Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D7771/55F2F0FEB17D11ECB9736241C4F9AE02/3070A94AB18011EC84124C44C4F9AE02.roa
File: 3070A94AB18011EC84124C44C4F9AE02.roa (raw, json)
Hash identifier: 68jxupmXZn2QZNi9uNLO6BrEYghXRbR8pQg1qQMst+g=
Subject key identifier: BF:70:46:C5:F8:26:F2:B0:EA:29:14:1A:5B:15:72:FF:C7:C1:8F:62
Certificate issuer: /CN=A91D7771/serialNumber=30C582B6799252BAAC3B381ABA4CC337ABF97DE3
Certificate serial: 02
Authority key identifier: 30:C5:82:B6:79:92:52:BA:AC:3B:38:1A:BA:4C:C3:37:AB:F9:7D:E3
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MMWCtnmSUrqsOzgaukzDN6v5feM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D7771/55F2F0FEB17D11ECB9736241C4F9AE02/3070A94AB18011EC84124C44C4F9AE02.roa
Signing time: Fri 01 Apr 2022 05:54:27 +0000
ROA not before: Fri 01 Apr 2022 05:54:27 +0000
ROA not after: Thu 01 Dec 2022 00:00:00 +0000
asID: 146998
IP address blocks: 103.172.166.0/24 maxlen: 24
103.172.167.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D7771/serialNumber=30C582B6799252BAAC3B381ABA4CC337ABF97DE3
Validity
Not Before: Apr 1 05:54:27 2022 GMT
Not After : Dec 1 00:00:00 2022 GMT
Subject: CN=62469393-92f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:32:2c:1f:04:8f:80:d9:5c:01:ed:d2:ac:be:
57:33:07:ae:d7:05:79:72:bf:d8:b2:31:b2:5d:46:
c0:2a:0d:4f:ab:29:82:78:3d:99:d8:83:ef:8a:18:
d0:d2:4a:7f:48:c4:b7:94:e9:a5:6b:25:15:62:a9:
7d:e0:22:18:c5:80:04:3b:3f:33:7e:21:d1:fd:34:
be:67:76:7c:ec:b7:75:d8:fe:88:f2:b8:1e:d1:99:
81:d1:c4:2b:d7:b7:4c:36:2d:b4:b7:d0:4e:e6:ef:
fd:42:92:d1:76:19:32:0b:7e:6a:5c:2b:82:33:9e:
d1:b9:c8:80:76:b7:5d:b8:59:83:83:2d:ec:fa:f6:
d2:cc:35:fc:fe:fd:fb:c8:86:76:4a:bc:e5:df:be:
f8:62:47:66:bc:cc:b4:5f:ae:a4:4e:f2:68:e5:2b:
49:94:0f:f4:3b:8b:76:0c:2e:97:a9:bb:8e:ae:f9:
a8:a0:9f:ca:eb:c9:31:a3:7c:fa:92:fa:df:15:5f:
8e:3e:c1:56:b4:a2:5c:8d:35:23:96:d2:ef:ce:bb:
89:07:9f:56:48:c8:a2:6c:5c:5e:a0:fe:a9:12:0f:
82:df:c8:d1:96:4a:25:40:11:04:bc:9d:0d:ea:14:
01:49:82:55:e9:74:f3:13:d3:83:c9:95:12:7d:43:
d9:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:70:46:C5:F8:26:F2:B0:EA:29:14:1A:5B:15:72:FF:C7:C1:8F:62
X509v3 Authority Key Identifier:
keyid:30:C5:82:B6:79:92:52:BA:AC:3B:38:1A:BA:4C:C3:37:AB:F9:7D:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D7771/55F2F0FEB17D11ECB9736241C4F9AE02/MMWCtnmSUrqsOzgaukzDN6v5feM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MMWCtnmSUrqsOzgaukzDN6v5feM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D7771/55F2F0FEB17D11ECB9736241C4F9AE02/3070A94AB18011EC84124C44C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.172.166.0/23
Signature Algorithm: sha256WithRSAEncryption
8a:b6:41:9f:9d:d2:74:5d:e5:52:da:01:c3:67:02:08:61:14:
14:14:3f:b4:6f:50:de:cd:c1:24:99:69:ac:20:8d:9b:a9:b8:
f6:47:8f:d5:ac:da:de:39:0b:a7:84:5a:ae:f6:f9:b5:5b:a8:
95:43:d8:7f:ee:18:35:4b:43:77:b5:0d:2b:df:10:c7:ab:7c:
e8:1c:b6:c0:1a:75:1a:20:75:f3:5f:3e:38:93:53:db:e0:be:
ae:0c:53:4e:2d:d4:a9:7c:92:3a:53:d2:6e:7a:63:74:92:67:
31:f3:11:1f:60:43:b3:45:18:dc:5b:f1:b7:41:f3:88:b0:72:
8b:23:c4:6b:95:b7:ea:f0:a0:69:15:cd:a2:4e:10:c9:00:60:
e7:81:96:e4:81:20:4e:fd:c0:5c:80:6e:f9:99:85:16:71:d2:
77:ca:50:87:74:82:8b:f3:70:08:c6:97:59:02:8e:c0:9e:3d:
e2:61:3d:1c:f3:d1:44:e0:d7:16:e8:bc:da:f8:e6:38:7a:fb:
fd:b4:3e:f3:8e:70:97:da:92:20:02:c4:bd:80:ae:ba:8b:3c:
b8:94:01:f8:26:f6:9d:50:8b:cd:31:15:00:4b:5b:f2:70:5a:
01:53:95:0a:a0:51:be:c2:55:a9:15:3e:bc:2b:1e:f2:54:e0:
52:a4:6b:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:09 2023 by rpki-client on console-fra.rpki-client.org