Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C53EC/203CBB64968711EB8AE8132FC4F9AE02/678B0618968911EBA366BC35C4F9AE02.roa
File: 678B0618968911EBA366BC35C4F9AE02.roa (raw, json)
Hash identifier: 4Ciwb6UfLCGk6Txvh03Mw+KJRRkH+8pOt7PgoxXOmXs=
Subject key identifier: 72:43:DF:02:6D:B2:8F:EC:3F:04:45:EA:AE:35:CF:07:47:D1:FD:20
Certificate issuer: /CN=A91C53EC/serialNumber=FADC9764B209F81CF82933226A0669A32A4EDD72
Certificate serial: 01EE
Authority key identifier: FA:DC:97:64:B2:09:F8:1C:F8:29:33:22:6A:06:69:A3:2A:4E:DD:72
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-tyXZLIJ-Bz4KTMiagZpoypO3XI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C53EC/203CBB64968711EB8AE8132FC4F9AE02/678B0618968911EBA366BC35C4F9AE02.roa
Signing time: Fri 10 Dec 2021 14:00:13 +0000
ROA not before: Fri 10 Dec 2021 14:00:13 +0000
ROA not after: Tue 31 Jan 2023 00:00:00 +0000
asID: 136933
IP address blocks: 103.144.218.0/24 maxlen: 24
103.144.219.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 494 (0x1ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C53EC/serialNumber=FADC9764B209F81CF82933226A0669A32A4EDD72
Validity
Not Before: Dec 10 14:00:13 2021 GMT
Not After : Jan 31 00:00:00 2023 GMT
Subject: CN=61b35d6c-8d91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:94:e8:b9:36:7f:c2:57:c0:63:70:d3:fe:f9:
d8:4a:6d:1d:d5:a6:d6:71:8d:34:fb:e9:a6:ec:00:
d0:43:98:a9:a9:88:8e:52:8d:d9:62:60:1a:2a:13:
a8:41:ec:a7:e7:d6:7c:70:a7:f2:59:5f:04:64:a4:
85:59:79:fc:15:6e:78:e0:c3:dd:0f:90:55:ae:e6:
49:96:07:a0:a8:96:d4:6a:e5:39:f5:ae:d6:c0:bc:
55:f0:bb:21:ff:8e:46:bc:d9:bb:0c:7d:d8:0d:d9:
76:25:54:6f:49:5a:a2:ca:3c:28:04:15:3b:81:5d:
a0:ec:56:b8:6c:a9:a3:d8:99:00:d1:6d:cf:56:50:
98:9e:71:d6:94:05:21:bb:f1:07:26:ef:84:a1:9e:
ed:83:e6:c1:1e:27:f4:3f:da:a0:ad:da:f8:1d:82:
2e:19:cc:79:7f:a0:19:c7:08:60:47:d3:01:5b:44:
0f:09:97:29:cd:0d:86:73:0c:d6:02:7b:c1:c2:6d:
f2:f6:f2:e6:40:c1:98:c3:d6:8f:c4:91:68:11:1f:
13:ac:2c:b4:ef:9d:93:15:12:0e:8a:9b:a2:ac:9c:
2f:52:07:5b:0f:10:25:a7:ff:dd:5a:0a:fe:0c:0f:
9d:48:0f:db:8c:f9:3b:12:d9:2b:15:2c:be:3a:71:
af:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:43:DF:02:6D:B2:8F:EC:3F:04:45:EA:AE:35:CF:07:47:D1:FD:20
X509v3 Authority Key Identifier:
keyid:FA:DC:97:64:B2:09:F8:1C:F8:29:33:22:6A:06:69:A3:2A:4E:DD:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C53EC/203CBB64968711EB8AE8132FC4F9AE02/-tyXZLIJ-Bz4KTMiagZpoypO3XI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-tyXZLIJ-Bz4KTMiagZpoypO3XI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C53EC/203CBB64968711EB8AE8132FC4F9AE02/678B0618968911EBA366BC35C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.144.218.0/23
Signature Algorithm: sha256WithRSAEncryption
58:5c:3c:5b:5f:a7:0b:e4:4e:6c:d3:d3:8c:54:bd:d4:5d:11:
52:78:8b:14:35:81:da:78:d5:f2:cb:41:ed:75:ca:ec:5d:57:
8b:e9:b9:e6:69:22:69:bc:99:06:91:1a:12:bd:29:ec:50:bc:
29:73:50:db:c1:e9:b2:ce:5e:cf:50:48:f0:a9:1f:4f:83:74:
33:89:c5:c2:33:f5:dd:33:88:ac:2d:b9:4e:5a:76:52:c6:0c:
fe:23:96:93:a3:6d:c0:49:ee:b3:2d:77:d7:93:78:58:d5:71:
98:0b:a9:b9:76:8f:69:3a:13:6f:3b:61:9c:33:81:d4:41:fb:
cb:36:5c:bf:2a:4d:62:de:4f:aa:b0:8b:1a:f1:6e:ab:2c:7c:
f5:0c:d6:7e:a8:c0:0f:8d:fa:7c:aa:10:81:ea:32:c0:6f:e2:
9b:4f:49:92:f3:a8:98:cc:b6:42:25:4b:5e:72:65:57:75:8b:
f5:ed:5e:0a:e5:77:f9:87:d2:4b:16:41:91:ce:9b:97:0b:45:
70:45:b4:87:86:1f:f0:19:43:b4:1d:10:e2:1c:9b:f8:41:8e:
cf:05:c6:87:4c:4c:51:94:c4:1c:21:39:84:91:49:21:f2:c8:
66:be:57:8a:41:ee:43:72:c1:31:2b:8a:4b:52:a8:f2:7b:3f:
8d:0d:87:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:25 2024 by rpki-client on console-ams.rpki-client.org