Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0935/31B3D160D04811EC9E818135C4F9AE02/243DE5A81C6411EDABB40828C4F9AE02.roa
File: 243DE5A81C6411EDABB40828C4F9AE02.roa (raw, json)
Hash identifier: eist+HZ7Y0rNgYi6iX+2+feZIkUAr+y9SV5NM4OKLfw=
Subject key identifier: 67:0F:1F:20:7C:4C:2E:D7:20:93:A6:C4:D5:40:6B:7A:9F:19:21:9D
Certificate issuer: /CN=A91D0935/serialNumber=7A60C04B87D6C6CB251F15297EE25AD2DA505E0E
Certificate serial: 0173
Authority key identifier: 7A:60:C0:4B:87:D6:C6:CB:25:1F:15:29:7E:E2:5A:D2:DA:50:5E:0E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/emDAS4fWxsslHxUpfuJa0tpQXg4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D0935/31B3D160D04811EC9E818135C4F9AE02/243DE5A81C6411EDABB40828C4F9AE02.roa
Signing time: Wed 01 Mar 2023 05:54:32 +0000
ROA not before: Wed 01 Mar 2023 05:54:32 +0000
ROA not after: Wed 29 May 2024 00:00:00 +0000
asID: 984
IP address blocks: 103.186.112.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 371 (0x173)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D0935/serialNumber=7A60C04B87D6C6CB251F15297EE25AD2DA505E0E
Validity
Not Before: Mar 1 05:54:32 2023 GMT
Not After : May 29 00:00:00 2024 GMT
Subject: CN=63fee898-3aa7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:4e:41:39:d7:d7:b5:fd:48:64:61:01:74:99:
eb:c0:1d:d2:f8:28:f9:5c:24:1f:f6:52:2b:33:f1:
94:cf:23:6d:9a:28:5e:6b:33:b0:56:dc:d8:49:1f:
a3:be:1f:f9:65:d6:5a:6a:d0:12:f1:51:e8:25:74:
0d:b0:b6:bf:8b:b8:dc:41:fc:22:57:af:16:43:b0:
ee:87:ce:cc:97:c6:01:bf:77:b5:0d:21:97:f8:99:
73:c4:50:4e:41:05:c0:d6:b3:74:3c:b9:0e:dd:57:
41:71:45:53:3f:c3:58:2b:99:57:01:9a:a0:9f:ec:
db:1f:5c:72:84:e1:76:db:be:84:76:b4:49:04:6e:
29:4d:8f:92:df:e7:f1:82:af:a1:86:75:d9:6a:1e:
ed:35:88:e4:7a:fc:2b:35:1d:a5:50:9f:4b:80:3e:
5a:ae:32:3b:d4:53:43:98:81:9a:29:a1:07:e5:af:
9f:9b:e3:0e:c6:b0:bf:79:b4:52:7f:33:cd:f7:f7:
6b:56:26:41:1a:77:fe:af:75:e0:11:74:07:b7:da:
25:d8:a2:44:16:63:14:8c:14:f0:7b:60:60:89:bb:
af:9a:18:4c:02:61:a8:4f:6b:f7:d1:b2:44:97:08:
78:1e:f6:1f:62:bc:38:39:38:8b:a9:3a:4e:b4:73:
3e:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:0F:1F:20:7C:4C:2E:D7:20:93:A6:C4:D5:40:6B:7A:9F:19:21:9D
X509v3 Authority Key Identifier:
keyid:7A:60:C0:4B:87:D6:C6:CB:25:1F:15:29:7E:E2:5A:D2:DA:50:5E:0E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D0935/31B3D160D04811EC9E818135C4F9AE02/emDAS4fWxsslHxUpfuJa0tpQXg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/emDAS4fWxsslHxUpfuJa0tpQXg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0935/31B3D160D04811EC9E818135C4F9AE02/243DE5A81C6411EDABB40828C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.186.112.0/23
Signature Algorithm: sha256WithRSAEncryption
24:6d:46:3c:29:56:84:de:ad:f2:29:69:f8:3d:08:72:f3:90:
1e:d7:d9:f9:4b:ec:19:f5:70:7c:ad:d5:9b:72:90:b4:6e:cc:
85:ea:90:c7:b6:ad:ed:49:48:61:8e:6e:c8:d6:76:b4:3c:23:
9c:0e:db:3d:91:77:73:b7:cf:5f:18:5f:86:ea:64:d1:ff:bd:
13:eb:f1:16:ea:6d:3a:07:52:7f:8e:f0:56:cd:92:17:88:11:
38:e5:37:32:cc:42:e0:0d:53:4c:44:00:60:81:ae:02:a7:01:
27:03:dd:c7:63:e6:1c:4a:12:19:08:1d:d2:3e:60:15:28:48:
cf:cc:2c:71:1f:18:d6:eb:8c:8d:c8:59:b5:90:08:14:63:b2:
fa:0e:11:e7:05:41:1b:9f:f1:a5:a0:c7:b9:92:f7:d1:91:37:
12:52:24:92:c9:0a:61:3c:76:84:6e:33:eb:37:c3:e4:77:ed:
f6:9a:ab:2c:ba:55:37:e4:d3:2e:e7:84:6f:63:e8:54:73:29:
5d:d2:9f:66:d5:a3:e7:18:0e:8b:33:fd:cc:d4:01:1a:61:45:
11:2c:00:87:ce:a0:84:1b:66:7f:49:08:fd:c1:75:f7:10:c0:
97:dd:05:0a:5f:32:79:6d:a0:4e:c4:ed:b4:eb:b7:59:fb:84:
a5:d5:a8:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:28 2024 by rpki-client on console-ams.rpki-client.org