Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4164/03D92FD4919111EB89DDC35BC4F9AE02/237D9780965011EBA1D1E53AC4F9AE02.roa
File: 237D9780965011EBA1D1E53AC4F9AE02.roa (raw, json)
Hash identifier: 76r5iEbNuhRreO92jjUDvJvPncGyMPr/Z4xoxAbORpU=
Subject key identifier: 1B:4C:57:2E:2F:14:21:4D:0F:3D:C4:3D:63:48:C1:1C:C0:F4:BF:E8
Certificate issuer: /CN=A91D4164/serialNumber=FE8EAA5D78E0BE668C618604A629E2F7F3D5BCB3
Certificate serial: 04B0
Authority key identifier: FE:8E:AA:5D:78:E0:BE:66:8C:61:86:04:A6:29:E2:F7:F3:D5:BC:B3
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_o6qXXjgvmaMYYYEpini9_PVvLM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D4164/03D92FD4919111EB89DDC35BC4F9AE02/237D9780965011EBA1D1E53AC4F9AE02.roa
Signing time: Sat 25 Feb 2023 09:31:38 +0000
ROA not before: Sat 25 Feb 2023 09:31:38 +0000
ROA not after: Fri 01 Mar 2024 00:00:00 +0000
asID: 137083
IP address blocks: 103.104.92.0/24 maxlen: 24
103.104.93.0/24 maxlen: 24
103.104.94.0/24 maxlen: 24
2402:8c0::/32 maxlen: 32
2402:8c0::/48 maxlen: 48
2402:8c0:1::/48 maxlen: 48
2402:8c0:2::/48 maxlen: 48
2402:8c0:3::/48 maxlen: 48
2402:8c0:4::/48 maxlen: 48
2402:8c0:5::/48 maxlen: 48
2402:8c0:6::/48 maxlen: 48
2402:8c0:7::/48 maxlen: 48
2402:8c0:8::/48 maxlen: 48
2402:8c0:9::/48 maxlen: 48
2402:8c0:a::/48 maxlen: 48
2402:8c0:b::/48 maxlen: 48
2402:8c0:c::/48 maxlen: 48
2402:8c0:d::/48 maxlen: 48
2402:8c0:e::/48 maxlen: 48
2402:8c0:f::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1200 (0x4b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D4164/serialNumber=FE8EAA5D78E0BE668C618604A629E2F7F3D5BCB3
Validity
Not Before: Feb 25 09:31:38 2023 GMT
Not After : Mar 1 00:00:00 2024 GMT
Subject: CN=63f9d579-2d0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:85:f2:81:25:74:49:7e:99:af:b8:3b:0e:01:
ef:b6:73:1e:72:05:bf:8e:2a:02:c6:4c:02:df:54:
59:4e:ad:da:fd:5e:22:88:69:ec:83:7e:31:9c:98:
6a:2f:ae:4e:ca:0d:4c:31:fb:a3:a4:05:80:c7:98:
73:13:3c:d4:2d:5f:58:39:f8:fa:a7:11:e1:0c:46:
3f:f8:da:85:c1:95:f3:53:7a:29:08:8f:27:cc:33:
18:16:f3:34:c0:3a:75:ee:f8:3f:b5:8b:83:28:7f:
49:5e:de:3d:26:d8:1c:72:68:30:bf:03:6a:54:f4:
60:79:ab:be:9b:89:e1:01:a4:23:6f:f1:aa:5a:c4:
8d:59:dd:9c:cf:8f:d1:5c:d8:03:9a:da:82:ff:15:
cb:10:67:f0:80:ba:81:e2:43:7e:12:59:41:d4:b1:
67:b1:be:c9:e4:53:9c:8a:cc:28:44:97:e9:9b:1b:
eb:64:02:0a:d1:ce:5e:32:39:6f:98:64:f5:35:d2:
7e:58:8a:82:91:87:aa:d1:5d:70:d9:ed:a1:a1:41:
9a:36:ea:c7:48:e3:cc:6d:03:d9:b2:3b:5e:ae:7c:
ef:ff:c7:c1:07:0c:da:2c:ce:49:a0:31:6b:20:6d:
8d:c2:86:13:70:52:30:b3:1c:dc:52:5e:39:25:9e:
05:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:4C:57:2E:2F:14:21:4D:0F:3D:C4:3D:63:48:C1:1C:C0:F4:BF:E8
X509v3 Authority Key Identifier:
keyid:FE:8E:AA:5D:78:E0:BE:66:8C:61:86:04:A6:29:E2:F7:F3:D5:BC:B3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D4164/03D92FD4919111EB89DDC35BC4F9AE02/_o6qXXjgvmaMYYYEpini9_PVvLM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_o6qXXjgvmaMYYYEpini9_PVvLM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4164/03D92FD4919111EB89DDC35BC4F9AE02/237D9780965011EBA1D1E53AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.104.92.0-103.104.94.255
IPv6:
2402:8c0::/32
Signature Algorithm: sha256WithRSAEncryption
d5:8d:d0:d6:38:56:ab:3b:6f:d5:c6:8a:ba:68:ab:aa:0f:9a:
18:f4:37:de:86:fa:f5:8d:db:44:b9:21:19:b6:6f:a2:08:e5:
76:a8:b3:d2:da:79:75:f8:59:eb:6b:71:eb:02:67:c1:83:ef:
16:66:ce:6f:e4:4e:1c:a8:0e:e7:95:8c:56:e9:f7:f9:f2:df:
75:ac:fe:40:e7:fa:03:35:c4:b2:57:c6:bf:40:6e:a7:70:c7:
eb:fa:3b:81:f6:61:4d:b3:06:8b:12:c4:a9:30:a2:f4:bb:98:
27:58:6c:be:c3:4b:a7:9a:f2:3b:59:d5:38:58:43:f2:4b:53:
0f:35:1b:de:ce:42:c2:f7:10:2e:db:22:7a:6e:06:2c:30:9e:
0b:db:0f:65:30:37:b0:17:b2:24:02:16:f1:15:9d:62:79:74:
ca:f9:3c:ad:a4:7f:00:7c:63:02:62:f4:7b:0e:a5:7c:b9:c0:
f6:14:05:3a:0a:8d:fe:24:7c:2c:5b:5c:d8:5a:a1:9b:da:04:
45:81:11:41:af:e3:99:8a:65:4c:77:de:50:90:0a:b1:80:ec:
47:10:1e:f6:2e:66:e1:c4:bd:5a:25:2f:9c:4e:94:3d:b0:9a:
9b:be:8c:b5:c3:d2:d8:93:7e:fc:51:8c:45:b0:00:5d:4e:de:
95:5d:05:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:42 2024 by rpki-client on console-fra.rpki-client.org