Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/EB883CE4354F11EEA069A545C4F9AE02.roa
File: EB883CE4354F11EEA069A545C4F9AE02.roa (raw, json)
Hash identifier: bNXho7WmvhAgyqWqszmQsZg9OOYXslPX+Bs5ISgmJSQ=
Subject key identifier: 75:25:02:01:58:CB:B5:09:2D:1A:2A:B2:C5:F4:DA:29:82:23:8B:7E
Certificate issuer: /CN=A919EF67/serialNumber=F8D693A26964CD3C5A199D2C26ED22647A20E77E
Certificate serial: AD
Authority key identifier: F8:D6:93:A2:69:64:CD:3C:5A:19:9D:2C:26:ED:22:64:7A:20:E7:7E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/EB883CE4354F11EEA069A545C4F9AE02.roa
Signing time: Mon 07 Aug 2023 18:26:27 +0000
ROA not before: Mon 07 Aug 2023 18:26:27 +0000
ROA not after: Wed 31 Jan 2024 00:00:00 +0000
asID: 131471
IP address blocks: 103.19.49.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173 (0xad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919EF67/serialNumber=F8D693A26964CD3C5A199D2C26ED22647A20E77E
Validity
Not Before: Aug 7 18:26:27 2023 GMT
Not After : Jan 31 00:00:00 2024 GMT
Subject: CN=64d13752-0816
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:12:89:3d:0a:28:72:14:2f:56:cc:0d:9b:5f:
63:2d:0b:d9:ba:f9:db:cc:43:e5:49:b4:5b:c4:f7:
fe:2e:f9:fa:b7:4f:e9:66:7b:fb:b6:31:02:32:81:
07:d6:6d:7a:d4:fc:d4:1a:84:7f:4a:62:89:8e:4f:
6f:52:cf:9e:7e:ff:78:b6:ce:ee:d1:ee:61:c3:11:
10:11:67:ef:d0:1d:0e:48:00:35:65:a1:72:b0:c1:
05:99:3e:3d:fd:90:45:97:51:bc:ec:0e:a2:50:1d:
65:c3:a7:98:5d:a6:22:b0:dd:b9:43:c6:dc:7b:ae:
00:c0:b6:90:a5:9f:88:c2:60:ac:0f:4f:4e:12:2d:
b6:e2:86:3a:af:e8:b1:b0:bd:48:d7:62:88:ea:e8:
f5:98:af:b4:d2:74:a9:da:09:67:8c:26:62:38:5e:
ec:35:1c:9a:41:90:28:91:36:ba:75:de:49:26:51:
74:3a:bd:36:ff:af:0a:5c:66:06:f4:3e:51:99:6c:
77:24:70:d8:93:08:d5:88:f2:74:ed:41:ca:cf:eb:
11:0c:6c:79:e1:8d:6b:36:2c:96:bb:ed:0e:8b:97:
0b:a2:7c:91:d6:d6:42:a0:9f:af:8f:a9:76:83:2a:
2b:2d:c1:8e:3a:0f:70:75:44:fc:30:1a:71:25:d2:
3d:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:25:02:01:58:CB:B5:09:2D:1A:2A:B2:C5:F4:DA:29:82:23:8B:7E
X509v3 Authority Key Identifier:
keyid:F8:D6:93:A2:69:64:CD:3C:5A:19:9D:2C:26:ED:22:64:7A:20:E7:7E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/EB883CE4354F11EEA069A545C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.19.49.0/24
Signature Algorithm: sha256WithRSAEncryption
26:30:bc:fd:ed:d6:89:2e:84:86:7c:9f:c7:29:02:e0:a2:5a:
cb:0c:e5:a0:72:1b:67:ba:18:f7:b7:3f:a4:8b:1e:2f:a4:64:
77:b0:46:40:ef:d5:8d:ed:91:dd:c7:e1:10:6b:23:2f:eb:bc:
fa:bb:de:d4:62:b3:f4:ad:6f:b0:9d:a8:c7:8b:7a:d4:2a:b1:
2d:c6:6a:a6:0a:49:06:1b:ef:42:b9:b8:db:d4:ea:69:76:d1:
76:87:79:98:ec:41:a4:ab:ae:57:e4:bd:04:05:7c:a8:43:f3:
63:bb:9a:f5:44:ac:29:2a:9a:dc:f0:9f:91:f3:58:44:df:06:
d2:07:25:74:bf:cb:98:2b:3e:17:fd:66:94:19:ce:a9:08:4b:
41:89:98:80:03:e0:d0:0f:c0:13:45:55:98:31:cf:d5:b4:4a:
53:79:75:a2:cc:ea:82:65:5e:bf:98:54:e5:2b:73:3a:09:75:
17:e7:aa:b5:20:4d:17:f2:64:1d:1d:84:dc:77:12:a0:ac:11:
71:64:e2:64:21:9d:43:70:01:fc:4e:e0:c3:ad:30:94:4b:81:
be:ae:7b:70:9b:fd:02:30:d5:df:19:39:91:8b:00:f2:f4:47:
87:b1:a1:f5:f2:81:bc:00:3c:35:86:c3:fb:77:75:3b:b5:1b:
67:32:fe:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:35 2024 by rpki-client on console-fra.rpki-client.org