Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A919C7BB/8CE59DA4645F11EABC69297AC4F9AE02/8E5C6E128B5711ECB078821AC4F9AE02.roa
File: 8E5C6E128B5711ECB078821AC4F9AE02.roa (raw, json)
Hash identifier: U6TZJnybNLrbDKJkf65dtwkeP/p3B2ZwrUqJYS1xITw=
Subject key identifier: 96:D7:0B:E4:AB:A8:75:26:33:D8:0A:D3:C5:AB:8B:42:A8:62:47:1C
Certificate issuer: /CN=A919C7BB/serialNumber=BB7875E4C6E544B5747A115FE8CDF6898C8DE733
Certificate serial: 0697
Authority key identifier: BB:78:75:E4:C6:E5:44:B5:74:7A:11:5F:E8:CD:F6:89:8C:8D:E7:33
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3h15MblRLV0ehFf6M32iYyN5zM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919C7BB/8CE59DA4645F11EABC69297AC4F9AE02/8E5C6E128B5711ECB078821AC4F9AE02.roa
Signing time: Fri 11 Feb 2022 16:27:51 +0000
ROA not before: Fri 11 Feb 2022 16:27:51 +0000
ROA not after: Fri 31 Mar 2023 00:00:00 +0000
asID: 140604
IP address blocks: 103.146.219.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1687 (0x697)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919C7BB/serialNumber=BB7875E4C6E544B5747A115FE8CDF6898C8DE733
Validity
Not Before: Feb 11 16:27:51 2022 GMT
Not After : Mar 31 00:00:00 2023 GMT
Subject: CN=62068e87-90af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:bc:ef:63:8b:71:74:21:48:05:43:8c:b9:ee:
15:ad:1b:74:fb:a8:bb:5f:b3:79:eb:80:92:26:a1:
1d:b7:d6:ff:22:e6:21:ec:5f:f9:db:df:5b:dc:de:
ba:3e:6d:c4:c7:97:5f:40:a7:ae:bf:e9:50:94:b5:
36:f5:cd:c1:e2:e3:db:61:68:82:ab:38:a0:00:f6:
bf:59:0e:9a:c7:61:e3:09:a8:3f:80:b7:a2:54:06:
34:41:ef:c4:dd:05:84:0e:a1:d6:fc:17:d1:d5:f5:
32:0c:c7:4b:8a:e1:df:2f:c4:de:ae:7a:95:f6:cf:
91:c6:4e:42:94:f6:4f:77:0c:00:ac:81:bf:9f:76:
cc:e8:4d:ea:93:4d:45:f7:45:d3:fd:89:d3:23:ff:
29:6c:9d:fe:9f:2c:af:c8:97:5d:ee:6d:7f:66:91:
7e:c3:46:3d:e9:4e:48:9e:12:2f:ff:76:c7:b9:15:
e1:a2:f6:40:1a:e8:39:f6:49:aa:52:7f:44:57:ed:
d1:4f:ab:e1:ec:db:b1:b5:c9:87:37:7e:a9:6d:26:
02:9d:de:0d:00:d9:5d:d1:22:61:65:98:cc:23:da:
26:a7:12:cd:a8:26:5a:45:31:d6:c1:e1:9f:81:24:
a0:3f:9d:d2:fd:25:68:40:14:c1:8d:56:bf:f4:8a:
36:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:D7:0B:E4:AB:A8:75:26:33:D8:0A:D3:C5:AB:8B:42:A8:62:47:1C
X509v3 Authority Key Identifier:
keyid:BB:78:75:E4:C6:E5:44:B5:74:7A:11:5F:E8:CD:F6:89:8C:8D:E7:33
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919C7BB/8CE59DA4645F11EABC69297AC4F9AE02/u3h15MblRLV0ehFf6M32iYyN5zM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3h15MblRLV0ehFf6M32iYyN5zM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C7BB/8CE59DA4645F11EABC69297AC4F9AE02/8E5C6E128B5711ECB078821AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.146.219.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:16:9a:ed:0f:73:a7:65:06:cd:9a:20:e0:c8:6a:fe:51:89:
f3:b7:57:0b:a7:74:3d:41:19:ec:d8:72:16:88:e2:c7:4e:91:
84:e8:1c:43:06:e2:fa:a5:cc:b6:71:ca:f4:08:18:eb:d9:d7:
1e:06:20:c6:45:b7:6c:51:57:5e:32:d9:c1:a9:51:f0:b6:a5:
78:6f:bf:cc:27:92:33:f2:f3:e1:37:b0:ea:02:34:10:4d:8e:
10:1a:09:36:55:e2:be:b1:73:20:83:c7:57:5c:1f:1d:3e:ac:
2e:fe:cd:48:c4:d1:34:92:3d:af:e9:d8:13:28:f7:45:35:8f:
1c:c2:8a:f0:40:f1:c1:23:7f:f5:92:70:8a:84:12:e3:22:1d:
e3:b7:74:52:f7:da:fe:23:22:9d:4d:96:c8:0a:98:6f:b7:8b:
33:38:33:49:35:6c:03:28:86:a7:8b:a7:15:d6:d7:e3:e2:8d:
72:1f:9b:2d:ec:65:94:38:27:39:7c:86:51:f4:2d:d8:6c:9c:
a9:da:7e:e2:23:f3:5e:27:1e:0a:1b:47:14:e2:26:b2:31:19:
5a:b5:d0:58:8e:8a:74:b3:c3:39:e7:31:7f:bf:63:f4:15:f8:
cb:39:a6:c6:87:6f:3b:ba:3a:b2:c6:c9:70:43:50:b3:73:c9:
c5:a8:51:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:35 2024 by rpki-client on console-fra.rpki-client.org