Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C751F/183981D2518411EC96120640C4F9AE02/214DBE8E518711EC90C91947C4F9AE02.roa
File: 214DBE8E518711EC90C91947C4F9AE02.roa (raw, json)
Hash identifier: vORwQQynYkA70/aSwC0id4jTc0cKjODr+7yQQYg5aoU=
Subject key identifier: A1:52:90:D4:2D:64:D2:7D:8F:FE:20:0E:9D:EB:B9:7D:97:BB:AC:55
Certificate issuer: /CN=A91C751F/serialNumber=497A69983409AD70C217564071CCF5BE34C51BC7
Certificate serial: 02
Authority key identifier: 49:7A:69:98:34:09:AD:70:C2:17:56:40:71:CC:F5:BE:34:C5:1B:C7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SXppmDQJrXDCF1ZAccz1vjTFG8c.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C751F/183981D2518411EC96120640C4F9AE02/214DBE8E518711EC90C91947C4F9AE02.roa
Signing time: Tue 30 Nov 2021 02:42:17 +0000
ROA not before: Tue 30 Nov 2021 02:42:17 +0000
ROA not after: Thu 02 Mar 2023 00:00:00 +0000
asID: 149044
IP address blocks: 103.177.80.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C751F/serialNumber=497A69983409AD70C217564071CCF5BE34C51BC7
Validity
Not Before: Nov 30 02:42:17 2021 GMT
Not After : Mar 2 00:00:00 2023 GMT
Subject: CN=61a58f88-d8be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:04:21:f5:f6:10:f2:84:1e:b3:a9:52:a3:f0:
4d:18:33:3e:62:ba:e5:54:d0:f6:27:2c:1b:8c:d5:
0c:17:77:83:5e:db:02:94:31:91:c3:81:cb:ef:26:
3a:be:f0:95:cf:d6:e9:72:df:d8:13:34:52:15:55:
d0:6c:11:fb:ba:9b:8b:9e:ea:be:49:1f:69:e1:ae:
a5:78:38:cf:12:86:25:85:c0:20:dd:1b:5a:d3:dd:
ac:03:cf:02:9b:73:8b:ba:38:28:a9:77:13:0f:30:
3c:aa:95:10:ef:28:cb:f4:50:4e:9a:e7:fa:4e:9c:
65:60:da:1b:eb:a3:be:b8:5a:ae:62:dd:76:32:a0:
8b:ea:28:60:cd:ab:57:78:9f:97:b2:da:c2:6d:78:
25:04:48:06:88:82:12:fb:df:df:1b:46:9f:e6:de:
7a:c0:35:80:5a:11:7c:0f:76:f7:54:68:2e:6f:59:
3a:2d:5a:d0:5b:17:db:b6:82:70:93:01:93:42:0a:
10:36:b8:cb:6f:77:0c:20:9f:48:b3:67:85:44:94:
40:e3:b6:3c:68:7f:57:14:d3:e6:c0:dc:fa:37:fc:
07:19:cb:03:d1:79:4a:0e:64:c8:88:90:66:cc:6a:
28:9a:ea:90:26:03:47:69:d9:40:da:af:da:90:4d:
b0:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:52:90:D4:2D:64:D2:7D:8F:FE:20:0E:9D:EB:B9:7D:97:BB:AC:55
X509v3 Authority Key Identifier:
keyid:49:7A:69:98:34:09:AD:70:C2:17:56:40:71:CC:F5:BE:34:C5:1B:C7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C751F/183981D2518411EC96120640C4F9AE02/SXppmDQJrXDCF1ZAccz1vjTFG8c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SXppmDQJrXDCF1ZAccz1vjTFG8c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C751F/183981D2518411EC96120640C4F9AE02/214DBE8E518711EC90C91947C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.177.80.0/23
Signature Algorithm: sha256WithRSAEncryption
8c:e9:25:21:77:a7:a1:f4:ac:62:fc:d3:e1:4e:74:58:e5:18:
36:ac:80:29:07:57:9c:26:f4:d8:ec:cc:53:d1:f0:fb:f6:07:
6f:e2:8e:07:1a:dc:eb:f6:0c:8f:74:88:e9:47:d8:5f:31:8e:
e7:a8:58:d4:4e:2b:9b:f7:b0:5d:2d:af:e3:34:8b:0e:76:b6:
e8:40:58:04:db:68:73:19:1f:a5:e3:64:32:d1:1d:a8:23:e6:
6c:c3:bf:f0:7b:48:f4:b0:ac:bb:6d:25:28:19:c0:e1:e9:ef:
a1:cc:95:e0:c6:a8:37:48:17:7a:8e:e4:67:25:0c:e7:e6:60:
22:9b:ad:5d:35:b8:e1:51:9c:69:f2:29:64:5f:f9:3f:0d:a7:
b9:b2:44:16:2c:d7:60:f2:0e:f9:c0:e3:c6:6c:0a:d1:6f:22:
1d:09:87:b1:49:b4:88:11:70:aa:68:b8:60:8a:c3:f1:14:8e:
8e:2e:62:b5:af:86:ad:89:13:bc:09:28:c2:18:59:ee:b1:4a:
45:bd:5c:dd:3f:99:84:38:bb:bc:b7:5f:a7:fd:c0:ce:72:64:
15:80:aa:1f:d8:82:53:dd:41:52:71:69:44:5e:79:58:ee:19:
fb:31:55:76:1f:c1:5f:9f:81:72:7f:d6:3c:e0:1e:1a:e0:a5:
1f:18:c1:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:05 2023 by rpki-client on console-ams.rpki-client.org