Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/9297A35A3BED11EE88F80639C4F9AE02.roa
File: 9297A35A3BED11EE88F80639C4F9AE02.roa (raw, json)
Hash identifier: toy+O6Hs8A9TG5WcwDbzhnfAsj/VmwC7LTpO1gM1pto=
Subject key identifier: 6E:31:3C:00:65:24:28:D7:12:58:1C:18:6F:DA:0C:B5:9B:8C:DC:9F
Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Certificate serial: 3DBC
Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/9297A35A3BED11EE88F80639C4F9AE02.roa
Signing time: Wed 16 Aug 2023 04:30:05 +0000
ROA not before: Wed 16 Aug 2023 04:30:05 +0000
ROA not after: Tue 31 Oct 2023 00:00:00 +0000
asID: 150866
IP address blocks: 103.243.168.0/23 maxlen: 24
2401:1d60::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15804 (0x3dbc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Validity
Not Before: Aug 16 04:30:05 2023 GMT
Not After : Oct 31 00:00:00 2023 GMT
Subject: CN=64dc50cd-a380
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:8c:24:f8:40:43:ec:01:23:b2:3a:10:75:08:
22:02:49:a2:46:14:0e:1b:87:cd:71:63:16:72:02:
b1:82:89:06:fc:69:a2:e2:bc:f4:21:93:83:4d:a3:
aa:04:70:35:71:67:c6:15:9e:3b:3f:ee:32:fb:b6:
4b:cb:86:0d:fe:34:61:3c:8b:0f:3c:6c:c2:6d:4d:
c1:2b:c8:aa:e5:42:05:f6:97:84:ff:a1:7a:4f:f9:
0d:91:5c:65:15:84:f5:f5:91:d7:bc:05:ca:c4:49:
cd:d9:a0:18:39:0c:02:ed:62:44:dd:39:0d:b6:1f:
7c:1b:49:d3:0c:75:95:fb:9a:1d:6a:2f:af:9c:fd:
87:20:c8:f4:05:21:ac:a6:07:7e:18:2e:15:f8:ed:
0b:00:ce:d5:22:be:d3:47:ad:a6:e1:dc:dc:19:d4:
41:25:f2:ef:a3:7f:1a:63:a8:74:1c:5e:f0:c9:fd:
0f:5b:c8:e0:c2:33:fe:37:5c:1f:55:c6:94:42:fd:
ec:d1:e5:40:5c:90:1f:c2:2a:42:0f:71:5b:e0:63:
7f:87:cb:c9:e3:e2:97:44:fd:c7:b4:a4:ae:30:35:
55:f0:a5:e9:fd:21:b2:60:a1:5d:b6:94:e1:71:d2:
a0:52:0b:32:6a:ac:72:d3:cd:31:46:4e:a3:41:e1:
b5:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:31:3C:00:65:24:28:D7:12:58:1C:18:6F:DA:0C:B5:9B:8C:DC:9F
X509v3 Authority Key Identifier:
keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/9297A35A3BED11EE88F80639C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.243.168.0/23
IPv6:
2401:1d60::/48
Signature Algorithm: sha256WithRSAEncryption
35:a8:b3:51:6f:06:c4:41:94:27:6c:24:23:bc:59:74:2b:74:
5d:1c:68:95:c0:61:ef:85:92:52:25:30:2f:9b:ce:74:54:15:
a2:c6:17:5b:65:c1:10:f0:2b:4c:02:59:ea:9a:de:4d:a3:4c:
0e:cb:1a:c2:ee:f3:b7:10:fc:33:69:28:b9:df:ce:dc:a4:e8:
7b:d7:30:cf:cf:8f:4c:ee:8f:1e:c0:5e:e8:27:4e:68:c7:d3:
9c:63:41:83:0b:8b:7b:a1:20:bd:5b:1e:12:0b:9d:4c:10:40:
ec:af:8f:f3:ef:52:92:34:4c:32:d6:6e:5e:ae:63:27:00:63:
97:28:8f:16:08:c0:54:39:2f:80:87:58:e2:b1:cb:95:9d:63:
bf:bf:2d:6e:2e:93:24:df:33:ef:15:26:d2:93:ed:94:99:33:
8c:e4:b8:73:81:35:24:6e:57:44:67:0d:c8:9a:0e:59:7a:b8:
7d:f2:d1:39:8d:22:58:d4:2c:62:84:2d:3f:9d:18:1e:51:4b:
36:e7:0c:2e:d1:63:a2:e2:68:13:4b:98:4c:25:5b:b0:82:4c:
43:0c:2e:fe:fc:8b:dd:7b:56:6e:b5:f6:36:78:8a:88:52:d1:
0e:7f:33:7c:5c:04:6b:64:ad:c2:b1:33:2f:df:50:51:f9:2e:
23:8c:44:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:36 2024 by rpki-client on console-fra.rpki-client.org