Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3B91/A365336E3E2411EC9B55E152C4F9AE02/4FBFE1443E2611ECA29D2A53C4F9AE02.roa
File: 4FBFE1443E2611ECA29D2A53C4F9AE02.roa (raw, json)
Hash identifier: M9s6AZtHMn6rvvksMoqeaavUx+/DGSUaIQjdOte0rKg=
Subject key identifier: 93:9B:1D:E7:83:13:C0:27:14:A6:56:50:5D:D7:2A:00:30:04:84:39
Certificate issuer: /CN=A91A3B91/serialNumber=AD102ED0289DC4E4FADE70B34D7660CA0D2BBD2B
Certificate serial: 02C2
Authority key identifier: AD:10:2E:D0:28:9D:C4:E4:FA:DE:70:B3:4D:76:60:CA:0D:2B:BD:2B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rRAu0CidxOT63nCzTXZgyg0rvSs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A3B91/A365336E3E2411EC9B55E152C4F9AE02/4FBFE1443E2611ECA29D2A53C4F9AE02.roa
Signing time: Wed 21 Dec 2022 03:42:49 +0000
ROA not before: Wed 21 Dec 2022 03:42:49 +0000
ROA not after: Fri 01 Mar 2024 00:00:00 +0000
asID: 212806
IP address blocks: 103.175.234.0/23 maxlen: 23
103.175.234.0/24 maxlen: 24
103.175.235.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 706 (0x2c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A3B91/serialNumber=AD102ED0289DC4E4FADE70B34D7660CA0D2BBD2B
Validity
Not Before: Dec 21 03:42:49 2022 GMT
Not After : Mar 1 00:00:00 2024 GMT
Subject: CN=63a280b8-3518
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:a7:a3:3a:96:b0:e0:09:b3:9d:ee:e1:4f:9d:
ec:d9:bf:6d:d9:33:c7:0c:20:46:e3:a0:cd:f3:3f:
b6:4c:5e:30:90:43:0e:2c:d3:d9:43:33:d5:e3:e9:
26:dc:c8:63:82:61:74:1e:47:f3:db:a0:56:03:28:
83:1d:d3:1e:93:ef:2e:27:23:f6:0c:4a:65:40:27:
79:19:36:01:17:29:97:60:0f:5f:c5:80:46:8c:ee:
d8:b2:c3:14:48:5d:8d:85:fc:e2:d4:87:d9:28:ea:
f5:8f:d0:94:7a:55:1a:b7:2d:f0:87:1d:0d:e2:8a:
c2:33:19:64:6a:7f:27:9a:69:df:67:78:26:21:5f:
d6:e5:d3:b8:50:a1:d6:4a:ad:f2:64:ca:22:19:1a:
57:dd:7b:4d:62:1d:f3:61:7c:28:ec:d9:64:f2:e3:
f3:5a:a1:83:36:0a:bc:66:d9:df:3a:13:fe:5b:a1:
6f:69:e1:6f:7e:f7:34:d4:56:a0:b3:0f:b5:0e:9e:
58:c4:d0:20:a3:05:6e:ca:dc:0e:35:12:8b:00:f5:
a7:9e:6a:60:87:ab:91:ae:fd:6b:34:21:79:f0:ac:
1e:0b:4a:f7:85:8b:61:1c:a3:1b:52:a4:4b:01:9f:
81:88:79:f9:e5:25:2a:9c:0e:0a:16:9e:0f:10:26:
4e:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:9B:1D:E7:83:13:C0:27:14:A6:56:50:5D:D7:2A:00:30:04:84:39
X509v3 Authority Key Identifier:
keyid:AD:10:2E:D0:28:9D:C4:E4:FA:DE:70:B3:4D:76:60:CA:0D:2B:BD:2B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A3B91/A365336E3E2411EC9B55E152C4F9AE02/rRAu0CidxOT63nCzTXZgyg0rvSs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rRAu0CidxOT63nCzTXZgyg0rvSs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3B91/A365336E3E2411EC9B55E152C4F9AE02/4FBFE1443E2611ECA29D2A53C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.175.234.0/23
Signature Algorithm: sha256WithRSAEncryption
39:b7:a2:cf:31:ec:94:49:6a:c8:45:38:5d:c5:e7:c6:47:04:
9f:aa:4d:b6:f0:93:0f:3d:9c:26:71:b5:7a:d0:fb:0e:51:64:
89:27:5b:32:25:a1:db:c9:64:c2:50:3d:43:89:b1:5b:e0:c3:
a8:b1:dd:eb:18:73:5c:c7:36:25:d5:76:33:1f:a5:e0:0a:31:
91:9b:1e:7d:e9:e8:d2:92:2b:a6:55:9e:16:03:0d:68:4f:60:
01:41:f7:03:21:cc:44:21:4e:e4:7c:b9:5a:a3:73:f2:20:35:
df:64:51:16:cb:79:77:d8:d4:43:a7:57:9f:d6:80:c5:4b:98:
31:99:33:39:47:43:70:bf:77:21:d9:80:f4:fe:a1:7c:15:95:
dc:43:16:85:65:5e:70:d6:1f:8d:88:2c:06:f1:3f:f8:0b:aa:
32:d8:93:9c:90:5d:c2:4b:a1:cb:8e:f1:ee:f7:f1:a4:19:64:
f7:ea:5c:ea:b7:6a:a2:0d:c4:2d:b8:27:cf:48:c1:ca:72:10:
ec:c8:07:e3:ec:ca:cd:c7:b2:b0:9e:ce:4e:50:17:49:61:28:
66:2a:c4:da:53:84:55:46:71:2d:96:c9:cb:b6:d2:d9:05:c3:
84:8e:9d:f9:a9:4c:ea:eb:98:5c:53:35:4f:6c:01:d4:23:0a:
02:21:5a:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:35 2024 by rpki-client on console-fra.rpki-client.org