Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA297/24ED2156BC2811EA97F96D41C4F9AE02/14A3A07ABC2A11EA81976144C4F9AE02.roa
File: 14A3A07ABC2A11EA81976144C4F9AE02.roa (raw, json)
Hash identifier: YhP798wTPjTswBscDAgBNSasHulx/kfxzomeala2Nlg=
Subject key identifier: FC:61:F1:B6:98:31:A2:12:DB:DA:39:36:2A:67:A3:D2:D3:3C:74:45
Certificate issuer: /CN=A91CA297/serialNumber=57DB42AB9EBBEFBFE21073F5007FC3762C5FBB08
Certificate serial: 06E6
Authority key identifier: 57:DB:42:AB:9E:BB:EF:BF:E2:10:73:F5:00:7F:C3:76:2C:5F:BB:08
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V9tCq56777_iEHP1AH_Ddixfuwg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CA297/24ED2156BC2811EA97F96D41C4F9AE02/14A3A07ABC2A11EA81976144C4F9AE02.roa
Signing time: Thu 02 Feb 2023 23:09:22 +0000
ROA not before: Thu 02 Feb 2023 23:09:22 +0000
ROA not after: Wed 01 May 2024 00:00:00 +0000
asID: 9311
IP address blocks: 103.224.252.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1766 (0x6e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CA297/serialNumber=57DB42AB9EBBEFBFE21073F5007FC3762C5FBB08
Validity
Not Before: Feb 2 23:09:22 2023 GMT
Not After : May 1 00:00:00 2024 GMT
Subject: CN=63dc42a2-3b3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:de:d7:13:25:de:06:6d:77:40:7c:ac:42:39:
4f:96:ca:37:c0:4b:90:f4:27:be:be:32:6d:75:1d:
4c:0a:17:1d:68:d3:f0:69:d4:2e:08:3b:94:8c:26:
9f:ef:ca:b6:fe:2c:f0:c3:82:72:48:3c:8e:ab:55:
f0:84:e5:ce:e3:a6:a3:d5:8c:f5:3d:d3:06:2c:64:
2a:dc:7d:13:22:e2:79:06:6e:62:25:14:55:19:9a:
b6:42:93:a7:9a:63:77:ee:b9:01:45:33:7c:7b:73:
90:00:7d:c5:4a:1d:5a:43:c0:d9:3d:e6:de:1b:39:
59:bf:df:3e:e6:af:8d:a2:ec:a2:c0:38:38:2a:53:
cb:f2:eb:4e:f8:9b:94:0a:86:53:e5:92:58:ea:42:
5f:d8:cb:e4:ed:42:bd:7a:31:30:95:6d:71:66:75:
80:f5:e5:bc:5b:4e:a3:79:48:94:97:f8:37:2c:39:
47:da:6c:dc:90:54:13:d7:12:17:ff:3b:48:5d:61:
e8:5d:3f:15:52:60:8f:30:91:ff:56:5e:42:99:b7:
a8:32:4b:c0:33:44:7f:07:99:59:d4:28:73:49:e2:
50:8a:95:bc:68:d2:5c:42:7f:cc:5c:56:a3:26:e6:
3b:81:a4:7f:f8:21:99:bf:cc:68:4b:78:43:81:e9:
78:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:61:F1:B6:98:31:A2:12:DB:DA:39:36:2A:67:A3:D2:D3:3C:74:45
X509v3 Authority Key Identifier:
keyid:57:DB:42:AB:9E:BB:EF:BF:E2:10:73:F5:00:7F:C3:76:2C:5F:BB:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CA297/24ED2156BC2811EA97F96D41C4F9AE02/V9tCq56777_iEHP1AH_Ddixfuwg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V9tCq56777_iEHP1AH_Ddixfuwg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA297/24ED2156BC2811EA97F96D41C4F9AE02/14A3A07ABC2A11EA81976144C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.224.252.0/22
Signature Algorithm: sha256WithRSAEncryption
51:d3:9f:36:86:e6:6b:3d:34:19:ce:24:bf:fc:4d:fc:8b:6a:
32:d7:ab:01:73:d2:d0:0d:db:95:de:28:d6:f1:ae:40:c0:95:
e0:34:4e:33:47:14:dc:49:96:66:19:3e:f0:c2:8c:1f:d5:72:
c2:9a:e0:61:28:98:41:3b:f1:a2:dc:db:b2:90:43:b4:7a:ca:
ae:0b:e4:6b:73:c8:ab:33:06:f1:3c:7a:36:78:35:34:d9:99:
6f:14:98:72:9b:ee:8b:b1:e6:bd:86:65:14:bf:80:e5:e0:d9:
1f:87:68:42:73:cc:ed:95:85:86:fa:94:70:8e:43:c7:c4:fd:
e6:9c:72:90:38:a6:ac:f7:99:36:26:d6:cf:d0:58:54:9f:fb:
d2:da:f1:89:ab:27:2d:96:de:3a:88:de:44:8b:f6:4b:e1:a6:
ab:c9:e3:e6:b4:8a:2b:6a:42:aa:d7:c0:90:75:4c:ab:bb:5f:
d0:51:1d:42:6c:20:58:05:84:38:cf:e3:8b:2b:81:03:da:c9:
ec:ec:20:e5:59:a4:ef:7f:f2:c1:69:bc:8c:df:57:b2:0e:66:
15:88:75:08:6b:ae:9f:64:ad:df:6f:f2:93:ac:e0:10:e8:cf:
e2:f1:47:b2:e9:c2:46:c3:14:78:b3:ef:a5:7d:4d:5f:fd:13:
34:89:b8:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:26 2024 by rpki-client on console-ams.rpki-client.org