Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A91D2/8C14E94491D111EAA533A978C4F9AE02/F5BA31B0574C11EBB671BC4EC4F9AE02.roa
File: F5BA31B0574C11EBB671BC4EC4F9AE02.roa (raw, json)
Hash identifier: xb3P9w737rWBiuQBQw+lFeoEu53cHAltPAYDsBhb5RA=
Subject key identifier: 04:DA:0B:37:70:2D:E3:99:1D:08:C0:0C:C4:56:D8:D2:23:F4:06:E0
Certificate issuer: /CN=A91A91D2/serialNumber=21FC815FCB1CEAD770BD6C903694745F71CA7195
Certificate serial: 068E
Authority key identifier: 21:FC:81:5F:CB:1C:EA:D7:70:BD:6C:90:36:94:74:5F:71:CA:71:95
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IfyBX8sc6tdwvWyQNpR0X3HKcZU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A91D2/8C14E94491D111EAA533A978C4F9AE02/F5BA31B0574C11EBB671BC4EC4F9AE02.roa
Signing time: Tue 31 May 2022 22:51:41 +0000
ROA not before: Tue 31 May 2022 22:51:41 +0000
ROA not after: Sun 30 Jul 2023 00:00:00 +0000
asID: 137385
IP address blocks: 103.151.30.0/23 maxlen: 23
103.151.30.0/24 maxlen: 24
103.151.31.0/24 maxlen: 24
2001:df3:a180::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1678 (0x68e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A91D2/serialNumber=21FC815FCB1CEAD770BD6C903694745F71CA7195
Validity
Not Before: May 31 22:51:41 2022 GMT
Not After : Jul 30 00:00:00 2023 GMT
Subject: CN=62969bfd-4686
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:4c:68:98:0f:c5:7f:28:4b:5c:90:c3:9e:eb:
ef:f7:fd:ae:2e:54:ed:f7:73:63:78:2b:c5:5a:ca:
7b:6f:55:22:8b:b9:62:08:5b:3b:90:62:c1:03:a0:
e2:b4:c7:1d:9b:ce:33:3d:57:eb:59:f4:12:0d:cb:
dc:6d:ef:f2:14:a6:b1:c3:05:4a:d8:54:69:a3:37:
80:42:4f:de:73:4a:f2:b7:49:62:55:7b:18:b9:77:
35:cb:a8:8f:48:d4:02:32:24:3e:fd:6d:4d:75:82:
31:e3:1e:cf:cd:aa:cd:70:90:42:ac:f0:8d:1d:09:
08:f4:d3:0f:25:f2:5b:1a:dc:18:b8:30:02:24:e8:
fe:99:1a:97:18:aa:bd:ff:e6:16:2a:f3:14:20:ac:
6e:c4:3d:37:4d:c0:c7:7f:0a:9f:eb:2d:de:0d:6c:
ef:42:f0:ec:5d:ee:3b:6b:c6:67:4b:be:56:aa:08:
22:5a:95:ed:d4:9a:38:d1:17:a1:3e:b7:b9:3d:e8:
c6:6e:8b:14:a5:58:fd:07:97:86:f8:f7:07:b1:ef:
4d:88:d0:70:98:ba:8e:c9:1a:6b:cb:8f:53:86:ca:
c1:45:4d:bf:28:a8:5c:58:27:e2:fc:7f:de:a4:b1:
9b:97:88:38:d8:fd:cc:0d:6f:46:7b:ad:78:ad:cd:
9c:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:DA:0B:37:70:2D:E3:99:1D:08:C0:0C:C4:56:D8:D2:23:F4:06:E0
X509v3 Authority Key Identifier:
keyid:21:FC:81:5F:CB:1C:EA:D7:70:BD:6C:90:36:94:74:5F:71:CA:71:95
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A91D2/8C14E94491D111EAA533A978C4F9AE02/IfyBX8sc6tdwvWyQNpR0X3HKcZU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IfyBX8sc6tdwvWyQNpR0X3HKcZU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A91D2/8C14E94491D111EAA533A978C4F9AE02/F5BA31B0574C11EBB671BC4EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.151.30.0/23
IPv6:
2001:df3:a180::/48
Signature Algorithm: sha256WithRSAEncryption
e8:69:6d:f0:82:b9:23:cc:52:2f:06:3b:73:9d:26:49:5a:2e:
38:29:e5:13:1a:05:b5:75:f2:f1:5c:b6:27:ea:75:c7:1e:c4:
c5:21:1f:be:a9:12:3b:b2:ae:ba:d9:c4:eb:6c:92:92:28:ec:
90:14:b7:65:a1:39:a0:67:8e:35:bb:bd:40:c8:90:00:8c:7c:
7d:05:2c:9f:35:d9:23:20:d4:5b:d5:9d:59:26:9e:36:6c:95:
e7:d3:99:73:20:e7:8f:c4:e5:82:95:11:d2:3b:4b:91:7c:85:
85:c1:23:23:e5:e6:12:e2:cb:6f:e3:c3:6b:e6:f7:b6:eb:0c:
aa:24:2d:e2:20:cd:15:da:1a:2e:fb:c0:5f:fc:f2:6b:c2:2b:
f4:b7:26:4a:0b:37:a4:7e:91:2a:5e:62:db:14:65:0d:e5:9c:
67:40:0c:45:5a:4a:5c:fe:21:fa:a3:13:9e:62:ec:d4:ab:43:
ec:da:a0:4d:2f:5e:82:be:07:4a:57:ca:b1:29:b7:19:24:90:
41:04:f8:34:d6:de:72:10:b9:e4:d5:68:c8:ce:17:5f:36:94:
86:3f:b3:7d:1d:db:5a:8c:c5:f7:bc:34:61:87:fb:70:38:54:
e3:ce:c8:da:80:5b:02:02:a8:9e:96:c2:c5:cb:9a:51:8c:73:
11:9e:7d:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:55 2024 by rpki-client on console-ams.rpki-client.org