Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/EE15A3E6AE8411ECA64BFC84C4F9AE02.roa
File: EE15A3E6AE8411ECA64BFC84C4F9AE02.roa (raw, json)
Hash identifier: I1vTMlDUg51Jyr52fg5FeCDs/h6o4x4Br+jtRgvgewo=
Subject key identifier: 92:B4:34:AC:B7:26:CC:99:20:8F:DE:84:A8:FF:40:54:38:46:8F:EE
Certificate issuer: /CN=A91D6499/serialNumber=0BDF5D7BF6C0ADC36F23012836D8C2DC2427933C
Certificate serial: 0313
Authority key identifier: 0B:DF:5D:7B:F6:C0:AD:C3:6F:23:01:28:36:D8:C2:DC:24:27:93:3C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C99de_bArcNvIwEoNtjC3CQnkzw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/EE15A3E6AE8411ECA64BFC84C4F9AE02.roa
Signing time: Mon 28 Mar 2022 10:50:50 +0000
ROA not before: Mon 28 Mar 2022 10:50:50 +0000
ROA not after: Tue 31 Jan 2023 00:00:00 +0000
asID: 135026
IP address blocks: 103.42.104.0/24 maxlen: 24
103.42.105.0/24 maxlen: 24
103.42.107.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 787 (0x313)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D6499/serialNumber=0BDF5D7BF6C0ADC36F23012836D8C2DC2427933C
Validity
Not Before: Mar 28 10:50:50 2022 GMT
Not After : Jan 31 00:00:00 2023 GMT
Subject: CN=62419309-562d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:59:f3:e7:ea:94:21:68:70:9e:5d:08:18:7e:
79:94:30:b7:30:48:93:fd:52:a0:5a:22:4b:9f:7d:
57:3b:61:8b:90:b9:9c:b3:5c:8d:23:f9:5a:9c:57:
59:f6:92:3f:f4:d3:47:a3:49:61:a5:35:97:c7:ed:
c7:d0:66:28:bc:c8:44:25:60:35:85:99:e7:79:1e:
36:f9:86:c8:7a:eb:ac:b3:73:b5:1b:98:6f:77:7d:
f3:78:24:7f:24:e8:3c:c0:bc:43:46:ac:8b:e6:6b:
b4:52:c2:c4:9b:ee:fa:20:ee:fc:6a:71:43:78:b5:
bb:87:f2:59:d4:ca:40:69:5d:95:3b:78:5d:f1:92:
7f:1e:8a:d4:05:28:ad:0a:84:66:95:5a:54:a5:f7:
00:41:7d:40:b7:7e:99:4f:7e:c2:98:b2:36:92:6b:
1d:2f:ef:59:16:75:64:5f:5f:0b:8e:f1:1c:74:21:
d1:25:47:87:4b:44:e5:50:8a:18:0a:98:86:c7:9f:
23:cc:9e:fd:4b:30:7b:c0:4d:08:f6:f2:e5:32:27:
f3:70:c4:8d:43:ac:a5:6e:87:09:37:2b:84:68:96:
09:bd:45:12:ae:88:66:f8:ba:c5:7f:de:f9:17:b0:
c9:75:68:e3:93:ce:31:9d:61:70:a3:f9:ce:8d:8d:
c7:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:B4:34:AC:B7:26:CC:99:20:8F:DE:84:A8:FF:40:54:38:46:8F:EE
X509v3 Authority Key Identifier:
keyid:0B:DF:5D:7B:F6:C0:AD:C3:6F:23:01:28:36:D8:C2:DC:24:27:93:3C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C99de_bArcNvIwEoNtjC3CQnkzw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/EE15A3E6AE8411ECA64BFC84C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.42.104.0/23
103.42.107.0/24
Signature Algorithm: sha256WithRSAEncryption
08:7e:cc:ee:70:bf:a9:13:e3:f4:68:63:59:5e:b1:92:60:6d:
c6:e8:16:d0:a5:f2:d0:65:47:25:d3:60:f2:ee:30:be:cd:0a:
57:4f:e1:4b:a5:01:fc:6f:8e:2c:09:db:d2:63:a5:e9:0f:f6:
74:bd:0c:a6:1a:ec:f5:56:12:30:e9:65:e0:92:53:37:f3:36:
72:e0:f0:78:19:a0:0c:9a:61:bf:5b:54:7a:eb:a9:5c:44:2a:
3f:4f:06:fb:57:51:09:67:9b:47:28:77:df:0a:7b:70:e9:e2:
12:2d:5d:22:01:72:a5:ce:f7:a9:f1:60:cf:51:37:0e:28:6c:
3d:9c:ca:6e:5e:4f:2e:9b:21:b0:21:37:49:7a:b6:ee:23:16:
b4:34:60:7d:83:dc:6b:f6:7f:5d:7d:30:93:30:16:77:7e:72:
3d:f7:3b:88:87:f8:3d:b7:ae:d5:ad:2f:b7:34:f2:57:16:62:
36:0e:33:59:e0:51:24:4d:33:2e:97:ca:30:3c:b9:2e:f7:cf:
ab:2c:bf:34:b1:26:62:5b:b0:f5:0f:c9:dc:e9:93:ec:bd:db:
c9:e1:1c:3c:af:87:c2:ea:aa:05:1e:06:ea:dc:da:6a:62:53:
f6:45:df:d0:84:e6:1d:de:6b:16:8e:d2:5e:77:05:36:6a:e6:
aa:f0:67:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:30 2024 by rpki-client on console-ams.rpki-client.org