Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/7839683EBFB811EC9468901EC4F9AE02.roa
File: 7839683EBFB811EC9468901EC4F9AE02.roa (raw, json)
Hash identifier: mKWvc8LddAEVisPp+6xEOzMVU/uKYcZqhcny6Ia+9yM=
Subject key identifier: 46:A5:58:70:A8:D5:98:DE:D3:C8:41:42:E6:38:9D:A2:A6:48:9F:9E
Certificate issuer: /CN=A91B29F8/serialNumber=76C8E0115549EDA92DE22236A2A5A50AF09F8411
Certificate serial: 0317
Authority key identifier: 76:C8:E0:11:55:49:ED:A9:2D:E2:22:36:A2:A5:A5:0A:F0:9F:84:11
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dsjgEVVJ7akt4iI2oqWlCvCfhBE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/7839683EBFB811EC9468901EC4F9AE02.roa
Signing time: Tue 19 Apr 2022 08:12:35 +0000
ROA not before: Tue 19 Apr 2022 08:12:35 +0000
ROA not after: Thu 01 Dec 2022 00:00:00 +0000
asID: 136933
IP address blocks: 103.99.60.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 791 (0x317)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B29F8/serialNumber=76C8E0115549EDA92DE22236A2A5A50AF09F8411
Validity
Not Before: Apr 19 08:12:35 2022 GMT
Not After : Dec 1 00:00:00 2022 GMT
Subject: CN=625e6ef3-a56f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:c0:18:ed:79:29:ad:a2:7f:67:13:94:00:6e:
67:5d:d5:9b:51:8b:51:39:da:34:08:c3:06:23:e2:
5d:03:c7:f3:43:a8:4f:10:0f:38:ee:98:86:11:60:
ca:97:cd:30:9e:d6:06:6a:64:d6:b5:3e:38:aa:fa:
44:3b:1c:3e:96:9f:f4:31:80:ba:b0:fa:0e:69:82:
45:ec:6c:72:37:37:d4:ff:14:66:e5:ce:38:f4:77:
91:2f:4d:87:2d:95:f5:8e:b0:48:58:04:43:83:a7:
3f:4d:e3:e0:9f:71:38:2d:ad:31:a7:1d:14:a3:2c:
79:98:74:c8:41:73:d4:6c:eb:8e:65:fa:e5:cf:7e:
16:24:5e:59:27:9c:10:e3:a3:50:e1:60:46:c9:60:
d2:c3:e2:e3:c5:26:e1:ab:dc:5d:91:aa:46:0c:9b:
7a:2b:71:9a:ee:2d:f8:ce:c4:21:02:c8:63:88:6a:
99:e0:ac:20:ed:99:4a:2b:da:10:88:6a:4d:49:8c:
5d:8a:dc:2d:a4:54:3d:8f:50:0a:2b:1d:b1:4c:af:
d3:a7:07:68:81:55:e9:b5:de:9a:fa:1b:3a:15:35:
26:32:10:eb:e5:2e:64:d7:48:c9:05:f6:9f:89:5c:
0d:bd:dc:63:82:75:be:3b:b5:63:a1:9c:3a:6f:d0:
50:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:A5:58:70:A8:D5:98:DE:D3:C8:41:42:E6:38:9D:A2:A6:48:9F:9E
X509v3 Authority Key Identifier:
keyid:76:C8:E0:11:55:49:ED:A9:2D:E2:22:36:A2:A5:A5:0A:F0:9F:84:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/dsjgEVVJ7akt4iI2oqWlCvCfhBE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dsjgEVVJ7akt4iI2oqWlCvCfhBE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/7839683EBFB811EC9468901EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.99.60.0/24
Signature Algorithm: sha256WithRSAEncryption
01:65:48:fd:fe:15:09:70:4a:c7:48:48:10:1c:77:e7:01:cf:
50:a1:05:19:bf:02:2a:88:dd:80:b4:7f:82:c5:7f:a7:21:ad:
77:54:a3:c3:f9:8d:2a:06:8f:23:25:57:8e:65:b8:be:23:49:
67:d6:3e:64:7a:ad:f5:86:84:d0:67:a3:ff:56:74:29:3c:a4:
0f:a4:09:e2:b5:cf:0b:db:aa:68:c2:34:c6:44:0b:a2:8b:fe:
4f:cc:15:c0:64:b1:41:7a:9c:e0:18:f6:9f:39:af:62:62:c6:
8a:33:81:f6:a4:7b:c4:be:2c:d3:35:9d:22:21:77:0a:29:36:
5b:5c:b0:21:ae:42:c5:fd:64:62:5d:39:e1:3a:f5:48:99:37:
dc:9c:f6:eb:1f:01:f3:80:70:a3:db:2b:44:b0:b7:d5:ae:31:
89:7a:de:66:fd:df:a6:6e:a9:47:8d:45:97:04:bd:d3:d8:5d:
c6:0d:2a:3f:ed:a0:24:26:9c:19:72:2d:68:92:f5:55:97:4a:
0c:33:2e:2a:fa:fd:4d:dd:fc:55:4f:dc:e8:a3:f6:c2:76:3d:
68:77:95:25:58:43:30:db:65:f2:14:4b:1a:80:52:57:a0:0d:
9a:ec:18:0b:36:52:de:b9:01:ad:b5:60:9c:82:1a:d1:62:ac:
15:bf:f7:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:56 2024 by rpki-client on console-ams.rpki-client.org