Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/739C1E4C3E9B11EB92739169C4F9AE02.roa
File: 739C1E4C3E9B11EB92739169C4F9AE02.roa (raw, json)
Hash identifier: zNADQlTzqEJUv5Iu7Gamo2fOB0cV21jMQ/5kfyj2odM=
Subject key identifier: 0F:10:39:B2:42:7E:C5:CD:B0:D6:BA:EA:D3:CB:CB:9F:F5:79:00:A4
Certificate issuer: /CN=A91B56F0/serialNumber=2F8773C951053B1438BC27ECC55E392AFB5E2BB2
Certificate serial: 0982
Authority key identifier: 2F:87:73:C9:51:05:3B:14:38:BC:27:EC:C5:5E:39:2A:FB:5E:2B:B2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4dzyVEFOxQ4vCfsxV45KvteK7I.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/739C1E4C3E9B11EB92739169C4F9AE02.roa
Signing time: Wed 21 Dec 2022 15:57:08 +0000
ROA not before: Wed 21 Dec 2022 15:57:08 +0000
ROA not after: Fri 01 Dec 2023 00:00:00 +0000
asID: 136978
IP address blocks: 103.101.48.0/24 maxlen: 24
103.101.49.0/24 maxlen: 24
103.101.50.0/24 maxlen: 24
103.101.51.0/24 maxlen: 24
2401:ca40::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2434 (0x982)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B56F0/serialNumber=2F8773C951053B1438BC27ECC55E392AFB5E2BB2
Validity
Not Before: Dec 21 15:57:08 2022 GMT
Not After : Dec 1 00:00:00 2023 GMT
Subject: CN=63a32cd4-b689
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:cf:80:93:da:96:33:a9:24:d7:a0:c1:13:92:
e6:33:90:40:b7:8a:b7:41:28:4b:db:81:8c:0c:bc:
ab:ed:58:ff:35:c7:89:06:fe:53:4c:90:f3:62:24:
8c:93:81:3c:74:d1:3d:d7:5f:39:f2:28:65:75:54:
12:a6:2c:07:61:0b:85:3e:d0:9a:7b:e7:7f:8a:8d:
6d:cf:d0:e0:ce:cd:14:7a:b3:52:2b:8d:18:fb:54:
60:7f:17:2c:65:a4:34:38:f8:35:9b:d6:ac:49:b8:
2e:e3:83:83:88:5e:8f:71:5f:f4:0c:e0:68:df:8f:
57:a3:fa:d7:42:3a:8f:85:51:d1:5a:55:a9:6f:07:
13:27:18:b1:32:62:78:55:9d:ce:89:84:60:a1:4d:
bb:6e:3e:93:74:df:8e:08:6b:5d:60:c7:b9:5c:a7:
fa:b7:c8:13:22:b0:8f:cb:5d:87:f0:b9:46:57:94:
68:31:3a:84:e1:65:f2:c4:7c:2d:a5:33:19:ea:ab:
1d:81:4f:54:3b:72:f0:41:19:47:73:b8:da:31:8d:
fc:0e:d9:c8:c4:6d:af:c5:c9:3c:ba:b9:b8:43:18:
ac:16:21:8a:72:35:68:3e:5c:55:27:a4:ae:c7:ed:
c2:7a:55:f2:cf:8c:92:e6:08:5e:23:52:ae:22:55:
95:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:10:39:B2:42:7E:C5:CD:B0:D6:BA:EA:D3:CB:CB:9F:F5:79:00:A4
X509v3 Authority Key Identifier:
keyid:2F:87:73:C9:51:05:3B:14:38:BC:27:EC:C5:5E:39:2A:FB:5E:2B:B2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4dzyVEFOxQ4vCfsxV45KvteK7I.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/739C1E4C3E9B11EB92739169C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.101.48.0/22
IPv6:
2401:ca40::/32
Signature Algorithm: sha256WithRSAEncryption
c0:da:4b:62:28:5a:8f:f7:a9:33:a1:83:05:c2:42:8c:13:dd:
e4:61:1d:72:83:b6:bb:79:d0:cc:f4:41:6d:e9:c6:61:1f:6b:
e5:89:d5:2f:95:dc:b9:a9:fb:35:e7:c5:99:38:a3:31:cc:57:
d8:ad:92:e5:2d:91:bc:70:14:70:a3:fa:5e:31:7c:4f:69:03:
17:fb:fb:80:da:32:ab:83:28:7b:71:1c:f4:19:d2:33:fd:45:
a5:25:ae:fc:44:81:ff:71:19:22:d0:86:67:18:16:1f:e0:61:
b1:51:3c:cb:35:1f:32:eb:2e:03:ba:37:02:43:cf:8f:54:66:
6a:06:1e:52:6a:59:69:3a:91:7e:aa:2e:b7:05:ad:f8:52:39:
99:bc:c6:97:2d:20:1b:d0:27:58:18:23:93:af:ac:8e:8e:8f:
33:12:f4:df:cd:e6:a9:b0:1c:38:80:94:22:76:f8:35:f0:16:
fb:08:05:9c:e1:9c:dd:bf:b6:ac:db:1d:d5:0e:bb:b2:00:53:
34:0e:98:c3:74:2b:2a:04:c7:44:4f:50:9a:40:91:d0:2f:f2:
82:ae:fd:66:ea:b7:1e:83:ef:62:0f:6f:fe:e5:d8:bb:53:14:
d5:64:30:f2:c8:53:67:53:47:b5:b3:2b:c3:f5:b0:6d:40:60:
ad:79:b4:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:38 2024 by rpki-client on console-fra.rpki-client.org