Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A919C7BB/8CE59DA4645F11EABC69297AC4F9AE02/34FF4A4A05A611EEA86A0C2BC4F9AE02.roa
File: 34FF4A4A05A611EEA86A0C2BC4F9AE02.roa (raw, json)
Hash identifier: urv23eza7TH2WUT7uwKFUb8dCn5ZqH0hkqfu+UsBp68=
Subject key identifier: 43:4D:CB:FC:22:45:B5:10:52:4A:57:5B:7F:F0:32:33:F0:4E:1D:E2
Certificate issuer: /CN=A919C7BB/serialNumber=BB7875E4C6E544B5747A115FE8CDF6898C8DE733
Certificate serial: 08F7
Authority key identifier: BB:78:75:E4:C6:E5:44:B5:74:7A:11:5F:E8:CD:F6:89:8C:8D:E7:33
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3h15MblRLV0ehFf6M32iYyN5zM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919C7BB/8CE59DA4645F11EABC69297AC4F9AE02/34FF4A4A05A611EEA86A0C2BC4F9AE02.roa
Signing time: Thu 08 Jun 2023 02:43:11 +0000
ROA not before: Thu 08 Jun 2023 02:43:11 +0000
ROA not after: Sun 31 Mar 2024 00:00:00 +0000
asID: 149768
IP address blocks: 103.146.219.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2295 (0x8f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919C7BB/serialNumber=BB7875E4C6E544B5747A115FE8CDF6898C8DE733
Validity
Not Before: Jun 8 02:43:11 2023 GMT
Not After : Mar 31 00:00:00 2024 GMT
Subject: CN=6481403f-48da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:78:07:10:7c:cf:a9:63:d8:b6:a6:37:5f:4d:
f3:c9:d9:88:d9:f2:d2:11:de:d5:ad:ae:77:65:84:
00:f5:15:a3:7b:60:68:63:db:48:f9:ac:d6:62:c8:
9b:cd:9b:f4:b1:e0:8f:04:6b:b5:b5:26:56:1a:e3:
cb:fa:5b:ae:4c:72:d7:aa:ca:14:fb:d2:db:51:b9:
21:f8:02:86:71:c2:b5:8d:f3:ca:85:87:ed:d9:c4:
b1:cd:b2:26:42:d0:da:6a:10:4c:ef:14:37:bd:f2:
6c:88:de:62:4a:06:ac:74:8d:10:8f:d0:1e:6d:2b:
47:1a:a9:e9:70:fb:7b:9e:13:25:5c:82:af:61:32:
f7:6c:62:fd:9a:b0:5c:a1:03:46:14:ca:e3:5a:86:
5c:1b:7e:3b:8c:c6:4d:9e:ac:0a:2e:8c:ac:1d:8f:
2a:39:f4:70:74:ad:d9:28:9b:e3:69:f2:2a:f8:b5:
a5:a3:ee:c5:93:9e:7d:fb:41:32:2a:e6:28:99:4b:
0c:97:f7:13:b6:13:77:34:28:05:cd:65:11:24:6f:
3a:38:51:6d:03:be:c0:08:84:13:02:45:a3:11:ab:
2a:a0:48:d8:f6:68:bb:58:38:d5:54:6f:1b:58:98:
8e:1d:4c:2d:53:f0:d1:d2:bc:90:1b:6a:c8:c6:8c:
14:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:4D:CB:FC:22:45:B5:10:52:4A:57:5B:7F:F0:32:33:F0:4E:1D:E2
X509v3 Authority Key Identifier:
keyid:BB:78:75:E4:C6:E5:44:B5:74:7A:11:5F:E8:CD:F6:89:8C:8D:E7:33
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919C7BB/8CE59DA4645F11EABC69297AC4F9AE02/u3h15MblRLV0ehFf6M32iYyN5zM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3h15MblRLV0ehFf6M32iYyN5zM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C7BB/8CE59DA4645F11EABC69297AC4F9AE02/34FF4A4A05A611EEA86A0C2BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.146.219.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:2d:91:0b:a9:e1:2e:a1:b4:a5:4c:5b:2f:56:da:a9:ed:9d:
8e:41:75:8b:4a:fe:90:20:61:fe:85:fd:e2:26:ec:5c:69:0e:
5d:95:d5:43:59:b3:ef:60:87:00:64:45:bd:02:31:9b:5c:45:
72:da:a4:57:af:fa:c4:cb:a6:f7:ed:98:3d:be:3c:ac:2b:23:
83:51:26:aa:e8:e1:3b:c5:91:a0:2b:c6:bc:88:c2:60:c0:1c:
1f:09:43:ed:c4:9c:6f:a6:64:23:15:00:38:eb:4f:53:4e:d2:
12:ea:00:5e:f1:b8:d3:ff:35:f6:ca:1a:63:70:fc:c6:04:40:
d1:a6:76:f1:a3:02:c6:77:5a:24:c9:67:05:71:8b:b9:ce:d6:
e3:cc:ac:0b:4a:50:a5:f5:3b:ae:58:5f:e6:9e:a9:23:c4:75:
e8:e8:74:69:04:c2:20:46:4e:a5:a4:57:5e:2a:40:52:be:88:
4c:eb:1e:21:77:db:10:66:6c:b4:e7:79:53:1e:56:5c:13:85:
83:03:ca:07:3e:3b:55:1b:6e:8e:0b:c7:b4:6a:8e:27:c0:7f:
92:6b:5b:9b:9d:27:52:97:d9:a0:f0:d6:eb:03:66:82:50:88:
14:2f:81:8c:91:4b:c1:8e:8f:ec:39:50:64:d7:a7:6d:e8:1c:
e6:94:1a:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:49 2024 by rpki-client on console-ams.rpki-client.org