Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/FFEDA5380B2511EE9679B25BC4F9AE02.roa
File: FFEDA5380B2511EE9679B25BC4F9AE02.roa (raw, json)
Hash identifier: qokrxD9zWlO7nGTBzZtZeHRDhgjBAinY0Q/pVtr1YfM=
Subject key identifier: 9B:51:1C:F2:38:28:8D:C1:0F:5B:78:5E:8D:57:75:41:7E:73:CB:0D
Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Certificate serial: 3D06
Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/FFEDA5380B2511EE9679B25BC4F9AE02.roa
Signing time: Thu 15 Jun 2023 02:40:33 +0000
ROA not before: Thu 15 Jun 2023 02:40:33 +0000
ROA not after: Tue 31 Oct 2023 00:00:00 +0000
asID: 150843
IP address blocks: 103.205.60.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15622 (0x3d06)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Validity
Not Before: Jun 15 02:40:33 2023 GMT
Not After : Oct 31 00:00:00 2023 GMT
Subject: CN=648a7a21-03bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:5c:46:0a:a3:63:92:13:7b:07:c0:87:1e:5e:
e7:47:f3:d5:16:4e:79:ab:f1:64:52:1d:55:29:46:
91:c4:6a:f5:6b:03:11:76:3e:f6:91:16:25:fd:e7:
5d:5a:b7:2a:a1:1b:bf:c1:2c:6d:2a:b9:e5:8c:4d:
90:b4:49:c3:11:67:ac:35:95:df:e5:ac:4f:81:e8:
63:c2:0e:61:fe:b1:15:b4:d2:4b:01:e3:8a:9c:66:
8a:21:c1:4c:76:6a:5a:ea:c3:21:65:b2:f8:48:f4:
60:7e:09:36:10:a9:31:26:80:2c:3b:97:ef:ae:08:
13:fc:88:84:c2:04:c6:fb:bd:41:0a:e5:2c:1d:32:
0b:7a:4e:38:a5:5a:08:80:13:43:3e:4e:e3:25:32:
32:8e:5d:ed:f1:e3:ea:cd:5d:a4:27:e5:0c:72:bf:
04:80:0e:27:77:2f:b9:9b:f8:8f:d8:21:6c:d9:f8:
b9:f5:cf:34:5f:b1:6a:7f:84:5d:75:3f:ad:24:45:
74:a9:27:89:59:e3:e5:5b:85:19:41:46:6a:9b:ea:
ff:03:94:6f:14:74:94:6b:89:d0:33:e8:0d:47:90:
72:7d:c2:e0:6e:11:4f:40:d7:a4:41:23:ac:ea:0f:
b4:3c:0d:d1:a2:2e:c8:03:c2:76:ba:fd:c5:0f:e4:
c9:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:51:1C:F2:38:28:8D:C1:0F:5B:78:5E:8D:57:75:41:7E:73:CB:0D
X509v3 Authority Key Identifier:
keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/FFEDA5380B2511EE9679B25BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.205.60.0/23
Signature Algorithm: sha256WithRSAEncryption
ba:93:65:e6:15:7d:2b:a9:84:f7:78:bb:9d:a5:20:40:c4:65:
85:47:3a:93:c7:cb:f3:9b:47:e4:39:12:4f:a3:dc:31:83:db:
96:40:b3:c4:be:57:4e:c1:00:73:49:42:04:7e:20:01:20:a7:
79:7a:1e:be:26:57:3b:14:8c:3d:21:ae:dc:6f:81:74:1d:d0:
4a:ac:02:fb:98:a9:07:b8:4b:e3:36:d6:f1:fd:6a:38:00:a1:
1d:b7:66:e6:61:c0:f8:68:f5:8c:4a:9b:03:b8:27:9b:21:bd:
f0:56:f4:7e:b9:00:64:41:b1:a8:57:6c:41:3f:81:21:d0:32:
45:4c:91:88:36:ec:c3:c1:4e:be:e1:db:e9:e3:9b:1f:c6:8b:
2a:63:6f:b2:41:bd:fd:08:9c:a7:15:84:c2:b1:ca:90:c4:74:
a2:0b:e2:15:7d:ee:fd:9f:a1:50:8a:a6:b8:7b:47:73:fb:e8:
d4:5d:91:71:90:40:da:72:1c:6e:9a:c7:d9:bf:a4:78:7f:d4:
7d:92:6f:07:c3:61:b8:e3:0c:fc:21:e5:58:1f:35:1b:12:9b:
81:c0:21:9f:e8:61:a6:22:30:0b:44:6c:93:03:be:e4:22:73:
54:0f:b4:1d:5a:19:6b:c7:17:55:b7:52:00:af:f7:24:85:68:
0b:7a:7a:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:54 2024 by rpki-client on console-ams.rpki-client.org