Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6D91/E517F2B69AE511EB837F135EC4F9AE02/063180929AE711EBAB07485EC4F9AE02.roa
File: 063180929AE711EBAB07485EC4F9AE02.roa (raw, json)
Hash identifier: TOsSA95IkV56owLJgZRG+GN7jgfGAatkN7C0QjqzXUg=
Subject key identifier: AD:45:5D:2F:E4:77:BE:C0:4C:5A:1C:6D:AB:B5:9A:01:4B:3D:25:EC
Certificate issuer: /CN=A91F6D91/serialNumber=F6718A5E5E42D08E253A2FB300FF09C3F5351D32
Certificate serial: 03
Authority key identifier: F6:71:8A:5E:5E:42:D0:8E:25:3A:2F:B3:00:FF:09:C3:F5:35:1D:32
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F6D91/E517F2B69AE511EB837F135EC4F9AE02/063180929AE711EBAB07485EC4F9AE02.roa
Signing time: Sun 11 Apr 2021 16:57:40 +0000
ROA not before: Sun 11 Apr 2021 16:57:40 +0000
ROA not after: Wed 02 Mar 2022 00:00:00 +0000
asID: 16509
IP address blocks: 203.175.0.0/24 maxlen: 24
203.175.1.0/24 maxlen: 24
203.175.2.0/24 maxlen: 24
203.175.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F6D91/serialNumber=F6718A5E5E42D08E253A2FB300FF09C3F5351D32
Validity
Not Before: Apr 11 16:57:40 2021 GMT
Not After : Mar 2 00:00:00 2022 GMT
Subject: CN=60732a84-b702
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:89:01:00:79:8b:82:54:f5:66:6c:4c:b6:46:
8c:0e:37:ca:af:0e:09:86:3b:ac:ff:54:bb:44:15:
62:aa:0b:74:ac:48:2a:af:4e:fd:ca:49:47:69:c3:
2d:db:36:a4:78:7a:22:e2:f3:48:30:2d:b6:97:f2:
ad:de:3c:df:ba:97:e5:70:ed:05:b9:1e:5b:2a:3d:
a8:10:15:d6:92:71:22:45:b7:96:1b:05:e0:3e:57:
d5:59:04:fe:f2:b0:67:fd:f1:da:f0:9c:e1:b6:f7:
42:68:e6:63:cd:1f:f1:ec:42:a2:dc:fd:60:33:17:
98:9d:3c:6a:75:04:1e:77:3f:05:5b:d4:f5:86:3f:
41:b3:50:b9:81:47:a9:44:a4:d0:3a:d2:92:80:38:
5a:4c:68:b5:d9:95:ad:5f:da:31:5f:e1:6e:a4:5f:
66:b6:0e:b0:02:35:c5:6a:c5:95:ae:27:d6:7c:9d:
66:4e:e7:ef:15:3d:2c:7e:02:b1:69:44:88:77:59:
69:f3:ba:50:9c:b9:e9:0c:59:1f:ad:16:bd:70:1c:
9a:32:cd:5b:8a:04:70:22:4c:b6:a1:cd:d0:e8:8c:
6b:de:40:1b:ac:09:b0:de:47:d8:06:6e:c9:a4:1b:
08:52:4d:fe:6f:ea:3b:3f:fc:60:b6:7f:d6:96:09:
ff:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:45:5D:2F:E4:77:BE:C0:4C:5A:1C:6D:AB:B5:9A:01:4B:3D:25:EC
X509v3 Authority Key Identifier:
keyid:F6:71:8A:5E:5E:42:D0:8E:25:3A:2F:B3:00:FF:09:C3:F5:35:1D:32
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F6D91/E517F2B69AE511EB837F135EC4F9AE02/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6D91/E517F2B69AE511EB837F135EC4F9AE02/063180929AE711EBAB07485EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.175.0.0/22
Signature Algorithm: sha256WithRSAEncryption
ac:74:d6:a5:ed:33:eb:2a:bb:8d:7f:95:e0:34:b8:1e:88:7b:
24:b8:d7:9f:ce:a3:db:21:7e:47:64:b9:63:83:00:60:43:74:
68:03:48:b5:7d:be:fc:9e:88:5c:10:b8:b1:1a:5c:62:b4:ee:
f2:59:1f:e4:d4:e3:44:e1:a5:4c:a7:c1:e0:a9:ae:2d:db:ad:
f2:4d:d7:00:1f:b3:f7:48:21:af:84:d3:b8:2e:14:8b:05:5b:
a4:f3:de:1d:88:1c:f5:14:f6:d3:22:8a:7e:c2:4c:ab:89:d9:
8b:1b:ae:90:13:cc:7d:fa:c3:08:17:5a:e3:05:31:c5:60:13:
1e:1c:4a:89:e6:2c:14:dc:86:e3:90:a1:e2:56:3a:72:b8:1c:
ea:2f:b6:87:11:6c:50:e1:ab:ed:c2:d2:b6:87:c5:2e:c2:47:
b1:26:a0:49:f3:95:74:23:b1:6c:05:0b:ee:52:36:7e:93:63:
90:7c:a0:ae:f6:6a:cf:a7:81:c5:53:c1:ca:a3:11:c0:c8:82:
04:22:94:7a:62:85:6d:52:2f:5b:bd:da:0d:c8:1e:86:e6:e8:
0f:87:0e:06:75:83:8d:cd:51:e1:68:23:ec:fe:dd:41:1f:44:
b9:3c:70:72:de:90:a1:fa:c3:87:17:6d:6c:99:f5:c6:d0:6b:
e0:b6:f0:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:51 2024 by rpki-client on console-fra.rpki-client.org