Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9199B04/642E07DC88A411ECA2A35020C4F9AE02/3E244BEE88A611EC8EBF0820C4F9AE02.roa
File: 3E244BEE88A611EC8EBF0820C4F9AE02.roa (raw, json)
Hash identifier: gqURI6pBP7rz50/Uk93MYPtox8c2FS/AQ6V496PaTDQ=
Subject key identifier: 65:BA:B1:55:A7:3B:A5:41:8E:F9:35:BE:B2:B7:6A:F3:76:FB:CB:09
Certificate issuer: /CN=A9199B04/serialNumber=A58250AEAB13B8D3D3279E322E1812FDAD46D629
Certificate serial: 32
Authority key identifier: A5:82:50:AE:AB:13:B8:D3:D3:27:9E:32:2E:18:12:FD:AD:46:D6:29
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pYJQrqsTuNPTJ54yLhgS_a1G1ik.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9199B04/642E07DC88A411ECA2A35020C4F9AE02/3E244BEE88A611EC8EBF0820C4F9AE02.roa
Signing time: Thu 03 Mar 2022 04:53:22 +0000
ROA not before: Thu 03 Mar 2022 04:53:21 +0000
ROA not after: Mon 01 May 2023 00:00:00 +0000
asID: 59339
IP address blocks: 103.93.24.0/23 maxlen: 23
103.197.186.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50 (0x32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9199B04/serialNumber=A58250AEAB13B8D3D3279E322E1812FDAD46D629
Validity
Not Before: Mar 3 04:53:21 2022 GMT
Not After : May 1 00:00:00 2023 GMT
Subject: CN=622049c1-b353
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:f5:de:d5:c8:e0:e0:f5:f8:f8:29:1e:f2:9f:
3a:46:63:9a:3a:a2:25:08:0d:28:d8:3c:c9:62:34:
a0:57:16:2e:ba:12:24:f1:b1:1c:2f:f2:62:15:4f:
e1:eb:e3:7f:56:91:d4:a2:7e:54:06:23:35:5d:b3:
9a:81:dd:a1:fa:bd:2f:a4:0f:95:e9:7c:70:cb:df:
cd:6e:47:69:01:2a:eb:5a:e3:f9:d6:aa:a8:9d:ba:
f9:29:df:0a:ad:5d:23:b7:15:29:94:a5:79:e5:9a:
fd:c3:58:bc:c1:2a:f5:56:4d:e4:4c:41:be:4b:25:
de:1c:56:8b:82:a0:c9:46:8c:77:df:23:05:e9:cc:
79:83:08:42:89:d2:86:9b:1f:f6:67:0d:e2:30:bb:
72:08:c8:94:2e:91:96:6e:a8:ac:11:c0:8e:b5:57:
db:19:0f:a7:e6:bd:d7:8b:7e:c0:82:c4:8a:50:7e:
ee:37:f8:bd:7a:41:e0:1f:46:01:2b:c3:1b:01:86:
f3:ff:94:99:5e:92:95:4e:51:9e:3e:68:75:99:5c:
d7:01:cc:90:7b:bb:5b:dd:e8:9f:19:02:de:ce:97:
f7:12:8b:20:67:14:2e:9b:76:e1:09:0a:a3:ef:d4:
63:91:c0:af:e8:2e:44:be:9d:7a:6f:50:51:d5:32:
75:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:BA:B1:55:A7:3B:A5:41:8E:F9:35:BE:B2:B7:6A:F3:76:FB:CB:09
X509v3 Authority Key Identifier:
keyid:A5:82:50:AE:AB:13:B8:D3:D3:27:9E:32:2E:18:12:FD:AD:46:D6:29
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9199B04/642E07DC88A411ECA2A35020C4F9AE02/pYJQrqsTuNPTJ54yLhgS_a1G1ik.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pYJQrqsTuNPTJ54yLhgS_a1G1ik.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199B04/642E07DC88A411ECA2A35020C4F9AE02/3E244BEE88A611EC8EBF0820C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.93.24.0/23
103.197.186.0/23
Signature Algorithm: sha256WithRSAEncryption
22:97:9b:a6:a7:e5:f8:c1:08:24:83:78:0e:3b:26:5e:13:f1:
68:8b:67:c5:79:70:68:5c:b1:b9:e9:06:b7:b5:20:8c:25:4d:
bf:aa:37:58:d6:a2:04:73:a2:8e:58:78:9b:01:85:3d:33:67:
de:38:d4:01:53:ea:41:fd:09:b8:d2:83:aa:b0:77:04:25:c3:
0a:76:ab:7c:6b:07:89:4a:61:a5:06:fa:45:fe:cb:24:9b:fa:
eb:2c:e0:34:3c:11:a1:2b:48:0e:78:85:5e:a9:e5:57:35:e7:
b8:13:d5:9c:00:40:25:41:38:57:9c:39:51:d7:45:75:af:2d:
72:ce:4b:05:bd:93:1a:55:b1:09:b4:47:99:ea:2c:01:6c:99:
c4:6d:77:25:7e:a0:a8:3a:1a:b4:61:aa:d9:9b:e7:c7:24:18:
ad:a2:59:03:0c:2b:8b:0b:8f:37:d0:90:e4:8d:64:8a:8b:ab:
d2:42:ec:1a:1e:e6:5f:e7:80:4a:41:f3:6f:06:74:22:e7:49:
9d:c6:c6:47:92:f7:d7:72:55:28:54:ce:fe:32:0f:7e:84:8f:
71:0a:e3:45:38:8e:fd:76:cd:39:5f:a6:92:cd:05:5a:8b:19:
a3:a3:ca:84:c1:96:a2:f8:fe:ba:54:80:1f:51:86:20:97:c2:
b2:35:1e:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:57 2023 by rpki-client on console-ams.rpki-client.org