Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6B3D/0E978E64596211EBA40B5C85C4F9AE02/19A8B95292CB11EBB15CF45CC4F9AE02.roa
File: 19A8B95292CB11EBB15CF45CC4F9AE02.roa (raw, json)
Hash identifier: FHEZYcVY0Ir+PdJm2lOHPygE2sQAGYR5UJm8xpAWqEM=
Subject key identifier: 33:31:71:B4:88:9D:07:0C:B2:04:7A:9A:B9:55:FE:32:87:E1:66:66
Certificate issuer: /CN=A91F6B3D/serialNumber=7B15015DDB9F84412A67DB3E26FECB4DDCBBD980
Certificate serial: 01B2
Authority key identifier: 7B:15:01:5D:DB:9F:84:41:2A:67:DB:3E:26:FE:CB:4D:DC:BB:D9:80
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/exUBXdufhEEqZ9s-Jv7LTdy72YA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F6B3D/0E978E64596211EBA40B5C85C4F9AE02/19A8B95292CB11EBB15CF45CC4F9AE02.roa
Signing time: Fri 20 Aug 2021 12:39:30 +0000
ROA not before: Fri 20 Aug 2021 12:39:30 +0000
ROA not after: Mon 31 Oct 2022 00:00:00 +0000
asID: 64037
IP address blocks: 103.70.171.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 434 (0x1b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F6B3D/serialNumber=7B15015DDB9F84412A67DB3E26FECB4DDCBBD980
Validity
Not Before: Aug 20 12:39:30 2021 GMT
Not After : Oct 31 00:00:00 2022 GMT
Subject: CN=611fa281-51bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:8c:20:d2:7c:e7:d3:c1:8c:29:cf:77:9e:e7:
b2:12:a3:32:51:55:5c:0d:94:ff:c9:44:c5:b2:20:
25:f7:f7:80:94:a1:25:8d:cd:7d:34:69:b3:7e:8a:
4d:fd:04:9a:64:eb:78:5c:cc:79:b9:76:fa:16:99:
f3:94:13:13:77:8a:07:27:73:65:f4:e6:b0:09:15:
4e:23:c3:00:24:19:39:92:06:d0:87:bd:57:f7:63:
15:20:45:cf:7b:12:ac:35:ee:7d:84:78:f4:b6:bb:
a4:76:b2:ae:22:0f:39:ce:2c:e9:eb:99:98:71:ab:
8b:b0:8a:59:0f:61:c0:6d:43:f6:d5:88:5a:b3:06:
3b:88:53:0e:28:41:e8:03:aa:c1:34:e4:ab:c7:39:
96:9c:1a:28:c1:f5:fb:ed:9c:38:c8:98:5e:5b:f8:
33:12:7a:bb:f2:ba:0c:48:e4:9f:5d:a5:69:d2:1e:
79:17:ef:23:98:18:23:31:38:56:59:68:eb:5e:0c:
8e:b7:0a:e3:a8:24:57:51:37:dd:65:cb:f2:91:32:
c5:2a:34:83:a0:bf:08:8f:1e:d0:1d:7d:0c:b4:56:
e2:5d:e2:49:d1:a4:14:26:00:6a:7b:eb:f0:b2:10:
3b:cb:2e:b1:d4:da:e6:09:12:a8:94:57:ad:fa:de:
5a:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:31:71:B4:88:9D:07:0C:B2:04:7A:9A:B9:55:FE:32:87:E1:66:66
X509v3 Authority Key Identifier:
keyid:7B:15:01:5D:DB:9F:84:41:2A:67:DB:3E:26:FE:CB:4D:DC:BB:D9:80
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F6B3D/0E978E64596211EBA40B5C85C4F9AE02/exUBXdufhEEqZ9s-Jv7LTdy72YA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/exUBXdufhEEqZ9s-Jv7LTdy72YA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6B3D/0E978E64596211EBA40B5C85C4F9AE02/19A8B95292CB11EBB15CF45CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.70.171.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:e6:86:c1:26:34:4b:f5:36:83:cd:c0:fc:82:fa:0f:7e:76:
e9:33:45:3e:de:a1:53:a9:07:cd:d3:d9:ca:64:6d:ca:09:8d:
39:6f:41:b3:0f:71:44:f4:ab:19:00:ad:03:6c:43:8e:8d:9a:
c2:6a:c7:a0:de:46:ed:e5:a7:81:6f:29:ee:36:a1:bb:6a:72:
96:52:d7:bb:f6:c5:72:d6:01:a7:0f:fb:b7:64:04:2a:41:81:
83:75:fd:71:73:f2:1f:40:f1:1d:94:5c:8c:57:ff:40:ea:fe:
77:e0:42:14:0f:f5:a7:d3:35:ec:b6:95:cd:6d:6c:ac:25:b8:
ca:98:d5:e9:70:32:a3:87:35:3b:43:4c:ca:e7:f9:12:1d:67:
5a:ab:ab:18:10:93:40:84:32:54:1f:e6:86:2c:7a:39:f4:ff:
da:86:d1:0e:88:42:bf:10:8c:ca:06:52:7d:73:b2:f2:d2:d0:
ae:48:0a:48:b6:b4:f7:4e:b6:f1:aa:08:ca:5c:8c:ad:8a:d5:
b4:28:cd:51:af:b3:4a:86:13:2a:fa:69:d6:cb:7b:b9:09:cd:
1f:0c:4b:d8:d2:59:eb:88:09:06:4f:d9:40:e0:c7:5f:91:3d:
d8:6b:50:d3:cb:b4:ca:17:2b:f7:0d:09:85:27:e6:55:46:21:
4c:64:e4:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:15 2023 by rpki-client on console-fra.rpki-client.org