Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBE2E/D8ABAFE8D0FB11ECA27AF22FC4F9AE02/57840D00DC3811EC8AA80713C4F9AE02.roa
File: 57840D00DC3811EC8AA80713C4F9AE02.roa (raw, json)
Hash identifier: xI5pbW4rvLly2SJDq6234nxua0no7UcUuv2q3ZjZZI4=
Subject key identifier: 3E:6F:14:B0:3A:02:EF:B2:76:81:66:72:35:E1:81:34:B4:55:30:9B
Certificate issuer: /CN=A91CBE2E/serialNumber=858A27CB5C04CADFAEFDB893BF06E1A7B7D9F1C1
Certificate serial: 1F
Authority key identifier: 85:8A:27:CB:5C:04:CA:DF:AE:FD:B8:93:BF:06:E1:A7:B7:D9:F1:C1
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYony1wEyt-u_biTvwbhp7fZ8cE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CBE2E/D8ABAFE8D0FB11ECA27AF22FC4F9AE02/57840D00DC3811EC8AA80713C4F9AE02.roa
Signing time: Wed 25 May 2022 14:38:29 +0000
ROA not before: Wed 25 May 2022 14:38:29 +0000
ROA not after: Sun 30 Jul 2023 00:00:00 +0000
asID: 141037
IP address blocks: 103.186.219.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31 (0x1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CBE2E/serialNumber=858A27CB5C04CADFAEFDB893BF06E1A7B7D9F1C1
Validity
Not Before: May 25 14:38:29 2022 GMT
Not After : Jul 30 00:00:00 2023 GMT
Subject: CN=628e3f64-8b12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f4:eb:9f:be:60:6f:51:6e:a3:aa:ef:56:49:
14:19:cd:7b:46:77:3c:7a:36:b8:b6:28:a9:e9:dc:
5f:70:1f:b9:13:75:96:08:04:7e:49:1d:20:3a:f6:
bd:c1:60:7b:78:d7:d7:da:15:e2:19:5b:b6:24:c4:
cd:a4:14:e2:a7:09:12:49:09:d2:09:6f:67:32:3a:
9a:de:17:d4:91:45:6d:68:62:15:58:29:3e:dd:d1:
4e:93:80:cd:f3:f2:15:52:12:58:bb:3c:be:c1:98:
c5:5b:e7:a9:59:66:00:89:8c:89:4c:9a:60:b7:50:
5d:bc:5c:bc:54:ce:d9:f8:3f:69:5a:35:2b:c4:21:
6d:1a:01:89:11:db:1c:d9:17:b1:d8:f9:ff:aa:cf:
01:e4:df:89:ca:48:5c:4e:4c:a8:f0:33:f3:22:a6:
1e:91:38:7a:d9:7b:0e:73:00:60:2a:6e:3e:76:c5:
11:d7:f9:fb:7c:63:98:9f:1b:1d:c1:47:4e:2f:28:
01:90:51:39:d6:09:73:1d:a0:36:48:8d:f0:92:1b:
13:cc:e3:98:0c:43:19:f4:a5:8b:75:e1:da:62:76:
d5:bd:4a:87:e3:cd:e2:d5:f1:87:f8:b7:58:b6:22:
36:34:19:19:c8:fa:f0:2b:92:c2:5f:a1:83:c2:75:
d3:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:6F:14:B0:3A:02:EF:B2:76:81:66:72:35:E1:81:34:B4:55:30:9B
X509v3 Authority Key Identifier:
keyid:85:8A:27:CB:5C:04:CA:DF:AE:FD:B8:93:BF:06:E1:A7:B7:D9:F1:C1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CBE2E/D8ABAFE8D0FB11ECA27AF22FC4F9AE02/hYony1wEyt-u_biTvwbhp7fZ8cE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYony1wEyt-u_biTvwbhp7fZ8cE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBE2E/D8ABAFE8D0FB11ECA27AF22FC4F9AE02/57840D00DC3811EC8AA80713C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.186.219.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:bb:e5:53:50:e1:be:d7:16:8e:c3:2e:c6:cd:d6:7b:81:82:
8d:e3:c4:9a:07:4b:d6:71:d4:9f:84:44:5b:0a:36:fa:2d:b4:
93:f1:66:90:48:4c:1f:e0:e0:38:b9:6a:4c:ac:53:eb:5c:6c:
28:d8:79:e2:a3:cb:a2:d9:34:45:ae:62:75:f0:2b:70:96:25:
20:77:ce:5c:37:80:84:a5:23:8d:44:73:11:20:1e:14:12:0a:
ae:9d:e0:1a:7f:6a:23:95:ad:83:dc:4d:e1:8d:18:34:e6:b7:
44:ed:53:5a:ce:04:72:33:f9:9d:61:d2:eb:5b:93:9b:28:58:
db:a3:8b:67:cd:e5:ff:3c:35:b0:73:9f:da:65:4a:60:f5:4f:
02:1a:16:b1:2d:b6:99:62:90:aa:7c:ea:15:16:b1:19:ca:f9:
bc:a5:c4:2a:1f:0e:83:89:5e:6a:06:d9:74:b8:91:78:f8:29:
01:69:3c:35:f5:bc:71:3a:fc:f5:ad:12:2a:46:16:5c:55:d9:
77:86:e0:34:59:c7:e0:bd:c4:9e:4c:6a:8c:8a:69:22:9e:ca:
4b:3d:17:cd:81:b5:5f:95:24:87:69:5b:32:cf:6e:28:4b:5f:
1d:40:7e:87:ba:88:29:d5:98:b8:7b:8d:f3:18:74:0f:e1:46:
a3:3a:f6:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:27 2024 by rpki-client on console-ams.rpki-client.org