Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/AE710510DCCD11ECAFD2715CC4F9AE02.roa
File: AE710510DCCD11ECAFD2715CC4F9AE02.roa (raw, json)
Hash identifier: 42f28EImFYauQqIiOvAimQwWEpomo3E9GVBFhIJEmGg=
Subject key identifier: CD:79:B9:2C:8A:3E:26:8E:D2:EF:D7:6B:6D:52:30:97:0E:D2:BB:49
Certificate issuer: /CN=A91E7BD4/serialNumber=5DC0303331898AEFDB85E4D914006B89376BEFE1
Certificate serial: 046A
Authority key identifier: 5D:C0:30:33:31:89:8A:EF:DB:85:E4:D9:14:00:6B:89:37:6B:EF:E1
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcAwMzGJiu_bheTZFABriTdr7-E.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/AE710510DCCD11ECAFD2715CC4F9AE02.roa
Signing time: Sun 02 Oct 2022 01:41:27 +0000
ROA not before: Sun 02 Oct 2022 01:41:27 +0000
ROA not after: Fri 01 Dec 2023 00:00:00 +0000
asID: 139623
IP address blocks: 103.142.32.0/24 maxlen: 24
103.164.6.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1130 (0x46a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E7BD4/serialNumber=5DC0303331898AEFDB85E4D914006B89376BEFE1
Validity
Not Before: Oct 2 01:41:27 2022 GMT
Not After : Dec 1 00:00:00 2023 GMT
Subject: CN=6338ec46-119e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:78:b3:46:cb:c0:b6:73:b3:3b:eb:a4:59:79:
81:44:88:14:84:a0:5b:70:a0:9c:3d:07:ea:a1:2e:
0d:b4:2f:57:87:22:20:4e:59:99:65:2a:29:8b:0f:
db:36:94:ab:25:18:2e:c1:a6:e1:e4:b8:5c:03:28:
b2:34:36:82:23:0e:b6:ff:7d:6c:f4:fd:60:c6:07:
12:04:e5:64:e6:f0:ed:f5:1f:06:04:45:86:f0:3a:
5a:31:13:78:5e:e9:b4:1d:1c:bb:32:29:43:c2:c7:
dd:5e:3e:7f:05:2d:bb:17:50:ec:a0:4c:f2:d7:98:
1b:2b:bc:a6:da:03:7a:54:c9:cf:bc:60:c5:f0:23:
e0:7b:6a:a7:8e:bf:81:2f:9d:d4:b1:d0:d2:68:22:
bf:74:c8:a5:ea:4f:2d:64:a3:10:59:a2:d5:0b:49:
60:5b:b7:cb:0c:40:6c:fb:a9:97:80:80:39:9a:72:
80:32:c0:cd:d4:a9:0d:ad:30:27:12:bd:b1:27:2c:
5b:2b:85:10:19:97:5a:a5:b1:c0:c6:ad:e5:81:83:
47:b9:51:54:ae:43:37:f9:c7:bd:be:d8:99:a4:d3:
af:24:3d:8f:25:bc:5b:7d:b2:5c:9e:fe:44:06:16:
a8:8e:0b:d7:ce:a5:65:33:23:c0:46:98:1a:3e:c8:
20:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:79:B9:2C:8A:3E:26:8E:D2:EF:D7:6B:6D:52:30:97:0E:D2:BB:49
X509v3 Authority Key Identifier:
keyid:5D:C0:30:33:31:89:8A:EF:DB:85:E4:D9:14:00:6B:89:37:6B:EF:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcAwMzGJiu_bheTZFABriTdr7-E.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/AE710510DCCD11ECAFD2715CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.142.32.0/24
103.164.6.0/24
Signature Algorithm: sha256WithRSAEncryption
35:7c:5f:fe:39:09:13:41:23:d9:67:f5:bb:a3:59:cf:c4:5b:
11:8e:8c:df:46:04:43:96:94:af:e8:f3:61:87:39:a6:c2:37:
c1:f9:c4:ce:b5:9b:37:3b:a9:07:c7:10:97:ce:07:82:30:7f:
9b:8b:db:66:e6:64:bf:5c:c7:0d:c0:10:0b:48:2a:3d:b8:48:
7f:20:83:bc:b8:d7:f2:98:28:7b:b5:31:b3:6f:d6:2d:d2:f5:
ad:03:e9:8c:2a:10:b4:f8:1c:a0:dc:ef:f7:ca:04:c8:c5:91:
c2:65:a8:c4:88:4b:c4:ff:b7:6a:6b:ad:51:94:14:2e:02:c2:
8e:3b:5d:46:13:88:7b:45:b7:d0:19:ee:e8:6c:10:29:f8:7b:
47:72:8b:b5:60:ea:d4:12:7b:3e:d2:7d:65:7d:c1:0b:bb:f1:
a4:3d:36:89:c0:a0:f6:9a:a4:cb:27:82:44:78:92:cb:72:61:
6c:60:a5:21:34:f6:50:e3:50:22:c8:26:ff:fc:16:76:e8:ca:
ee:ca:11:6e:bb:cb:99:4c:46:33:09:56:fe:28:d2:af:a6:fa:
20:91:cb:8d:6e:31:5f:70:f7:55:4b:f5:62:ed:01:bc:5b:d6:
de:72:64:d9:bd:1f:38:ca:e5:be:71:98:83:4d:d3:52:15:b0:
4f:13:f0:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:46 2024 by rpki-client on console-fra.rpki-client.org