Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/706C306EEE7E11EDA5207E28C4F9AE02.roa
File: 706C306EEE7E11EDA5207E28C4F9AE02.roa (raw, json)
Hash identifier: /jx6CkwTSS95l7gC77ZO9W/CbkjUytr+ccZbgloTfT8=
Subject key identifier: 3D:3A:4E:1B:80:6B:32:CE:8A:69:2D:81:33:B4:7B:7A:2C:B2:AE:7E
Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Certificate serial: 3CA8
Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/706C306EEE7E11EDA5207E28C4F9AE02.roa
Signing time: Tue 09 May 2023 15:30:34 +0000
ROA not before: Tue 09 May 2023 15:30:34 +0000
ROA not after: Tue 31 Oct 2023 00:00:00 +0000
asID: 150840
IP address blocks: 103.131.84.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15528 (0x3ca8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Validity
Not Before: May 9 15:30:34 2023 GMT
Not After : Oct 31 00:00:00 2023 GMT
Subject: CN=645a671a-7c8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:6f:7b:2d:55:5f:cc:5b:c2:3e:9c:80:b3:29:
cb:a3:70:23:cc:06:f4:5b:83:e8:ec:e1:29:03:26:
0c:2e:18:ab:25:34:f2:d3:77:d5:86:bf:c5:73:1d:
c6:07:35:6f:16:f2:b3:d1:8c:6e:a0:1d:30:49:86:
b0:78:94:90:68:23:c9:aa:54:05:f3:a5:6e:0a:50:
e1:c0:2f:3d:fe:94:28:1a:68:05:a8:1d:be:a7:09:
d4:56:6a:cf:b2:cc:34:98:67:2b:5d:d3:03:10:41:
9d:ef:c4:8c:59:6d:d7:93:55:d4:5d:d6:50:cb:cf:
21:11:97:73:d1:4a:83:b1:eb:65:cf:8d:6e:7a:3d:
48:38:d7:f3:f8:f9:d4:a9:10:3e:b8:71:5a:b4:b1:
be:80:b9:94:09:51:8f:7b:ec:e8:38:48:b3:2f:1c:
ef:2f:30:3c:13:7d:4f:a2:3b:86:8a:a0:e6:56:41:
b7:ec:b7:86:ed:9b:f9:04:89:fc:be:16:0a:2b:31:
a2:ad:7a:f0:d0:0f:15:c1:2e:65:8f:5a:fa:fa:fd:
30:4d:15:24:49:bb:61:03:2d:5d:07:69:cd:40:a7:
9a:85:47:7a:24:3b:8c:e3:3c:3c:03:9e:5f:f7:1d:
02:8b:d0:6b:ba:06:ed:60:c7:4d:f6:a5:9e:2c:f7:
5d:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:3A:4E:1B:80:6B:32:CE:8A:69:2D:81:33:B4:7B:7A:2C:B2:AE:7E
X509v3 Authority Key Identifier:
keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/706C306EEE7E11EDA5207E28C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.131.84.0/23
Signature Algorithm: sha256WithRSAEncryption
5c:15:de:98:14:bc:a5:3e:26:83:19:b0:82:4e:35:42:ac:2e:
a8:c3:a5:5a:b8:31:10:62:60:bf:4d:18:ad:14:e5:41:f1:0c:
6c:02:70:62:1e:97:bc:eb:6b:f4:d3:86:5d:0b:f6:e9:9f:6b:
50:0d:c0:fc:d6:8d:ec:08:45:e8:25:a8:0a:d3:37:e7:a1:9e:
00:78:e1:90:f8:b3:37:da:a8:81:5c:62:22:d7:cc:ff:73:dd:
a3:b9:4a:9d:7a:0c:77:51:43:a3:8c:a7:a4:46:60:9d:2b:c7:
a1:9b:f8:de:2d:54:77:27:85:dd:2f:3a:88:99:fe:24:0c:6b:
38:29:86:0a:63:60:91:25:12:c4:d3:f9:22:7b:56:26:43:69:
c8:9e:48:2c:94:89:a7:ff:a5:68:fa:25:f9:8a:51:42:b3:d8:
d5:c1:5b:d0:31:0d:33:ef:89:11:ce:fa:44:1b:f9:26:a9:c5:
86:06:87:02:61:d3:d8:99:1d:45:59:8b:28:72:cc:0a:9d:18:
bb:67:3a:35:e3:79:5b:16:35:82:53:a2:15:d6:45:b4:05:a1:
34:5c:a8:ed:4c:8a:b5:00:08:53:40:0b:93:37:95:9b:06:0e:
58:0e:91:25:bd:24:48:3d:32:fe:90:88:82:0f:ba:c0:38:57:
c6:aa:bd:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:36 2024 by rpki-client on console-fra.rpki-client.org