Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A919F6A8/F3BD4C3649CB11E7A4A87C7BC4F9AE02/0F364FC0127711EDA0892B82C4F9AE02.roa
File: 0F364FC0127711EDA0892B82C4F9AE02.roa (raw, json)
Hash identifier: hw+3Av5bhZvHbrvs3HTRAOljXwf9NBoU9GZ9TNanGxA=
Subject key identifier: 07:CE:DB:CB:31:87:A0:1B:15:74:5A:1D:52:A1:BD:AB:29:71:DF:A4
Certificate issuer: /CN=A919F6A8/serialNumber=F7D74C7FB8B0BAEFC3635CD4E35048AF88E39EEF
Certificate serial: 1812
Authority key identifier: F7:D7:4C:7F:B8:B0:BA:EF:C3:63:5C:D4:E3:50:48:AF:88:E3:9E:EF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/99dMf7iwuu_DY1zU41BIr4jjnu8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919F6A8/F3BD4C3649CB11E7A4A87C7BC4F9AE02/0F364FC0127711EDA0892B82C4F9AE02.roa
Signing time: Tue 02 Aug 2022 15:23:29 +0000
ROA not before: Tue 02 Aug 2022 15:23:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 997
IP address blocks: 103.19.8.0/23 maxlen: 24
103.93.252.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6162 (0x1812)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919F6A8/serialNumber=F7D74C7FB8B0BAEFC3635CD4E35048AF88E39EEF
Validity
Not Before: Aug 2 15:23:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=62e94170-13d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:5e:ae:19:9f:8a:c7:c5:97:f7:72:ac:75:d3:
47:9c:b5:e9:56:cc:ed:62:d6:53:72:e3:cc:51:54:
5a:e9:c9:45:29:fd:55:53:8d:cb:25:c6:79:e4:0a:
45:2c:c6:b6:40:23:ef:19:9d:95:c5:9d:1e:15:52:
bc:a6:2b:31:11:64:03:dc:3c:47:3d:53:89:d0:e8:
dc:3a:d9:96:41:10:11:18:b3:84:43:1b:d2:29:b5:
a6:b9:a3:0e:31:4d:be:1d:13:2a:ef:da:c1:08:5b:
52:aa:58:0c:67:59:81:fa:83:33:ff:d0:67:eb:50:
ea:4e:85:db:34:65:a0:9d:b3:29:f1:9d:fc:39:1e:
9c:bc:00:da:81:76:b5:48:09:e6:fb:7d:4e:ae:11:
48:17:2b:e8:5d:16:be:45:39:18:cd:ae:42:f0:bf:
15:cd:f0:f4:f7:a6:13:25:b4:40:6f:d3:58:aa:5b:
09:1a:87:97:16:ed:5e:e0:f2:22:3c:5f:ab:fc:96:
37:48:8b:d0:43:0d:e6:38:ef:f3:d6:80:f9:af:d2:
f3:1d:48:94:4a:52:98:55:1a:4f:f3:93:dc:a7:5d:
dc:02:20:d4:e8:30:6f:5c:5f:e4:cc:e6:cd:d1:1d:
d3:bc:8c:5a:1d:af:c6:89:74:57:57:d5:ed:b5:82:
50:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:CE:DB:CB:31:87:A0:1B:15:74:5A:1D:52:A1:BD:AB:29:71:DF:A4
X509v3 Authority Key Identifier:
keyid:F7:D7:4C:7F:B8:B0:BA:EF:C3:63:5C:D4:E3:50:48:AF:88:E3:9E:EF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919F6A8/F3BD4C3649CB11E7A4A87C7BC4F9AE02/99dMf7iwuu_DY1zU41BIr4jjnu8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/99dMf7iwuu_DY1zU41BIr4jjnu8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F6A8/F3BD4C3649CB11E7A4A87C7BC4F9AE02/0F364FC0127711EDA0892B82C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.19.8.0/23
103.93.252.0/24
Signature Algorithm: sha256WithRSAEncryption
69:51:f6:63:61:4c:30:43:5b:53:7c:a3:7d:ce:03:a5:42:03:
f3:c3:15:9e:5b:d6:99:12:73:62:66:ba:a7:29:38:32:ea:79:
af:da:76:41:92:5d:cd:e3:7c:c0:10:cc:1b:5f:c3:3e:c8:54:
b0:ab:f6:5b:7f:5c:b2:c6:d7:dd:c8:14:7d:02:da:88:66:f2:
95:f2:65:b9:60:ac:4d:e4:a2:ae:85:02:26:c5:ca:96:5a:a3:
4a:5e:f0:a7:96:52:3e:53:5c:ba:f0:82:d7:59:c5:53:3b:38:
25:c1:8c:55:5c:4d:2d:04:93:8a:5a:e7:78:01:c3:b1:e3:a6:
4b:e4:2d:61:5a:ce:90:b7:90:0e:d4:f5:22:cd:53:b3:ed:74:
6b:ca:03:59:69:e6:db:a8:62:d4:3f:16:d5:e8:3f:56:62:b7:
dd:a7:63:6b:ab:84:52:2e:91:36:a2:58:85:3e:f7:70:83:94:
49:5c:88:f5:9f:2a:af:d7:14:ae:25:e8:ef:4a:20:1f:5d:4f:
4a:31:c9:a0:90:52:f6:83:81:1d:d4:ef:3a:b2:4a:15:59:48:
3d:de:c4:e8:6b:62:11:37:5c:1e:2d:4f:82:27:27:23:a4:38:
1a:68:40:74:30:68:6c:c2:9d:db:64:20:a9:ab:c5:22:87:3c:
85:b1:18:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:35 2024 by rpki-client on console-fra.rpki-client.org