Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/0F79DEDE64D011EC9AF03061C4F9AE02.roa
File: 0F79DEDE64D011EC9AF03061C4F9AE02.roa (raw, json)
Hash identifier: //jwxU4F95FSCRYs8zp4ft5TuPArgyTfA8mho/yjEIM=
Subject key identifier: C4:9B:33:4A:AF:B2:0C:E3:AB:17:F9:6F:89:8F:F9:42:20:02:B5:70
Certificate issuer: /CN=A91F605B/serialNumber=91338690DEBA578CE738218A9E220854D1B5275F
Certificate serial: 02
Authority key identifier: 91:33:86:90:DE:BA:57:8C:E7:38:21:8A:9E:22:08:54:D1:B5:27:5F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/0F79DEDE64D011EC9AF03061C4F9AE02.roa
Signing time: Fri 24 Dec 2021 15:42:12 +0000
ROA not before: Fri 24 Dec 2021 15:42:12 +0000
ROA not after: Thu 02 Mar 2023 00:00:00 +0000
asID: 142600
IP address blocks: 103.178.66.0/23 maxlen: 24
2001:df0:3540::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F605B/serialNumber=91338690DEBA578CE738218A9E220854D1B5275F
Validity
Not Before: Dec 24 15:42:12 2021 GMT
Not After : Mar 2 00:00:00 2023 GMT
Subject: CN=61c5ea54-e858
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:db:d4:4a:a3:4a:07:3c:ea:e5:f3:55:15:d1:
30:b0:52:ca:47:ee:6d:1e:84:8f:a7:d6:09:a9:06:
0a:60:8a:53:f7:88:19:8e:bf:c8:c1:80:43:6a:37:
10:36:38:17:24:ec:10:51:d9:4b:11:e9:8c:b4:6b:
62:29:7b:56:b8:ac:72:6a:09:4b:62:12:df:5a:52:
a8:a7:b3:dc:f9:4e:1c:e0:ef:da:f0:6c:65:5b:12:
6c:c7:72:d5:d9:62:37:d3:91:9e:99:67:12:0b:1c:
92:f7:5a:36:b3:61:b2:25:8b:37:45:71:9c:1c:2a:
48:58:83:55:9a:2d:19:b4:47:19:18:38:62:1a:1c:
59:eb:da:18:27:31:66:88:36:f8:d8:f1:d9:dd:d4:
bc:75:87:db:90:54:6c:33:e8:1e:33:78:19:d6:ff:
ca:65:ad:20:17:80:5b:12:34:a2:e0:3a:0c:64:6d:
7c:0c:e0:50:4b:62:e4:88:41:0f:d4:a8:db:57:3f:
9b:60:32:75:94:9d:99:3d:13:2b:de:0a:19:08:ce:
82:d7:24:33:57:9a:25:d0:72:5c:0b:09:99:42:ea:
94:48:fe:1a:d7:56:ab:7b:e0:35:ba:f8:2c:2a:24:
48:84:80:ae:ef:90:02:59:6b:8e:5a:07:d1:4c:68:
e8:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:9B:33:4A:AF:B2:0C:E3:AB:17:F9:6F:89:8F:F9:42:20:02:B5:70
X509v3 Authority Key Identifier:
keyid:91:33:86:90:DE:BA:57:8C:E7:38:21:8A:9E:22:08:54:D1:B5:27:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/0F79DEDE64D011EC9AF03061C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.178.66.0/23
IPv6:
2001:df0:3540::/48
Signature Algorithm: sha256WithRSAEncryption
4d:42:ad:c2:4b:df:a0:e0:ce:34:35:56:a3:6f:bd:15:38:7d:
bb:b8:e5:34:c4:40:35:e6:00:51:85:4a:bf:d1:b0:83:f0:c1:
b9:64:32:b8:23:d5:26:eb:89:07:32:b0:c4:6c:23:2c:53:5c:
c8:dc:0d:a6:e4:31:e4:bf:d0:1f:c2:47:a4:5d:7e:1a:60:a5:
f0:38:3d:7b:f4:35:0c:cd:dd:a0:5e:f7:26:a9:84:fe:2b:55:
59:70:ea:a0:8d:e5:1d:f8:bb:b1:e6:9d:df:e9:82:0e:6e:eb:
1d:ee:bf:ed:7f:c8:ad:89:5b:b7:e7:79:6a:d3:45:88:d0:a6:
27:d9:a5:76:28:db:af:fd:42:27:5c:f3:34:33:1f:a1:da:6d:
01:e4:d2:41:93:b8:14:b1:35:8b:39:d3:87:71:c4:99:e6:37:
de:b2:b0:61:54:29:2a:f4:cc:4f:0e:bc:c1:62:c1:49:1d:0e:
c9:7f:c4:55:40:de:d6:c1:96:90:75:46:72:45:49:65:f0:bc:
1e:91:b8:52:2e:12:2d:22:c0:f2:92:6d:8a:7d:33:df:43:2f:
fd:91:ec:e3:2f:b2:7f:39:22:50:b4:55:3f:1c:de:5e:44:91:
eb:00:b1:f4:c9:ea:d4:f3:bf:9c:ad:e6:56:7a:60:e5:d1:5f:
94:6f:47:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:12 2023 by rpki-client on console-ams.rpki-client.org