Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1EDC/54404390D06211EAA19A3411C4F9AE02/3897F81CD06311EAA22BB211C4F9AE02.roa
File: 3897F81CD06311EAA22BB211C4F9AE02.roa (raw, json)
Hash identifier: vPIMxr5mLhvrzit2KFN7q/qN2q+yi1wuzGNeqJyMxNQ=
Subject key identifier: FC:11:65:DA:67:16:5C:3A:F5:DB:C3:CA:67:0E:61:95:89:B6:7E:30
Certificate issuer: /CN=A91D1EDC/serialNumber=5FA0CE70061E49B73C378F1C36F6959641925AED
Certificate serial: 0319
Authority key identifier: 5F:A0:CE:70:06:1E:49:B7:3C:37:8F:1C:36:F6:95:96:41:92:5A:ED
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X6DOcAYeSbc8N48cNvaVlkGSWu0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D1EDC/54404390D06211EAA19A3411C4F9AE02/3897F81CD06311EAA22BB211C4F9AE02.roa
Signing time: Mon 23 Aug 2021 10:59:42 +0000
ROA not before: Mon 23 Aug 2021 10:59:42 +0000
ROA not after: Mon 31 Oct 2022 00:00:00 +0000
asID: 45158
IP address blocks: 103.251.172.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 793 (0x319)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D1EDC/serialNumber=5FA0CE70061E49B73C378F1C36F6959641925AED
Validity
Not Before: Aug 23 10:59:42 2021 GMT
Not After : Oct 31 00:00:00 2022 GMT
Subject: CN=61237f9e-8bf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:49:19:05:30:df:1a:d9:19:ad:74:c8:ca:69:
65:71:ae:bb:fa:ca:12:66:41:81:0c:0d:08:02:b8:
f4:03:69:59:f5:5b:ae:34:62:cd:c2:88:8f:00:32:
4b:a0:ec:66:77:92:40:cd:f3:ac:95:8f:7c:5d:2b:
d4:67:5e:ca:ca:1b:bf:2e:e7:a1:9b:a4:15:ee:60:
89:bb:1f:25:90:ad:72:52:a7:cd:1c:39:47:39:03:
3a:a1:b3:fd:36:56:c8:8f:25:bf:2f:13:7f:63:cc:
5f:ae:2d:fb:ac:91:68:c2:9a:41:85:80:64:ed:27:
ef:94:54:da:3e:25:78:81:de:9f:9b:32:c7:d4:88:
53:9a:92:9c:ae:4f:2d:dc:ce:63:be:09:71:ee:83:
2b:2c:b9:22:12:af:70:42:c4:9e:5a:84:db:a9:64:
46:49:eb:f9:d6:12:f3:6f:b2:3b:d9:49:a2:06:31:
22:99:22:26:00:a5:10:da:e2:f4:08:f2:d7:99:3d:
c9:4c:ec:5f:3d:33:7f:f7:a9:4f:18:a4:d3:df:92:
2d:ac:fb:82:2f:6b:98:d3:1b:0e:70:ad:90:94:de:
08:c3:b7:c0:6d:ef:d5:14:a8:2c:50:cd:c8:9a:96:
f8:ca:73:6b:ee:99:81:8f:10:f7:c2:32:4f:1f:1f:
f2:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:11:65:DA:67:16:5C:3A:F5:DB:C3:CA:67:0E:61:95:89:B6:7E:30
X509v3 Authority Key Identifier:
keyid:5F:A0:CE:70:06:1E:49:B7:3C:37:8F:1C:36:F6:95:96:41:92:5A:ED
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D1EDC/54404390D06211EAA19A3411C4F9AE02/X6DOcAYeSbc8N48cNvaVlkGSWu0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X6DOcAYeSbc8N48cNvaVlkGSWu0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1EDC/54404390D06211EAA19A3411C4F9AE02/3897F81CD06311EAA22BB211C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.251.172.0/22
Signature Algorithm: sha256WithRSAEncryption
2d:1d:01:6c:ad:1b:8b:86:cb:f8:80:ca:d9:b8:59:50:8a:14:
1b:1f:a6:18:6d:4e:25:d3:e5:37:a4:26:7a:31:b8:a8:c7:27:
94:eb:42:0c:05:0f:1c:0f:5e:df:ab:8d:57:3a:13:f7:da:ec:
e1:b4:ae:cf:6a:5c:2f:de:2a:eb:85:9b:d4:6a:31:16:c1:b6:
79:70:7b:2c:9e:37:a5:e4:40:67:03:b2:d1:c3:4d:52:bd:82:
2c:1c:84:41:cb:90:a2:34:0e:e9:49:45:d5:d8:3f:26:a0:15:
3c:9b:6c:48:74:40:3d:a0:41:d1:05:f7:f6:2a:8e:99:df:e6:
c2:38:c3:e3:57:f6:65:b7:8c:ed:fa:60:37:bb:99:e6:f2:6e:
37:a1:9b:04:03:6e:96:69:eb:68:d4:84:12:4c:5c:1b:35:8e:
7c:5c:30:71:f1:a7:27:d8:7e:ab:14:41:29:65:8d:54:f8:fb:
0a:ca:5e:7c:5b:5e:29:46:89:71:7a:ce:0d:15:06:95:4f:6b:
6f:2b:12:94:1b:a0:be:23:51:1b:5d:33:36:c6:13:ff:65:23:
cb:56:a4:4d:4a:b2:e1:fb:13:43:93:7e:00:4b:12:62:cc:2d:
e2:34:fe:56:3f:53:e1:a9:bd:d3:93:85:0e:f5:07:89:a7:cd:
84:8a:5b:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:06 2023 by rpki-client on console-ams.rpki-client.org