Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/82CE5A08303711EDA33A8920C4F9AE02.roa
File: 82CE5A08303711EDA33A8920C4F9AE02.roa (raw, json)
Hash identifier: /SJwiaOHEd2mz1BgidDT++aV14AaQTecnTiOkraCX6I=
Subject key identifier: AF:CC:E4:AF:AA:89:0E:FD:0B:67:98:79:76:42:11:ED:FB:E4:88:92
Certificate issuer: /CN=A91A97D0/serialNumber=AEA6DFB364A2B3B5927F007A4E824F32C408E5C8
Certificate serial: 02
Authority key identifier: AE:A6:DF:B3:64:A2:B3:B5:92:7F:00:7A:4E:82:4F:32:C4:08:E5:C8
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rqbfs2Sis7WSfwB6ToJPMsQI5cg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/82CE5A08303711EDA33A8920C4F9AE02.roa
Signing time: Fri 09 Sep 2022 12:04:10 +0000
ROA not before: Fri 09 Sep 2022 12:04:10 +0000
ROA not after: Tue 31 Oct 2023 00:00:00 +0000
asID: 17557
IP address blocks: 103.57.224.0/24 maxlen: 24
103.57.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A97D0/serialNumber=AEA6DFB364A2B3B5927F007A4E824F32C408E5C8
Validity
Not Before: Sep 9 12:04:10 2022 GMT
Not After : Oct 31 00:00:00 2023 GMT
Subject: CN=631b2bb9-8135
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:2d:31:4b:66:a7:77:bc:15:0e:94:c5:9f:79:
11:1f:be:19:27:f4:16:5a:3b:b9:89:28:3c:98:b1:
5e:1c:85:77:69:00:b9:46:20:9f:e0:4b:65:ec:e7:
e7:8f:46:af:eb:df:03:91:7b:13:d2:a4:ae:c8:0b:
53:c3:d5:2e:89:f6:e5:64:0b:a3:7b:aa:3c:d7:2d:
51:50:d9:2a:33:8e:4a:1c:78:68:57:de:89:52:1e:
43:e5:f7:53:26:bb:b3:f3:94:df:85:d4:a1:58:90:
8f:38:b1:6e:ca:7c:56:27:ad:36:27:c2:12:81:bd:
0a:39:28:19:ad:8a:35:f4:97:1d:aa:cc:1b:35:ad:
52:72:22:21:65:e0:3d:2f:fe:ce:65:bb:f1:f5:f4:
85:85:bd:ea:05:a9:9d:d9:7f:cb:6e:30:f1:85:f5:
98:c9:56:5c:70:db:be:0d:a3:aa:72:cf:a6:bf:36:
7c:6d:4d:5d:7d:21:ea:0f:c7:cb:80:02:f3:82:2e:
01:62:e8:ca:29:43:94:e9:df:dc:ad:f8:bd:fa:9c:
39:3c:69:8a:fa:27:21:fd:73:17:a7:68:54:04:c4:
b4:75:e7:35:f9:a9:83:83:04:1f:25:cd:d7:cf:38:
f8:44:2a:d3:bb:6c:3f:c1:0a:b1:0b:1d:37:b8:88:
3d:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:CC:E4:AF:AA:89:0E:FD:0B:67:98:79:76:42:11:ED:FB:E4:88:92
X509v3 Authority Key Identifier:
keyid:AE:A6:DF:B3:64:A2:B3:B5:92:7F:00:7A:4E:82:4F:32:C4:08:E5:C8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/rqbfs2Sis7WSfwB6ToJPMsQI5cg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rqbfs2Sis7WSfwB6ToJPMsQI5cg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/82CE5A08303711EDA33A8920C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.57.224.0/23
Signature Algorithm: sha256WithRSAEncryption
38:8c:9c:c3:1b:af:f4:a6:b4:f1:bb:34:ae:66:8b:c9:9a:fe:
d2:bc:c9:49:45:52:5e:98:76:91:22:0d:10:2f:e1:b4:f0:10:
b0:12:da:94:2e:e4:74:a8:ce:a0:88:c0:bd:8c:74:72:1e:52:
ab:2f:2f:e1:94:55:ce:65:6d:60:0d:27:f3:90:20:51:c8:4a:
9a:70:49:03:4e:74:1f:63:30:cb:93:f5:be:1f:12:e7:a4:ae:
14:c1:6d:f2:f8:01:f4:6b:4c:0e:e4:ee:29:69:c3:ec:c8:44:
86:5c:5e:3b:cf:2d:f9:67:e9:83:7a:31:bd:47:36:4d:86:b5:
bd:73:af:0c:aa:5c:b1:96:11:e4:4e:c2:2f:36:cd:58:e3:54:
06:4d:74:98:84:f9:25:20:cc:65:23:c3:b1:36:22:22:57:66:
0d:af:ea:14:30:f2:6f:2b:31:9a:55:38:36:4a:ff:d2:7e:39:
b1:d4:55:a9:0f:ac:55:62:7c:3a:e3:4a:3b:69:13:bb:6d:68:
80:7a:7a:3b:02:7e:e6:54:75:27:dc:ca:93:f7:80:07:14:41:
9c:5a:78:19:90:6b:98:75:e4:06:f4:4a:27:8a:5f:17:59:d3:
a5:7d:95:14:3e:08:df:4e:c0:27:39:f3:97:7b:a6:0e:07:a3:
12:1a:74:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:55 2024 by rpki-client on console-ams.rpki-client.org