Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/8E0D0FE606B711EB9EB4BA32C4F9AE02.roa
File: 8E0D0FE606B711EB9EB4BA32C4F9AE02.roa (raw, json)
Hash identifier: TfIqyXh7YXLnT4SKt9lx9ve1mSgzUm0xj6f0PvavpMo=
Subject key identifier: A0:46:31:BF:A7:8B:C0:98:10:9D:4D:A1:4A:E1:B4:1C:B3:FB:E6:27
Certificate issuer: /CN=A91DA13E/serialNumber=DE8A8DA70E165009D140D9F624524DC4D479D5E8
Certificate serial: 04FA
Authority key identifier: DE:8A:8D:A7:0E:16:50:09:D1:40:D9:F6:24:52:4D:C4:D4:79:D5:E8
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oqNpw4WUAnRQNn2JFJNxNR51eg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/8E0D0FE606B711EB9EB4BA32C4F9AE02.roa
Signing time: Fri 01 Jul 2022 11:50:22 +0000
ROA not before: Fri 01 Jul 2022 11:50:22 +0000
ROA not after: Sat 30 Sep 2023 00:00:00 +0000
asID: 132111
IP address blocks: 103.27.72.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1274 (0x4fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DA13E
Validity
Not Before: Jul 1 11:50:22 2022 GMT
Not After : Sep 30 00:00:00 2023 GMT
Subject: CN=62bedf7e-5753
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:15:f4:4b:76:c9:5e:57:b2:36:b9:39:64:fc:
f0:48:3c:ac:f5:33:94:87:a1:fc:c9:d3:fd:a1:1a:
8d:f9:5b:85:92:3b:d3:ee:f6:f6:6f:ef:1f:ae:33:
1d:cd:79:15:ca:6d:f1:e9:6c:01:40:33:b3:24:f8:
3d:c9:67:e2:29:01:44:0e:c2:b0:15:7b:15:53:6b:
54:5b:e5:2f:38:77:14:83:c5:9e:d0:be:88:35:ab:
cb:1f:e4:ad:51:6d:94:29:cb:51:e0:4c:61:8a:60:
f7:7d:a2:e6:ff:04:96:4a:3d:e6:85:81:0a:e7:30:
56:8b:0c:29:1f:99:51:5a:e0:ba:59:76:1b:9e:0a:
17:8c:10:62:ff:1c:d9:33:a0:a3:22:c8:cc:28:af:
7b:0d:0f:43:cf:0f:80:3a:62:ef:34:88:1b:46:0e:
46:04:1b:6a:62:a2:41:52:ec:df:d8:01:8a:91:56:
8d:53:1a:01:50:99:e7:ca:8e:47:82:14:4f:ce:83:
4b:e4:af:aa:ac:80:1e:d0:61:14:94:85:75:57:46:
d5:04:4b:24:01:21:c1:22:a7:5c:2b:7c:bc:fb:95:
45:44:63:02:7a:5d:dd:00:79:dc:78:6b:c1:51:d9:
1a:9e:0f:3a:d7:e7:b0:a4:0c:dc:83:e0:6b:d2:7e:
16:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:46:31:BF:A7:8B:C0:98:10:9D:4D:A1:4A:E1:B4:1C:B3:FB:E6:27
X509v3 Authority Key Identifier:
keyid:DE:8A:8D:A7:0E:16:50:09:D1:40:D9:F6:24:52:4D:C4:D4:79:D5:E8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oqNpw4WUAnRQNn2JFJNxNR51eg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/8E0D0FE606B711EB9EB4BA32C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.27.72.0/23
Signature Algorithm: sha256WithRSAEncryption
25:0e:d1:f1:54:4d:92:1a:7b:58:ab:71:91:01:d0:1f:86:e3:
99:9f:5c:92:9d:6d:93:d9:78:b9:03:76:d2:b8:40:cf:ba:81:
be:dc:a9:09:a5:73:fe:9f:ed:b8:8a:41:3a:33:76:9e:a9:e4:
68:42:a0:b8:fa:e6:34:2b:69:e9:f7:79:f5:f9:c7:6e:90:bb:
55:64:5f:e4:ae:5d:ee:9d:c5:fa:d0:4c:f3:0e:df:1a:66:1e:
7e:e6:c3:d2:25:01:b7:c9:8d:c5:7d:08:2a:38:df:6e:42:43:
dd:22:de:f5:5e:ba:b1:45:ea:4f:fa:cf:98:1d:11:a7:d0:67:
46:30:ef:de:6e:d4:3b:6b:b1:9d:ac:84:ad:c9:9f:19:a1:3b:
b3:6a:62:17:f1:3f:5a:e2:da:80:58:94:e6:7c:5c:c7:90:76:
f7:5d:3f:9e:8f:ac:2e:db:37:06:8f:71:ef:6c:23:c1:fa:19:
96:6b:f9:fd:fc:15:36:09:43:49:32:60:9a:89:f9:fa:f3:3c:
f0:ed:27:91:ae:e7:22:31:cb:f3:7c:21:30:17:fe:7a:d5:cc:
db:f7:70:40:58:01:2a:30:13:8a:f4:d3:66:b3:65:3d:b5:4c:
1d:2e:ce:93:61:dc:90:4a:79:d0:2d:96:67:33:61:f8:f0:1e:
1e:ab:f6:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:44:33 2025 by rpki-client