Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/AA47750A3D8611ECB99C1641C4F9AE02.roa
File: AA47750A3D8611ECB99C1641C4F9AE02.roa (raw, json)
Hash identifier: kk3+K8nU2xSmjJd+MX4I+YCLXAMr1dFH6+Jjb+2NXtw=
Subject key identifier: 4F:DA:72:A9:ED:C8:63:3D:3A:0A:F7:B1:02:B6:E9:B1:CC:2F:85:87
Certificate issuer: /CN=A91BA0AE/serialNumber=0408AE60FF368B8C4FCD9318EA52A59C8728949C
Certificate serial: 0520
Authority key identifier: 04:08:AE:60:FF:36:8B:8C:4F:CD:93:18:EA:52:A5:9C:87:28:94:9C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BAiuYP82i4xPzZMY6lKlnIcolJw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/AA47750A3D8611ECB99C1641C4F9AE02.roa
Signing time: Tue 19 Apr 2022 06:48:56 +0000
ROA not before: Tue 19 Apr 2022 06:48:56 +0000
ROA not after: Mon 31 Oct 2022 00:00:00 +0000
asID: 140917
IP address blocks: 103.153.110.0/23 maxlen: 23
103.153.110.0/24 maxlen: 24
103.153.111.0/24 maxlen: 24
2001:df4:4180::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1312 (0x520)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BA0AE/serialNumber=0408AE60FF368B8C4FCD9318EA52A59C8728949C
Validity
Not Before: Apr 19 06:48:56 2022 GMT
Not After : Oct 31 00:00:00 2022 GMT
Subject: CN=625e5b58-a254
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:7b:cb:c8:f4:bf:55:e4:ea:63:a3:ca:5b:ed:
0c:70:67:d6:3e:10:1d:e9:52:c5:6d:8a:3c:28:2e:
0b:b8:b0:58:23:59:0d:b1:2f:e0:8a:86:d3:7c:59:
de:da:6b:d4:51:40:25:86:51:d2:22:4c:1e:c5:dd:
2e:f5:51:38:5a:c3:d9:18:6d:de:b3:2e:e5:bf:7a:
df:e0:ef:ca:75:4a:2b:29:6e:64:a4:1a:d9:c7:17:
57:42:72:79:39:93:af:34:5a:f4:74:b7:c0:3a:af:
ce:88:f8:79:ac:3b:b7:70:a9:8f:35:43:0c:09:5d:
15:b6:55:54:79:a3:0d:39:00:4f:d8:2a:c6:40:71:
20:d9:45:24:81:71:14:09:37:3f:54:4b:02:78:0a:
ea:90:00:c6:f0:20:e2:04:d9:6a:92:c2:62:2b:69:
4b:54:68:56:e3:f4:72:5a:53:df:8e:3a:fc:f6:ec:
e3:50:a8:24:d7:4f:5f:5a:78:84:d7:33:b0:f2:ae:
06:d2:e7:b8:25:5e:91:34:f7:86:b0:e5:dc:0f:38:
89:ba:40:80:90:de:ef:55:88:63:08:db:ae:99:3d:
c3:49:3f:34:1d:91:9c:1d:2f:99:7d:26:bb:67:b5:
9a:f8:69:99:bf:c2:c7:26:72:42:74:42:86:a7:b5:
e1:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:DA:72:A9:ED:C8:63:3D:3A:0A:F7:B1:02:B6:E9:B1:CC:2F:85:87
X509v3 Authority Key Identifier:
keyid:04:08:AE:60:FF:36:8B:8C:4F:CD:93:18:EA:52:A5:9C:87:28:94:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BAiuYP82i4xPzZMY6lKlnIcolJw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/AA47750A3D8611ECB99C1641C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.153.110.0/23
IPv6:
2001:df4:4180::/48
Signature Algorithm: sha256WithRSAEncryption
d1:97:57:10:bc:e7:3c:08:61:23:7b:a8:0c:cf:e5:7f:29:4c:
76:70:ed:b9:a7:40:5c:7a:fd:16:f2:da:55:ff:8c:de:b0:cb:
98:78:79:f0:94:fe:1e:13:c3:33:7e:2e:28:b4:08:2b:6c:7e:
cd:ec:64:e2:34:a8:4c:e5:f4:68:85:70:e2:64:73:ac:67:ce:
d0:43:5b:97:89:d3:95:47:81:e1:c6:66:44:98:54:ee:e8:92:
74:5c:b8:08:b5:0a:a8:44:13:ff:d1:ae:89:70:ed:2f:2e:0e:
15:d3:8e:93:04:12:9d:44:72:87:4d:7e:ad:21:49:9c:6d:40:
cd:a1:e4:ee:5c:89:92:5b:16:71:1a:2d:e9:69:17:5b:4b:7d:
07:26:d7:9f:8c:68:e6:3c:b2:2a:c9:18:16:39:8c:49:57:22:
c5:90:eb:ca:7a:f7:69:57:9d:af:a6:8c:0d:d0:9d:7e:0e:60:
86:f6:f8:12:b9:a3:f2:e9:e0:04:42:f1:0c:0a:38:eb:c6:74:
03:8c:7f:1a:58:cc:a4:aa:03:55:10:77:4d:4d:5b:86:4e:1e:
c1:14:1d:47:7e:b2:ba:f7:bb:5e:3f:34:85:bc:9a:9e:f6:b3:
6f:ef:a0:ab:46:4a:67:46:cb:72:94:22:05:f9:a0:00:ba:e9:
58:aa:b9:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:38 2024 by rpki-client on console-fra.rpki-client.org