Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/2C784780731D11EDAC36247CC4F9AE02.roa
File: 2C784780731D11EDAC36247CC4F9AE02.roa (raw, json)
Hash identifier: u8zkBFjNT4MpYB/TwJz/YVTEX+cdgess5eVE15au87o=
Subject key identifier: 6E:58:EC:8D:5E:E8:8B:14:93:24:91:EE:AF:A0:75:50:9C:C4:3C:C1
Certificate issuer: /CN=A91E015D/serialNumber=257A9E6914D58A745B0EE6ABE548CDBE020488D4
Certificate serial: 4A
Authority key identifier: 25:7A:9E:69:14:D5:8A:74:5B:0E:E6:AB:E5:48:CD:BE:02:04:88:D4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JXqeaRTVinRbDuar5UjNvgIEiNQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/2C784780731D11EDAC36247CC4F9AE02.roa
Signing time: Wed 29 Mar 2023 06:56:59 +0000
ROA not before: Wed 29 Mar 2023 06:56:59 +0000
ROA not after: Wed 29 May 2024 00:00:00 +0000
asID: 7029
IP address blocks: 103.85.200.0/23 maxlen: 23
103.85.202.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74 (0x4a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E015D/serialNumber=257A9E6914D58A745B0EE6ABE548CDBE020488D4
Validity
Not Before: Mar 29 06:56:59 2023 GMT
Not After : May 29 00:00:00 2024 GMT
Subject: CN=6423e13b-1bfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:92:26:78:52:d1:84:9e:01:03:3a:7d:50:e3:
46:ce:5d:6d:78:63:3d:e0:00:12:0f:aa:cc:fa:22:
f1:f3:51:4b:e4:61:b2:7a:b6:63:6c:d9:b6:8f:a1:
ff:4c:41:f7:d0:6a:54:b8:7c:c4:fb:16:a8:58:bb:
0c:6c:c3:b3:5e:42:1f:3a:c2:18:a2:3f:a2:b2:23:
23:c5:50:4d:34:25:4c:c8:96:91:43:67:8d:06:27:
7d:19:44:cc:69:47:94:29:9d:ad:9b:39:30:77:a7:
9c:d6:5c:7b:a3:99:b8:0d:67:c3:61:b9:88:1c:a3:
24:68:08:5b:60:7b:90:99:27:ae:13:ac:12:fa:0a:
0e:05:d3:f2:e1:7a:90:e2:fc:83:a4:06:50:27:25:
63:d3:33:c2:df:a2:52:c5:91:23:99:34:54:89:cd:
77:06:cd:56:39:2a:dd:b1:c9:78:bb:d2:95:77:b4:
1e:0f:0b:37:c5:64:98:74:23:d3:e7:79:c0:60:c7:
7a:11:40:da:5b:c5:b0:69:5b:98:0a:91:5d:c8:c4:
1e:13:94:fa:a2:82:15:c6:51:dc:69:fe:54:75:f2:
96:96:64:b7:15:ec:01:de:1b:24:75:aa:1d:78:0f:
07:9a:fb:d9:98:17:c8:0e:8d:de:d4:db:74:ff:e8:
a9:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:58:EC:8D:5E:E8:8B:14:93:24:91:EE:AF:A0:75:50:9C:C4:3C:C1
X509v3 Authority Key Identifier:
keyid:25:7A:9E:69:14:D5:8A:74:5B:0E:E6:AB:E5:48:CD:BE:02:04:88:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/JXqeaRTVinRbDuar5UjNvgIEiNQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JXqeaRTVinRbDuar5UjNvgIEiNQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/2C784780731D11EDAC36247CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.85.200.0/22
Signature Algorithm: sha256WithRSAEncryption
36:2b:8c:93:b6:88:d1:aa:36:38:f3:10:05:93:36:d2:1d:e1:
1a:88:65:8a:c1:82:0b:0b:04:03:66:3e:41:8a:87:8c:7c:a9:
7c:21:bc:f3:9d:9f:b9:a5:e8:db:8c:5c:24:84:8e:6c:69:3d:
aa:0a:f9:ec:10:ff:a7:0f:3a:e2:a9:0f:d1:f9:51:13:c3:26:
3c:b7:9d:38:89:81:99:f0:5e:2b:a6:1a:2d:bb:11:75:9d:a0:
6a:b8:b3:94:b4:c0:5b:3d:2f:d0:e8:11:f3:1b:19:a2:8b:39:
40:d5:bb:e7:e4:f6:29:ac:27:69:f4:cd:aa:29:7a:d7:8e:b2:
b0:37:88:3a:17:8a:b2:7e:b5:18:49:4f:c9:26:16:a9:3b:fb:
3e:bc:ae:8e:80:f3:a4:12:d6:1f:71:e9:65:ff:3d:9f:3c:b4:
d5:71:21:ae:ab:a5:78:56:3a:29:73:5d:22:9f:33:c7:82:72:
09:06:57:0f:55:ae:7a:85:08:0a:09:81:38:02:24:fc:b4:ee:
c8:ca:61:8f:29:40:33:b1:ca:2b:c1:88:aa:0e:86:26:39:07:
d1:a5:ce:1b:57:bf:0f:87:b8:da:46:a2:f6:e5:dd:45:e8:65:
08:6d:8d:fe:bc:bc:81:aa:19:db:0a:2f:bd:39:84:3e:e5:ad:
1f:03:0c:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:43 2024 by rpki-client on console-fra.rpki-client.org