Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA00A/3AA94B36F88B11EC9ECBE23DC4F9AE02/70CC9ECEA60111EDB2FCE23BC4F9AE02.roa
File: 70CC9ECEA60111EDB2FCE23BC4F9AE02.roa (raw, json)
Hash identifier: JF6j5uAyR/KJBcfftqoyaVeFTB2LG+AX9zx1qkIReyc=
Subject key identifier: 1E:2B:CB:22:27:31:4A:F3:FC:57:DB:74:C8:1D:3A:B1:F1:30:FF:40
Certificate issuer: /CN=A91FA00A/serialNumber=6B3A6EF2BBE584E2700D86227EF49A39CDB81DCE
Certificate serial: 0102
Authority key identifier: 6B:3A:6E:F2:BB:E5:84:E2:70:0D:86:22:7E:F4:9A:39:CD:B8:1D:CE
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/azpu8rvlhOJwDYYifvSaOc24Hc4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91FA00A/3AA94B36F88B11EC9ECBE23DC4F9AE02/70CC9ECEA60111EDB2FCE23BC4F9AE02.roa
Signing time: Mon 06 Feb 2023 09:34:24 +0000
ROA not before: Mon 06 Feb 2023 09:34:24 +0000
ROA not after: Sat 30 Sep 2023 00:00:00 +0000
asID: 43260
IP address blocks: 103.190.102.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 258 (0x102)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91FA00A/serialNumber=6B3A6EF2BBE584E2700D86227EF49A39CDB81DCE
Validity
Not Before: Feb 6 09:34:24 2023 GMT
Not After : Sep 30 00:00:00 2023 GMT
Subject: CN=63e0c99f-33cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:5d:4e:71:ed:f6:1f:76:29:6e:e5:bd:62:0e:
20:f4:dd:dd:be:9c:bb:df:a2:9b:d8:8a:a8:ef:be:
1f:a6:98:3f:0e:99:e1:40:f0:0d:5a:49:ab:55:bf:
e3:55:ac:f2:29:a0:bf:e3:ef:e1:7c:22:83:19:d1:
da:9f:b5:95:b7:0d:5b:54:10:ca:f8:97:f5:37:af:
07:cf:97:38:fe:5a:6e:32:71:97:39:23:2f:61:05:
5c:a5:78:7a:42:3b:1b:84:39:91:55:40:8c:58:04:
ba:97:73:93:ca:3b:b4:85:bf:f2:17:56:43:36:e0:
c0:1d:60:c6:28:d8:32:3c:e3:20:94:cf:a6:fd:86:
e6:bc:b1:df:50:8e:96:cd:0a:cd:e1:81:16:d0:d0:
ac:2e:1d:3a:62:19:8f:de:43:3c:de:5e:84:0e:cf:
53:76:50:17:86:47:46:ad:0b:46:48:b7:34:a6:c0:
5e:3d:13:84:1c:fe:18:2c:a0:1c:b0:3b:bc:26:01:
70:ac:f3:a1:1e:ad:13:18:ea:3c:b3:f2:ca:1a:5f:
28:4b:72:70:84:fd:87:5e:e5:5e:d4:eb:61:5b:8e:
c2:b7:d4:44:c3:66:2b:94:50:99:e9:c0:24:d4:c8:
36:e5:55:65:25:4b:8f:e5:a2:53:5b:e9:65:c6:c8:
77:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:2B:CB:22:27:31:4A:F3:FC:57:DB:74:C8:1D:3A:B1:F1:30:FF:40
X509v3 Authority Key Identifier:
keyid:6B:3A:6E:F2:BB:E5:84:E2:70:0D:86:22:7E:F4:9A:39:CD:B8:1D:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91FA00A/3AA94B36F88B11EC9ECBE23DC4F9AE02/azpu8rvlhOJwDYYifvSaOc24Hc4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/azpu8rvlhOJwDYYifvSaOc24Hc4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA00A/3AA94B36F88B11EC9ECBE23DC4F9AE02/70CC9ECEA60111EDB2FCE23BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.190.102.0/24
Signature Algorithm: sha256WithRSAEncryption
44:4d:51:a8:3b:de:6e:d7:51:7a:72:ad:93:9a:c3:34:e2:a6:
27:9d:54:9c:55:ad:90:fd:f4:27:53:aa:b2:81:6b:75:ce:87:
d0:9e:bd:a5:b6:2c:cb:19:15:8e:63:4f:2a:9c:68:5a:3a:63:
82:3a:65:23:2c:a2:70:f1:ea:53:2f:e4:4c:71:08:29:07:36:
98:7a:7e:7a:2a:36:42:42:68:1f:62:41:b3:92:42:c2:d3:a2:
76:4b:07:f3:13:3a:ed:70:22:b5:9d:c7:47:f9:23:95:f7:f4:
20:cd:e0:3a:ef:dc:80:0d:cd:29:9b:46:43:4b:ef:33:58:f0:
d1:0b:d0:a8:6c:32:63:15:bc:99:64:b2:3e:30:20:d1:c6:a0:
2e:20:27:43:c5:0e:e8:aa:76:c3:c7:03:95:98:d1:35:3b:fa:
57:41:12:c3:ea:e9:4f:f8:74:4d:84:9c:0f:bf:27:d4:1a:5c:
2c:6d:e2:f8:8b:6a:85:d6:56:d7:f1:ee:6a:35:4d:3c:5e:17:
c8:15:05:e5:a7:bf:d3:4b:df:d4:80:0f:f5:b1:a0:4b:a0:e1:
0a:92:c7:ee:cd:5e:df:f9:d0:76:6f:98:ae:65:ef:fb:04:98:
ff:65:60:fb:b3:e8:7e:24:6e:6e:b4:77:07:d1:a9:9f:98:d3:
d3:b0:e4:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:39 2024 by rpki-client on console-ams.rpki-client.org