Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7B68/53A7B92CB0A511EA8F92ED17C4F9AE02/05FFA444B88411ECA1B49F44C4F9AE02.roa
File: 05FFA444B88411ECA1B49F44C4F9AE02.roa (raw, json)
Hash identifier: Wsys82fF2eSVdj2uTILMljAuQjqa7mswz3tNM8tS0qU=
Subject key identifier: 0D:56:FC:B6:E7:69:68:32:33:D7:B0:27:2E:9C:04:20:9D:F7:11:7B
Certificate issuer: /CN=A91C7B68/serialNumber=C284BA8A88A02116BEE43410E039E909E3029D0D
Certificate serial: 0617
Authority key identifier: C2:84:BA:8A:88:A0:21:16:BE:E4:34:10:E0:39:E9:09:E3:02:9D:0D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/woS6ioigIRa-5DQQ4DnpCeMCnQ0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C7B68/53A7B92CB0A511EA8F92ED17C4F9AE02/05FFA444B88411ECA1B49F44C4F9AE02.roa
Signing time: Thu 09 Jun 2022 10:33:11 +0000
ROA not before: Thu 09 Jun 2022 10:33:11 +0000
ROA not after: Sun 30 Jul 2023 00:00:00 +0000
asID: 138549
IP address blocks: 103.214.159.0/24 maxlen: 24
144.48.112.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1559 (0x617)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C7B68/serialNumber=C284BA8A88A02116BEE43410E039E909E3029D0D
Validity
Not Before: Jun 9 10:33:11 2022 GMT
Not After : Jul 30 00:00:00 2023 GMT
Subject: CN=62a1cc67-08e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:62:d6:19:26:d6:97:b4:9d:4d:08:33:28:02:
6d:bf:b9:3c:d6:54:1e:84:f0:42:03:31:21:c5:e1:
8c:fa:61:67:e1:75:48:81:e6:4d:e0:23:8d:d6:70:
15:ba:bf:de:2a:c1:b5:73:23:ed:67:26:5a:a7:a0:
55:a4:48:2e:f5:3a:16:29:31:ea:61:c2:ac:d8:ee:
36:b6:02:2c:68:ec:fe:cf:2d:e1:f3:60:f6:57:b4:
9f:47:f9:ef:9b:26:75:5a:43:f7:0f:a6:63:4b:1d:
25:e9:ca:ba:2d:21:e1:ca:a8:1c:2d:f6:50:ed:b0:
cb:e9:65:30:6e:f1:e5:9a:57:08:e7:2f:02:21:41:
9f:a7:2b:b4:a5:ad:3e:40:7a:d2:6c:d3:a7:28:0d:
14:a1:1c:ef:69:8f:d1:d2:93:94:21:93:b5:86:c9:
cc:b7:25:80:65:26:44:57:86:dc:d3:e6:76:5c:8f:
b6:0d:3b:c1:2f:c5:63:72:52:68:df:86:a1:25:60:
45:3a:e3:d1:fc:e7:d4:30:f1:05:6b:aa:a3:b0:73:
f5:b6:2c:20:75:ca:ab:64:18:6f:81:3e:e6:e9:23:
36:56:d6:2a:ec:d3:35:28:0b:33:54:30:3c:b7:19:
6f:02:10:73:27:61:c5:2d:39:91:55:d4:f2:ad:de:
e1:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:56:FC:B6:E7:69:68:32:33:D7:B0:27:2E:9C:04:20:9D:F7:11:7B
X509v3 Authority Key Identifier:
keyid:C2:84:BA:8A:88:A0:21:16:BE:E4:34:10:E0:39:E9:09:E3:02:9D:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C7B68/53A7B92CB0A511EA8F92ED17C4F9AE02/woS6ioigIRa-5DQQ4DnpCeMCnQ0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/woS6ioigIRa-5DQQ4DnpCeMCnQ0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7B68/53A7B92CB0A511EA8F92ED17C4F9AE02/05FFA444B88411ECA1B49F44C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.214.159.0/24
144.48.112.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:9b:77:92:12:77:f5:ba:42:af:b8:ef:44:cd:50:98:27:3e:
d7:1a:f2:49:c0:50:55:54:df:83:9a:27:ff:8d:94:1c:5d:5a:
bb:a7:1b:75:ca:8b:96:36:fe:0d:ad:1f:7e:b9:4d:33:f7:4f:
26:f6:e7:61:c0:1d:2a:50:61:3a:38:0d:1f:f2:47:7c:82:03:
41:4d:dd:64:4d:b1:55:11:7f:5b:e9:5b:f6:e8:01:14:88:1c:
ab:45:57:04:4d:de:0f:51:b8:f4:78:7e:d8:0e:06:ec:62:fc:
c6:85:e5:56:77:01:1b:e0:c0:5f:b4:ad:e6:6b:38:52:09:a2:
37:17:d8:bb:88:0a:e1:58:86:2d:02:2f:ee:7c:5d:a9:bb:77:
ee:60:ae:f8:22:f7:2a:08:25:e6:cc:d8:86:cf:fe:80:c1:0f:
6f:42:c9:29:ef:f7:4c:07:82:50:8e:e7:d3:65:ee:a5:6d:11:
51:c5:dc:38:dc:32:e8:9a:30:ef:41:2d:c2:7d:41:7e:81:7b:
3f:36:7b:42:54:d6:fc:ce:fe:e4:24:8e:f9:4f:49:82:79:fb:
75:37:99:1c:89:a9:0d:84:1a:23:96:0d:4a:11:1f:a8:92:b4:
61:4e:f2:5c:74:9e:4b:d7:c9:ea:84:16:91:e7:e5:96:83:fb:
f4:10:e6:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:40 2024 by rpki-client on console-fra.rpki-client.org