Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8B44/F3B164AC17E411EC9B884685C4F9AE02/5FA1898C17E811EC8A22700DC4F9AE02.roa
File: 5FA1898C17E811EC8A22700DC4F9AE02.roa (raw, json)
Hash identifier: vW2M8m+X+YzV65TARJ9OB++GCIbagO0LEqXGWGpKNt8=
Subject key identifier: 42:CA:2A:BC:2A:E7:2B:B6:17:75:11:02:A2:CB:11:A9:9A:24:1C:E4
Certificate issuer: /CN=A91E8B44/serialNumber=21F713C808BCD14BFCBCCFD46273C20ED07B4107
Certificate serial: 02
Authority key identifier: 21:F7:13:C8:08:BC:D1:4B:FC:BC:CF:D4:62:73:C2:0E:D0:7B:41:07
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IfcTyAi80Uv8vM_UYnPCDtB7QQc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E8B44/F3B164AC17E411EC9B884685C4F9AE02/5FA1898C17E811EC8A22700DC4F9AE02.roa
Signing time: Fri 17 Sep 2021 18:52:15 +0000
ROA not before: Fri 17 Sep 2021 18:52:15 +0000
ROA not after: Fri 30 Dec 2022 00:00:00 +0000
asID: 134978
IP address blocks: 103.173.101.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E8B44/serialNumber=21F713C808BCD14BFCBCCFD46273C20ED07B4107
Validity
Not Before: Sep 17 18:52:15 2021 GMT
Not After : Dec 30 00:00:00 2022 GMT
Subject: CN=6144e3df-aec5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:8a:ed:4f:d2:86:ba:37:e6:f9:ce:52:02:90:
65:ac:7c:7c:2e:50:dc:1f:18:8e:94:c8:43:9c:db:
31:47:76:9a:c1:b5:8b:13:7d:82:91:e7:4f:87:ab:
a2:aa:37:97:1c:b4:b7:8c:91:fa:94:4b:af:b4:70:
a5:ff:f4:2f:51:bb:31:af:04:96:12:aa:80:79:91:
48:5d:2f:4d:46:e2:5f:b0:c2:68:c3:38:a0:a0:cb:
ad:ef:5f:af:69:d6:81:0a:8e:54:03:1c:db:d7:7b:
b4:b2:b3:b3:d6:c5:1a:b0:a2:c0:18:a6:14:64:87:
df:46:27:c0:89:68:51:dd:fa:30:d4:84:12:6a:81:
59:f8:52:22:d1:60:c6:62:ed:b2:98:b9:41:ca:df:
14:71:b0:20:96:c1:45:5c:92:a3:9d:45:81:75:17:
51:5f:86:25:c8:fe:41:ef:a4:e6:f0:bb:70:d6:6f:
ae:6f:bd:b9:71:1d:4d:6d:01:08:10:dc:ff:f6:86:
cb:f1:fb:82:c2:94:8f:e4:ad:4d:1d:de:f0:b1:01:
07:96:29:8d:6c:52:70:c8:8c:1b:1f:43:d8:c2:7c:
50:e9:45:24:3d:62:78:1c:65:eb:19:01:67:9d:5a:
62:55:47:ef:61:bf:68:ae:f9:c6:7c:bf:02:68:29:
99:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:CA:2A:BC:2A:E7:2B:B6:17:75:11:02:A2:CB:11:A9:9A:24:1C:E4
X509v3 Authority Key Identifier:
keyid:21:F7:13:C8:08:BC:D1:4B:FC:BC:CF:D4:62:73:C2:0E:D0:7B:41:07
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E8B44/F3B164AC17E411EC9B884685C4F9AE02/IfcTyAi80Uv8vM_UYnPCDtB7QQc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IfcTyAi80Uv8vM_UYnPCDtB7QQc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8B44/F3B164AC17E411EC9B884685C4F9AE02/5FA1898C17E811EC8A22700DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.173.101.0/24
Signature Algorithm: sha256WithRSAEncryption
72:2a:5d:93:71:6e:f5:11:ae:ce:2b:ff:f4:1a:15:88:29:04:
a3:b4:c0:00:55:62:1b:c4:55:92:d1:89:e9:d8:71:53:01:03:
49:6e:17:63:c6:16:ee:a2:7c:e2:2f:61:16:32:d8:04:e0:ea:
eb:54:0b:86:8b:85:e4:c5:67:8d:fa:5b:a5:07:f2:67:8d:e0:
b7:c8:9a:6b:7f:7d:e0:08:fc:a5:5e:dd:0b:30:47:6b:28:72:
91:70:bb:d4:79:4f:6f:af:b9:70:f5:69:87:9a:f8:c0:21:51:
a5:61:62:a5:5b:c1:25:54:f2:33:bc:bb:ef:5c:ee:46:00:04:
f1:a3:65:f4:e3:16:c4:d6:f6:80:33:ec:e2:a0:d8:40:e7:6e:
a4:73:57:d7:62:a1:ca:26:93:31:28:5f:54:a6:1d:4b:e3:a6:
62:6f:2c:ca:60:13:c6:c8:85:ea:a1:b0:7a:0c:bf:e0:25:b5:
8d:21:ff:dc:4a:24:12:b3:61:62:23:03:1a:cc:09:8e:d7:f6:
17:03:a6:ab:ce:19:59:5a:2d:e7:c5:05:88:0c:99:87:6d:55:
7d:10:40:f6:2e:f0:97:50:f0:d5:5b:3d:3c:07:ba:b1:9f:00:
54:f9:37:50:65:05:42:a9:ea:e7:13:6c:4f:66:f1:f7:40:eb:
29:e0:33:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:46 2024 by rpki-client on console-fra.rpki-client.org