Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D604E/91B5C0C0F4ED11E98CBFA013C4F9AE02/6AAA3634619F11ECA575C929C4F9AE02.roa
File: 6AAA3634619F11ECA575C929C4F9AE02.roa (raw, json)
Hash identifier: Rgh4tK/YAaXVwFZo597157zQEXXcfv8Wvix/c8/QPek=
Subject key identifier: 33:99:99:97:88:9B:5B:A1:E3:8A:21:55:E6:2D:BE:E3:2D:4A:E3:6A
Certificate issuer: /CN=A91D604E/serialNumber=E4DCEC595A1BB673897223656AC639B95352DD73
Certificate serial: 0868
Authority key identifier: E4:DC:EC:59:5A:1B:B6:73:89:72:23:65:6A:C6:39:B9:53:52:DD:73
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NzsWVobtnOJciNlasY5uVNS3XM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D604E/91B5C0C0F4ED11E98CBFA013C4F9AE02/6AAA3634619F11ECA575C929C4F9AE02.roa
Signing time: Mon 20 Dec 2021 14:16:26 +0000
ROA not before: Mon 20 Dec 2021 14:16:26 +0000
ROA not after: Wed 31 Aug 2022 00:00:00 +0000
asID: 149297
IP address blocks: 103.221.52.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2152 (0x868)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D604E/serialNumber=E4DCEC595A1BB673897223656AC639B95352DD73
Validity
Not Before: Dec 20 14:16:26 2021 GMT
Not After : Aug 31 00:00:00 2022 GMT
Subject: CN=61c0903a-1e4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:d7:48:5a:eb:26:67:73:19:0b:fe:42:f9:f3:
c9:92:b5:20:6a:e0:e5:08:92:77:14:9f:62:ef:4f:
fd:cf:b9:d0:51:83:6e:9e:44:e3:ac:eb:5c:04:69:
7f:56:48:ea:34:bb:cb:f0:56:c6:79:73:27:62:0d:
21:1b:1a:54:40:86:18:ee:5c:ca:88:d9:56:03:d7:
3a:78:31:d0:6e:18:c6:bc:6e:38:f5:54:bc:71:f2:
fe:9f:00:1e:1a:36:3c:db:91:78:fa:4f:a4:78:72:
f4:ac:27:4d:06:32:5c:7a:e5:5d:cf:3a:0f:a0:92:
00:f2:72:aa:39:83:9c:fe:35:ad:3f:7d:ff:40:8d:
5f:eb:93:c3:1f:e1:5f:35:7f:db:d4:d4:5b:bd:54:
0d:c0:97:93:15:13:c4:e4:76:d1:70:84:75:fa:65:
c5:b5:8e:43:65:47:fe:c8:8e:b4:1a:83:c4:74:f5:
32:06:51:eb:e7:13:8b:46:4a:7e:61:5e:5c:f2:e2:
59:42:ed:eb:f1:51:da:94:fc:ad:05:db:f7:10:80:
6e:99:13:01:97:f3:e4:6a:de:a0:50:91:99:92:5f:
5c:39:f1:07:48:7f:fb:3a:68:e0:d0:db:e3:76:07:
b1:53:d7:96:7e:84:32:a1:3c:0b:21:e3:3d:c5:a7:
d1:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:99:99:97:88:9B:5B:A1:E3:8A:21:55:E6:2D:BE:E3:2D:4A:E3:6A
X509v3 Authority Key Identifier:
keyid:E4:DC:EC:59:5A:1B:B6:73:89:72:23:65:6A:C6:39:B9:53:52:DD:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D604E/91B5C0C0F4ED11E98CBFA013C4F9AE02/5NzsWVobtnOJciNlasY5uVNS3XM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NzsWVobtnOJciNlasY5uVNS3XM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D604E/91B5C0C0F4ED11E98CBFA013C4F9AE02/6AAA3634619F11ECA575C929C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.221.52.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:cb:5b:f6:7f:68:36:77:dc:af:1c:55:4e:79:8d:20:cb:09:
03:64:25:93:90:ac:6c:eb:7b:2d:5b:69:4b:25:1b:9f:70:20:
68:84:03:eb:99:60:78:a9:32:07:c8:fd:db:54:32:b2:f4:0f:
d6:84:cb:d3:ed:45:52:58:0c:42:2e:ae:5f:b9:c4:ed:43:36:
6d:ea:f7:f8:f1:f2:e4:77:cf:4d:a0:01:8f:7f:f7:b6:03:e7:
a8:33:4a:b5:8d:49:87:79:76:7b:b8:9a:ce:cb:1d:c3:23:bd:
d1:ac:26:0d:b4:a7:f6:65:8d:c4:ba:d2:7b:cc:a3:55:88:64:
22:7e:33:03:69:94:17:94:79:d4:bd:aa:09:5a:4e:3d:25:0b:
1b:00:30:cc:6e:cc:47:2f:db:44:f2:b1:fe:b2:a7:80:83:4e:
63:23:ec:93:6d:58:cb:00:db:09:0d:cd:0a:db:7f:71:0c:64:
60:61:60:c7:fd:f9:0c:b3:a3:8f:c1:86:5d:47:e4:21:ff:17:
6a:06:3d:83:cb:ce:14:75:dc:84:f7:09:33:cc:88:bf:24:de:
a7:96:02:92:4c:27:28:cf:f6:bc:3e:b5:75:23:11:12:3c:8b:
94:27:d2:c2:5c:e0:6c:c4:22:ec:e6:3b:ee:68:b2:47:9e:3d:
4a:1d:1b:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:07 2023 by rpki-client on console-ams.rpki-client.org