Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/16888E62780B11EBB7C3E857C4F9AE02.roa
File: 16888E62780B11EBB7C3E857C4F9AE02.roa (raw, json)
Hash identifier: Hz6d36sAnb8lDkoo3e/qe8KBnfJH/ifSVX4Dk68NeBE=
Subject key identifier: BF:2D:0F:B8:57:B2:38:16:98:1F:C9:0F:BA:32:9B:70:F8:7B:24:DC
Certificate issuer: /CN=A91D6499/serialNumber=0BDF5D7BF6C0ADC36F23012836D8C2DC2427933C
Certificate serial: 020B
Authority key identifier: 0B:DF:5D:7B:F6:C0:AD:C3:6F:23:01:28:36:D8:C2:DC:24:27:93:3C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C99de_bArcNvIwEoNtjC3CQnkzw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/16888E62780B11EBB7C3E857C4F9AE02.roa
Signing time: Wed 17 Nov 2021 14:10:53 +0000
ROA not before: Wed 17 Nov 2021 14:10:53 +0000
ROA not after: Tue 31 Jan 2023 00:00:00 +0000
asID: 135026
IP address blocks: 103.42.104.0/24 maxlen: 24
103.42.105.0/24 maxlen: 24
103.42.106.0/24 maxlen: 24
103.42.107.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 523 (0x20b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D6499/serialNumber=0BDF5D7BF6C0ADC36F23012836D8C2DC2427933C
Validity
Not Before: Nov 17 14:10:53 2021 GMT
Not After : Jan 31 00:00:00 2023 GMT
Subject: CN=61950d6d-06d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:5f:b2:31:be:3a:c8:7b:fa:62:86:69:03:ed:
d0:57:1f:65:48:65:88:13:b0:13:03:dd:32:4e:3d:
68:c0:97:14:a8:fb:e0:9e:8a:ae:48:5f:bf:09:35:
5e:05:1e:39:33:8c:d2:95:a6:7a:18:60:91:f9:03:
d0:2e:5e:82:2d:e9:b5:dd:24:5b:81:6f:aa:3b:13:
5a:5b:0b:e7:d6:16:0a:58:2b:50:e1:11:13:87:09:
e3:27:e5:53:36:e5:4a:ff:9f:ce:59:b8:b2:94:ed:
9e:a4:24:e0:a7:e8:1c:ca:8e:de:c5:0a:40:9e:f9:
ca:52:5a:01:ad:b8:c6:5a:fb:81:a8:cb:ed:88:c7:
8a:a3:a9:e2:3d:36:ee:2b:60:5f:e5:fb:77:3c:bc:
b4:34:76:0d:30:ac:0f:51:c0:b6:34:b0:03:e4:22:
e0:79:ec:9d:0f:a6:1c:84:e2:ff:1a:26:50:9f:72:
5b:d9:78:1b:5a:2d:54:41:12:e9:9c:a8:4e:eb:80:
db:44:ca:46:3f:34:28:30:3d:22:88:28:ee:6c:04:
d4:71:ab:13:d3:f1:c5:bd:3b:1b:4a:39:49:84:54:
2b:25:a0:8f:34:5f:ba:06:88:8a:cf:fb:e7:68:30:
6f:9b:d4:73:df:b8:27:80:41:42:2f:a6:29:24:c8:
92:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:2D:0F:B8:57:B2:38:16:98:1F:C9:0F:BA:32:9B:70:F8:7B:24:DC
X509v3 Authority Key Identifier:
keyid:0B:DF:5D:7B:F6:C0:AD:C3:6F:23:01:28:36:D8:C2:DC:24:27:93:3C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C99de_bArcNvIwEoNtjC3CQnkzw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/16888E62780B11EBB7C3E857C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.42.104.0/22
Signature Algorithm: sha256WithRSAEncryption
76:b2:2d:cf:f1:bf:bc:5a:5a:8b:84:02:12:4e:9c:de:3c:d2:
99:1d:22:20:3a:de:9f:72:f3:dd:54:e4:ef:43:0b:88:9b:a5:
85:22:7e:7b:9a:92:9e:03:26:5f:37:06:70:3d:14:f5:5b:3d:
32:df:e0:34:15:95:07:3f:90:94:e4:38:96:c2:f3:cd:60:91:
3a:8e:b3:3c:a5:8e:fe:a7:81:e2:f4:f8:f9:fe:f4:fe:5d:7c:
b1:09:36:08:74:9a:27:c3:32:f1:52:ff:a2:54:0f:82:8b:87:
7a:68:aa:a6:d1:53:bc:e3:d9:f6:28:02:55:ff:9f:dc:b8:e5:
09:49:2f:d8:c2:48:00:ca:54:60:f6:6c:64:d0:e2:b6:62:4e:
22:4a:3d:21:32:36:7b:e1:48:9a:f6:f1:3e:e8:2b:c6:31:d5:
1f:f1:04:05:83:f7:c5:0d:84:6f:64:91:06:db:41:6c:ce:5d:
38:dd:78:b3:06:b5:9d:ab:9f:42:d3:82:7f:5c:03:4d:1b:5d:
b4:e4:4c:9d:8c:53:dc:67:f3:93:cb:a7:4b:1c:9e:1a:6f:27:
8d:b9:5b:3a:5c:7e:7d:75:70:0d:27:67:1e:2b:77:e9:50:ff:
d4:10:ab:39:94:12:47:f1:e1:34:3e:9e:8e:75:24:50:dd:f1:
18:56:2a:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:42 2024 by rpki-client on console-fra.rpki-client.org