ca:e8:41:13:30:3f:73:4f:d7:
10:48:62:be:bf:71:27:04:ad:1d:21:95:62:50:87:0d:88:b7:
c0:d1:f6:ce:69:8a:7a:38:80:dd:cb:84:14:e7:9b:a9:ee:f3:
4c:98:f9:bc:c9:54:45:ec:96:0f:43:f8:24:a7:79:19:dc:84:
fc:46:88:6e:83:43:d6:4c:4e:6b:ff:d3:10:e7:4e:39:da:a9:
49:15:6a:5a:fa:43:24:2a:d5:06:c4:9d:c8:26:ec:9e:ee:6f:
18:02:79:c8:4c:11:a5:7c:ac:dc:e3:97:58:ea:3b:c6:89:1c:
7e:42:67:57:ce:9c:eb:c5:8a:b7:0f:2b:03:f6:e1:b5:d3:32:
6d:7b:24:c7:0f:ff:8d:2d:98:12:f6:24:40:e5:9e:e4:5c:47:
36:fd:5d:c0:26:c3:b3:be:24:13:94:a1:79:8a:eb:3a:38:86:
07:69:85:1b:e6:4d:ec:c5:81:83:e5:5f:e9:a9:4c:8f:d0:38:
bc:95:0f:46:b0:80:2a:82:6b:3d:0a:03:91:a9:18:28:90:fb:
40:b6:2d:b4:4d:79:0d:4e:d4:d1:d8:81:24:0d:61:eb:6f:67:
a6:95:d4:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:00 2023 by rpki-client on console-fra.rpki-client.org