Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/FB343AFEA51C11EC8394365BC4F9AE02.roa
File: FB343AFEA51C11EC8394365BC4F9AE02.roa (raw, json)
Hash identifier: l8IfVRf4SHkj2at9UvoI1ZKany4qFu/jdwZF4zxs0s4=
Subject key identifier: EF:F1:C2:E5:E7:67:DA:71:64:2B:25:98:0F:63:7C:D9:C8:AD:BE:6A
Certificate issuer: /CN=A91B3DC1/serialNumber=E144CCF41DA105AF6CD45BC3F8866234D38F7C75
Certificate serial: 02
Authority key identifier: E1:44:CC:F4:1D:A1:05:AF:6C:D4:5B:C3:F8:86:62:34:D3:8F:7C:75
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UTM9B2hBa9s1FvD-IZiNNOPfHU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/FB343AFEA51C11EC8394365BC4F9AE02.roa
Signing time: Wed 16 Mar 2022 11:34:04 +0000
ROA not before: Wed 16 Mar 2022 11:34:04 +0000
ROA not after: Sun 28 May 2023 00:00:00 +0000
asID: 141737
IP address blocks: 103.182.212.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B3DC1/serialNumber=E144CCF41DA105AF6CD45BC3F8866234D38F7C75
Validity
Not Before: Mar 16 11:34:04 2022 GMT
Not After : May 28 00:00:00 2023 GMT
Subject: CN=6231cb2b-9feb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:cd:a4:70:c2:7e:57:33:21:d2:36:57:f9:c2:
89:7d:1c:eb:5f:06:0c:f4:4e:93:2c:7a:4e:60:2b:
67:16:f9:7c:6e:42:8d:31:ed:f2:7c:01:ae:9f:c0:
ed:c2:c3:44:bf:ad:db:1d:67:aa:b3:e4:38:4c:6c:
60:9d:1b:26:79:b7:56:34:95:09:31:cc:8d:3c:72:
3e:2b:5b:a4:84:91:bf:a0:38:a2:0f:5f:17:33:c5:
cf:af:2b:e8:5d:bf:4a:c9:59:bc:41:5b:95:7e:f4:
cc:b4:5d:0d:86:aa:e0:f6:92:8f:47:cd:02:45:a1:
2e:f2:0e:55:df:46:83:3a:c0:5a:06:4d:a6:bb:0f:
8c:c7:af:db:a8:2f:e5:86:46:42:3f:bf:ff:92:d9:
ba:f5:e7:73:4c:48:4a:7e:1f:4b:a5:4b:a3:49:a9:
4b:d1:78:60:47:8d:5e:f1:c3:cf:e4:5c:e9:87:b4:
e4:a3:3d:bd:80:37:70:4a:a6:62:1f:4e:7f:0f:e2:
cd:68:3f:29:10:11:ee:a6:8c:5e:3a:d1:4a:2e:e6:
db:8e:20:a4:a1:56:55:8e:03:15:28:49:ca:b8:63:
41:5a:23:10:0f:a0:8a:eb:98:a5:e8:6f:0f:67:b6:
ed:58:8c:76:c1:62:db:a6:6f:4b:bd:73:e4:c8:43:
15:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:F1:C2:E5:E7:67:DA:71:64:2B:25:98:0F:63:7C:D9:C8:AD:BE:6A
X509v3 Authority Key Identifier:
keyid:E1:44:CC:F4:1D:A1:05:AF:6C:D4:5B:C3:F8:86:62:34:D3:8F:7C:75
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UTM9B2hBa9s1FvD-IZiNNOPfHU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/FB343AFEA51C11EC8394365BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.182.212.0/23
Signature Algorithm: sha256WithRSAEncryption
29:aa:93:7a:da:fe:00:93:cb:5c:ce:2d:4e:9e:13:40:bb:8c:
f1:00:c0:87:2d:90:ac:3b:e9:df:76:92:5c:e4:df:e6:a6:aa:
c0:2b:f0:b4:53:a6:0b:1e:8c:08:d7:b3:9e:b1:2a:e3:fa:3f:
02:d3:84:59:5e:51:e8:59:a6:47:19:11:0d:15:0c:44:5e:4b:
a5:da:b2:8c:1d:83:89:9e:b6:e9:6c:6b:d7:7d:99:1a:fc:12:
f8:15:c2:3f:dd:db:41:9a:d2:a0:7f:d9:d5:47:00:8c:e7:06:
be:43:81:0c:31:bb:bf:a4:94:7f:37:d4:a6:fd:91:44:e1:63:
5a:cf:9c:52:13:eb:b6:d0:0a:bb:d6:3f:f1:75:9f:c1:f5:d9:
36:22:f3:8e:5f:5a:4c:2b:ec:26:e4:cb:ea:73:fe:ce:8b:bf:
1f:c9:47:5f:5e:43:dd:a6:1a:f6:58:93:aa:69:8e:56:7b:8d:
aa:38:01:0f:db:41:ea:49:34:7c:13:e8:01:fb:2b:5d:51:4e:
4c:b0:52:59:d9:d7:8e:68:07:9e:fa:20:8d:df:30:7c:ba:0d:
a2:ab:ef:e1:ce:44:6d:51:f4:d4:cf:79:04:fc:bc:1c:aa:cf:
04:8c:49:25:fc:11:23:36:f1:76:ee:a5:5c:f8:45:01:4b:d0:
1a:d5:99:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:38 2024 by rpki-client on console-fra.rpki-client.org