Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7506/95542662B68311ED8A185C1DC4F9AE02/34FA4AAA209E11EEA313072DC4F9AE02.roa
File: 34FA4AAA209E11EEA313072DC4F9AE02.roa (raw, json)
Hash identifier: gENTclK3hdrT3ga72wfYzL8s6Jphj4MijwPyhkrZrJc=
Subject key identifier: 3C:A5:FC:09:BB:9D:71:2B:15:53:DA:7F:9F:EA:B6:83:DC:0C:9C:EF
Certificate issuer: /CN=A91F7506/serialNumber=FF6A7C2CB3DD2D77BDE68B36BA836C7958A9D4DA
Certificate serial: 46
Authority key identifier: FF:6A:7C:2C:B3:DD:2D:77:BD:E6:8B:36:BA:83:6C:79:58:A9:D4:DA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_2p8LLPdLXe95os2uoNseVip1No.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F7506/95542662B68311ED8A185C1DC4F9AE02/34FA4AAA209E11EEA313072DC4F9AE02.roa
Signing time: Wed 12 Jul 2023 10:23:56 +0000
ROA not before: Wed 12 Jul 2023 10:23:56 +0000
ROA not after: Sun 31 Mar 2024 00:00:00 +0000
asID: 134068
IP address blocks: 103.56.0.0/23 maxlen: 24
2001:df1:b540::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70 (0x46)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F7506/serialNumber=FF6A7C2CB3DD2D77BDE68B36BA836C7958A9D4DA
Validity
Not Before: Jul 12 10:23:56 2023 GMT
Not After : Mar 31 00:00:00 2024 GMT
Subject: CN=64ae7f3c-534f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:52:80:cc:05:09:7b:5f:bf:18:5c:eb:07:f6:
9a:0f:e4:45:07:a0:c8:3b:97:ab:bb:b5:38:43:42:
7b:1d:3b:b8:6e:f7:30:9c:d0:1b:cf:ac:ef:65:47:
cb:3e:69:a2:71:9a:02:ab:49:dc:9d:40:59:ec:f7:
e8:bb:95:c2:05:2c:98:f3:06:30:7c:3f:46:13:a5:
ca:fb:36:b1:97:ad:70:78:52:44:0f:5f:63:47:51:
2f:8f:30:71:4d:69:f1:b5:58:b1:99:64:77:41:5b:
37:4c:6d:98:8d:bf:f2:95:64:ad:c9:09:f8:99:7a:
bf:d4:76:bf:a6:dc:ee:c0:a5:b0:d8:fd:70:40:9c:
76:c9:61:4d:d4:c5:3a:b8:58:95:e4:e3:8c:01:c7:
21:c8:ea:7c:d1:1a:60:e7:02:44:9b:12:ed:e8:08:
e6:5e:4a:b8:7e:f9:cc:84:6f:24:cb:ae:52:5d:5e:
73:9d:14:3a:8f:25:93:da:f0:2c:da:72:18:05:86:
3c:3f:0e:5e:81:43:dd:29:4c:0b:50:c8:50:8e:22:
e3:09:7c:06:90:14:2e:b8:ba:fb:2b:92:9e:01:1f:
99:9c:1a:f5:7c:83:34:0b:9c:72:87:b4:b0:04:0a:
28:fb:d5:7f:bb:a7:e6:65:26:81:e1:f1:c8:5d:b6:
fa:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:A5:FC:09:BB:9D:71:2B:15:53:DA:7F:9F:EA:B6:83:DC:0C:9C:EF
X509v3 Authority Key Identifier:
keyid:FF:6A:7C:2C:B3:DD:2D:77:BD:E6:8B:36:BA:83:6C:79:58:A9:D4:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F7506/95542662B68311ED8A185C1DC4F9AE02/_2p8LLPdLXe95os2uoNseVip1No.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_2p8LLPdLXe95os2uoNseVip1No.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7506/95542662B68311ED8A185C1DC4F9AE02/34FA4AAA209E11EEA313072DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.56.0.0/23
IPv6:
2001:df1:b540::/48
Signature Algorithm: sha256WithRSAEncryption
62:8e:dc:77:0c:a9:3f:ee:ee:f3:8e:fd:ef:45:36:fc:eb:7b:
19:d9:77:9c:66:43:d3:41:8d:3b:1a:89:e1:87:90:3d:0a:4e:
f4:c5:ba:cf:80:36:d3:9d:df:c4:65:e3:06:1e:4a:30:bf:70:
6c:1c:0a:ff:28:a2:8e:f6:f5:69:d7:23:b5:dc:b8:91:92:09:
8f:01:5b:45:da:09:f8:ff:40:3c:63:26:56:70:e1:1a:39:9f:
c3:d5:ed:b4:7e:34:b6:79:c3:26:9d:c4:fa:57:1d:e4:cf:40:
75:e7:47:c5:06:8e:c5:46:b9:b0:d3:34:04:c8:ae:90:08:e0:
d4:85:b8:ab:30:52:4b:c5:41:aa:f6:84:89:c3:d0:55:0a:8c:
f0:07:ea:c9:74:39:5c:7b:9b:68:cd:4e:08:f3:13:58:18:32:
4f:8f:6f:de:68:2e:c3:e0:5a:87:e7:85:1c:c6:b4:12:b0:2c:
fd:04:ce:e4:40:36:7a:14:f2:57:ea:b7:61:21:b4:8d:10:db:
cd:d8:f2:b5:9b:ce:e3:11:78:c4:d3:ca:fc:39:41:c9:78:29:
8b:fe:9c:6e:bd:36:d3:b4:ee:3e:77:56:49:52:9c:79:39:c9:
44:9b:1b:58:32:4b:2f:a3:2d:7f:0d:40:89:db:5b:e3:d3:12:
3d:4f:ba:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:39 2024 by rpki-client on console-ams.rpki-client.org