Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/49DED924CEF411EC83039A62C4F9AE02.roa
File: 49DED924CEF411EC83039A62C4F9AE02.roa (raw, json)
Hash identifier: JrZgOw/qrmXgh+yrkScYe3D9tO6IhDQH6oT9cQaJm1w=
Subject key identifier: 10:FE:A9:00:8C:1C:CA:68:F1:0A:66:90:39:D5:5B:9E:38:CF:7F:3B
Certificate issuer: /CN=A91B23B3/serialNumber=5C368439CBC5F5A45715D6476BEAA6686D0951B1
Certificate serial: 067D
Authority key identifier: 5C:36:84:39:CB:C5:F5:A4:57:15:D6:47:6B:EA:A6:68:6D:09:51:B1
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/49DED924CEF411EC83039A62C4F9AE02.roa
Signing time: Sun 08 May 2022 17:28:35 +0000
ROA not before: Sun 08 May 2022 17:28:35 +0000
ROA not after: Fri 30 Dec 2022 00:00:00 +0000
asID: 139303
IP address blocks: 103.74.231.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1661 (0x67d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B23B3/serialNumber=5C368439CBC5F5A45715D6476BEAA6686D0951B1
Validity
Not Before: May 8 17:28:35 2022 GMT
Not After : Dec 30 00:00:00 2022 GMT
Subject: CN=6277fdc3-d078
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:8a:d5:5e:6d:9f:52:10:af:2d:99:35:81:94:
f0:85:03:83:38:2d:bd:38:8d:1c:d7:49:c3:02:c9:
c3:a7:ff:1c:a6:26:58:b6:df:30:76:1a:b8:c1:26:
e3:8d:e5:04:91:14:bf:a2:cc:b7:50:77:78:47:a9:
74:0c:b7:f7:d7:bb:3b:7d:14:1c:f6:54:ab:ff:da:
f7:51:b1:6f:e3:37:f4:22:6a:7f:42:7d:53:d5:3d:
20:ba:e5:9e:17:e2:b0:8d:6e:0d:fc:41:9f:30:93:
97:cb:ff:ca:5a:2a:84:41:fa:5f:b4:5d:04:48:91:
0f:3a:68:8f:a4:00:6e:df:e7:85:66:22:12:63:4b:
02:36:30:5c:49:c8:68:95:40:2a:b3:a9:12:dd:76:
61:56:bd:0d:32:46:2b:6e:cf:43:da:f3:13:6d:1a:
bd:c1:67:f2:af:de:63:d7:c2:f4:48:dc:21:da:7d:
8c:e0:0a:20:9c:ca:8e:5a:03:bc:ac:57:7c:05:0c:
58:3e:45:74:b7:ad:29:04:a0:25:3a:4a:6b:d4:ed:
bc:7a:07:b8:0d:38:ba:7a:f4:82:b2:81:d8:be:6a:
32:94:e7:0f:14:6c:65:9f:01:69:cb:40:06:a0:cd:
83:9f:fb:81:e2:96:73:b8:e9:4a:65:1c:72:89:ed:
22:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:FE:A9:00:8C:1C:CA:68:F1:0A:66:90:39:D5:5B:9E:38:CF:7F:3B
X509v3 Authority Key Identifier:
keyid:5C:36:84:39:CB:C5:F5:A4:57:15:D6:47:6B:EA:A6:68:6D:09:51:B1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/49DED924CEF411EC83039A62C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.74.231.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:7f:d3:03:f4:86:53:65:8b:c9:33:41:a4:8c:82:30:bb:0d:
f7:42:4e:bb:9a:7c:5f:f4:0c:0b:c5:be:c9:90:d1:17:4e:31:
eb:fe:2c:e4:be:44:d7:4b:49:37:83:83:30:eb:50:95:8c:7a:
07:c5:8f:8f:f5:27:e2:69:f2:de:d1:2d:3e:11:f1:a1:0e:f4:
27:55:75:85:51:c8:75:14:83:9d:ea:d4:fe:08:17:c0:71:7f:
82:be:b0:8e:bb:b4:65:7b:d1:70:0c:65:f9:7b:f2:67:e0:0a:
77:4a:7b:f9:cb:5e:9d:ae:2e:a7:a3:d3:c2:c7:aa:21:26:6a:
56:7b:88:cc:01:96:33:af:ff:33:5a:5c:9c:4b:92:f2:07:23:
fc:44:a5:57:84:e6:cd:cc:b5:e0:7f:ee:65:ed:8c:f8:be:bc:
93:fd:fe:bb:52:14:6d:1c:33:c1:e3:09:2e:b3:42:86:f3:cb:
80:e7:de:1e:0f:b7:f4:3d:21:e6:46:01:a4:0f:f5:53:57:5c:
d8:34:93:f2:34:9f:a3:70:99:9d:69:ea:39:1f:2f:d0:b4:10:
74:69:5e:81:c3:ff:b7:ae:7a:9a:9f:0c:e0:96:8d:f4:ef:51:
b4:22:a5:b1:82:34:58:89:db:fc:2c:f0:db:fc:f5:f5:18:9b:
14:15:df:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:04 2023 by rpki-client on console-fra.rpki-client.org