Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/2C7B3D98DB1D11EC805DA12FC4F9AE02.roa
File: 2C7B3D98DB1D11EC805DA12FC4F9AE02.roa (raw, json)
Hash identifier: 10QVV3yIzSboLqhGBcPdpUm3YvyP065WAPyb9le1Z48=
Subject key identifier: 16:20:41:71:A1:94:51:14:02:3E:6A:18:8D:9B:AB:A0:D7:5B:93:38
Certificate issuer: /CN=A91BDCF1/serialNumber=C44F2ACAB2A779994315AA93B323DA9B475C7B9A
Certificate serial: 0263
Authority key identifier: C4:4F:2A:CA:B2:A7:79:99:43:15:AA:93:B3:23:DA:9B:47:5C:7B:9A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xE8qyrKneZlDFaqTsyPam0dce5o.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/2C7B3D98DB1D11EC805DA12FC4F9AE02.roa
Signing time: Wed 08 Nov 2023 09:18:02 +0000
ROA not before: Wed 08 Nov 2023 09:18:01 +0000
ROA not after: Sun 31 Mar 2024 00:00:00 +0000
asID: 55933
IP address blocks: 103.178.56.0/24 maxlen: 24
103.178.57.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 611 (0x263)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDCF1/serialNumber=C44F2ACAB2A779994315AA93B323DA9B475C7B9A
Validity
Not Before: Nov 8 09:18:01 2023 GMT
Not After : Mar 31 00:00:00 2024 GMT
Subject: CN=654b5249-3a2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:de:27:64:50:dd:f4:84:29:9c:66:f7:4b:b0:
60:01:1c:ec:f1:f5:36:d2:d8:b2:6a:ce:7b:b1:d8:
9c:83:1b:f1:dd:bc:3c:2d:af:de:35:5d:a8:a1:a9:
76:d4:27:73:85:83:1b:77:b0:a8:29:c6:b2:6c:9d:
9f:0f:4a:26:78:00:24:b7:45:e3:5b:85:e3:d8:9f:
70:68:0e:f7:10:94:17:a5:31:59:11:4a:b2:95:6b:
36:d4:bc:12:02:e0:45:45:02:e2:92:79:0f:f9:ad:
c1:30:71:3c:a8:8e:43:42:2d:f1:c0:bb:6c:53:b4:
56:12:38:c9:57:eb:9c:bf:fb:df:7e:15:c8:8d:9c:
e4:57:2e:32:67:7b:06:b6:7f:1f:70:d8:94:e5:af:
c7:0d:be:26:f7:1e:75:49:81:fb:45:df:cc:03:c6:
ad:a9:51:45:1e:5d:e0:42:82:ac:42:c1:5e:ae:cd:
db:e9:eb:76:5d:ca:ab:90:5c:7f:4f:ac:53:1b:a2:
66:3a:76:c9:26:81:7a:ad:9c:a0:27:f8:67:95:a6:
ec:6a:8f:56:56:b1:55:8f:ac:0a:fd:18:5c:bf:e0:
74:dc:9d:36:b5:39:eb:6d:8b:f6:97:e4:4e:42:b3:
28:4d:91:64:5c:96:5d:b8:c6:d7:fc:20:62:70:ed:
0d:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:20:41:71:A1:94:51:14:02:3E:6A:18:8D:9B:AB:A0:D7:5B:93:38
X509v3 Authority Key Identifier:
keyid:C4:4F:2A:CA:B2:A7:79:99:43:15:AA:93:B3:23:DA:9B:47:5C:7B:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/xE8qyrKneZlDFaqTsyPam0dce5o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xE8qyrKneZlDFaqTsyPam0dce5o.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/2C7B3D98DB1D11EC805DA12FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.178.56.0/23
Signature Algorithm: sha256WithRSAEncryption
b1:00:43:a8:ee:bb:1a:09:4d:8d:01:bd:38:5b:38:c1:92:86:
47:08:6f:f7:2d:14:b2:48:c5:c7:f8:5b:b6:7d:35:3c:4c:77:
9a:08:21:aa:d5:5f:aa:d5:fc:c7:ca:8a:85:50:9f:93:9e:e0:
c5:df:89:54:7f:9c:5a:8c:54:4f:bd:b3:9a:63:99:b9:b3:55:
86:0f:34:00:8e:25:85:dc:19:3e:3f:06:a4:31:6f:c8:a9:d3:
4f:33:15:66:17:64:52:21:66:92:d3:9b:50:45:75:b9:06:ef:
a1:19:92:a7:f6:91:2b:ee:b3:83:d7:02:ef:b7:d7:34:0c:c3:
e7:49:ea:e8:5a:d7:4d:55:ad:60:59:48:08:cd:12:26:24:93:
69:87:b4:f5:7f:4c:f6:b5:fc:d6:1a:a9:92:34:58:dc:25:59:
30:29:39:9c:29:5b:bd:7a:16:b0:f3:2e:ac:32:e8:32:89:a1:
17:44:0b:52:3c:b3:64:8e:ae:45:82:54:ae:fd:1c:d5:9e:f3:
3f:54:58:82:5b:8b:86:4c:5b:8f:bc:08:5d:7d:47:ae:7c:f5:
c4:63:2c:b6:e5:13:3e:a8:2c:28:38:10:7a:2d:44:75:8c:fe:
1b:2e:30:3f:26:e8:e3:bd:ff:86:cd:d4:08:9b:2f:d9:d5:6f:
f5:88:2c:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:24 2024 by rpki-client on console-ams.rpki-client.org