Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4C30/0F1F7CE8964111EDBA9DCC4FC4F9AE02/CE0779FA964411EDACA77270C4F9AE02.roa
File: CE0779FA964411EDACA77270C4F9AE02.roa (raw, json)
Hash identifier: tT9GNUS+58myO9oGun+L2EmpdaHyVzIvgscKMZpyJ5g=
Subject key identifier: 6D:E1:61:E8:E8:38:05:70:8C:E8:65:1C:4E:EC:04:5B:8F:C2:75:D0
Certificate issuer: /CN=A91E4C30/serialNumber=58A0DDD02555C837486D55435186DCC576A1283E
Certificate serial: 02
Authority key identifier: 58:A0:DD:D0:25:55:C8:37:48:6D:55:43:51:86:DC:C5:76:A1:28:3E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKDd0CVVyDdIbVVDUYbcxXahKD4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E4C30/0F1F7CE8964111EDBA9DCC4FC4F9AE02/CE0779FA964411EDACA77270C4F9AE02.roa
Signing time: Tue 17 Jan 2023 08:56:19 +0000
ROA not before: Tue 17 Jan 2023 08:56:18 +0000
ROA not after: Sun 31 Mar 2024 00:00:00 +0000
asID: 137449
IP address blocks: 103.61.240.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E4C30/serialNumber=58A0DDD02555C837486D55435186DCC576A1283E
Validity
Not Before: Jan 17 08:56:18 2023 GMT
Not After : Mar 31 00:00:00 2024 GMT
Subject: CN=63c662b2-525e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:6d:9f:e3:83:73:4c:4c:0a:df:19:8d:78:ad:
60:68:08:ec:96:25:de:ae:20:2b:e7:db:f0:2f:bb:
db:ef:43:09:b2:c2:95:c6:82:c1:e2:a2:d9:7a:85:
5b:09:ac:b6:2a:9b:0b:42:1e:65:28:38:db:e5:29:
d6:53:0c:cf:25:45:b9:59:8b:3d:93:e0:26:29:a8:
42:04:3f:16:1f:35:ad:cd:ef:f1:cd:da:a1:a1:3e:
8c:a2:08:7c:b0:9f:97:56:82:10:ad:a1:0e:51:e1:
8e:18:09:c5:29:9e:58:b9:96:73:91:6b:43:f7:2e:
dd:9a:f0:73:85:cd:79:dd:ed:3f:f2:5e:31:ed:e6:
7f:e8:ca:14:30:36:7f:72:39:f7:bc:3f:56:1b:50:
31:ff:8d:ed:be:fe:3f:74:5a:d3:76:10:45:c2:72:
50:8c:88:f4:68:c0:cf:d2:3c:be:88:f0:1c:b2:4b:
70:90:a6:da:4d:59:1a:c6:85:a7:e0:11:2f:92:c6:
5c:d0:c5:c7:93:93:86:9d:f8:da:a5:98:23:d8:31:
7c:9b:98:b1:3e:ed:a0:9d:08:03:7c:3d:5c:5b:ac:
ef:60:c6:fd:cf:2e:89:3e:73:55:01:d0:e4:05:85:
e6:b0:07:6f:0d:4c:41:0f:a1:d2:9a:f4:7c:b8:e2:
1f:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:E1:61:E8:E8:38:05:70:8C:E8:65:1C:4E:EC:04:5B:8F:C2:75:D0
X509v3 Authority Key Identifier:
keyid:58:A0:DD:D0:25:55:C8:37:48:6D:55:43:51:86:DC:C5:76:A1:28:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E4C30/0F1F7CE8964111EDBA9DCC4FC4F9AE02/WKDd0CVVyDdIbVVDUYbcxXahKD4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKDd0CVVyDdIbVVDUYbcxXahKD4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4C30/0F1F7CE8964111EDBA9DCC4FC4F9AE02/CE0779FA964411EDACA77270C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.61.240.0/23
Signature Algorithm: sha256WithRSAEncryption
6b:f3:22:91:87:03:f1:de:83:40:be:42:4f:34:8b:aa:e6:80:
15:4e:bf:a6:66:ce:5f:56:f6:68:ca:1e:b3:87:7e:23:ab:8b:
cc:88:dc:b6:53:5c:a2:09:07:29:fb:15:2b:3f:21:07:18:33:
f6:de:be:8c:e6:3b:36:12:05:0f:b1:bf:97:82:79:3a:6c:f0:
00:d5:45:12:5d:84:80:10:aa:cb:1c:48:86:84:74:90:63:28:
7f:4f:21:6e:6d:5e:a5:7b:9a:6b:7b:32:da:f5:dd:a1:ab:59:
98:ed:89:93:04:52:47:2e:89:e7:80:34:a2:f0:92:25:33:12:
cd:51:fc:16:00:cc:66:62:6e:a6:fd:43:97:b7:62:4b:6f:10:
14:2c:5e:3f:3a:db:f5:81:da:ab:a8:60:a1:f9:7a:d0:e9:f6:
0a:02:a3:44:e0:a7:f7:9e:55:7c:eb:b1:c8:18:54:2b:50:46:
64:b0:6d:8f:ac:2d:a2:6b:c9:93:74:b8:af:7b:8e:c6:20:b3:
44:d2:d8:a3:c7:ad:22:e2:8e:1e:35:47:88:11:a1:33:2b:bf:
20:ba:b9:d0:38:dd:1c:6c:f2:ba:5c:ca:29:40:91:4a:1f:87:
9c:a0:a1:85:7f:f8:bf:8a:ed:3e:b3:6e:53:f3:06:f1:e2:4e:
ab:ce:ca:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:44 2024 by rpki-client on console-fra.rpki-client.org