Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9188F6D/9A5B1A9EF66A11E9BF50697AC4F9AE02/CE5E90DA726011EDA8A30E34C4F9AE02.roa
File: CE5E90DA726011EDA8A30E34C4F9AE02.roa (raw, json)
Hash identifier: yemVOSsebhBG5/tzfbAvpKZoVSS96y/j+tPnDh7Zvjw=
Subject key identifier: EA:42:85:7D:36:A5:71:88:B3:B5:6B:39:6F:8F:1E:3F:1B:57:23:F2
Certificate issuer: /CN=A9188F6D/serialNumber=FD06B1508557F65F68CCBA3C203ECAAD075DD19B
Certificate serial: 0B6B
Authority key identifier: FD:06:B1:50:85:57:F6:5F:68:CC:BA:3C:20:3E:CA:AD:07:5D:D1:9B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_QaxUIVX9l9ozLo8ID7KrQdd0Zs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9188F6D/9A5B1A9EF66A11E9BF50697AC4F9AE02/CE5E90DA726011EDA8A30E34C4F9AE02.roa
Signing time: Fri 31 Mar 2023 20:06:55 +0000
ROA not before: Fri 31 Mar 2023 20:06:55 +0000
ROA not after: Tue 01 Aug 2023 00:00:00 +0000
asID: 150178
IP address blocks: 103.109.94.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2923 (0xb6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9188F6D/serialNumber=FD06B1508557F65F68CCBA3C203ECAAD075DD19B
Validity
Not Before: Mar 31 20:06:55 2023 GMT
Not After : Aug 1 00:00:00 2023 GMT
Subject: CN=64273d5e-0027
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:86:48:14:5c:e7:2f:1c:ab:c5:b0:2c:62:1b:
7a:87:96:78:a9:0f:1f:55:09:4e:cf:78:f1:58:7e:
86:63:3c:90:aa:d3:56:41:a7:fe:9f:3f:b8:bc:19:
2d:a2:89:ce:48:7c:11:40:4b:7d:0f:44:a9:d7:4f:
ac:7a:8e:dd:11:4b:e3:5e:55:72:a6:40:8b:70:61:
03:39:77:08:40:a8:e2:ad:69:47:37:fc:ab:56:21:
66:6d:63:33:dd:49:f2:48:5e:83:10:ce:64:f3:6e:
47:2c:d1:1b:d6:2e:a1:92:0b:51:c6:b4:9c:47:a0:
72:57:de:dd:3a:3c:93:ae:02:bc:e0:e4:e7:1d:1a:
86:80:fc:03:24:2f:85:2e:29:c0:90:3f:d4:9a:fc:
00:fc:91:75:eb:a1:03:4c:f7:d4:bf:6f:98:69:0e:
f9:01:2f:15:5d:88:71:c2:ac:b3:9b:0f:64:96:38:
52:9e:4e:03:93:bb:c3:4f:2a:84:d6:fb:55:e2:07:
71:90:8b:a6:d7:1b:da:16:15:22:40:6d:08:a5:05:
b7:81:bb:a8:5a:1c:5d:4b:d2:60:be:6e:74:d1:07:
5a:94:4b:ac:0f:36:31:3f:13:72:80:f4:b4:5c:b3:
69:3e:a3:32:57:f2:dd:8c:0f:67:90:d6:22:65:e4:
7f:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:42:85:7D:36:A5:71:88:B3:B5:6B:39:6F:8F:1E:3F:1B:57:23:F2
X509v3 Authority Key Identifier:
keyid:FD:06:B1:50:85:57:F6:5F:68:CC:BA:3C:20:3E:CA:AD:07:5D:D1:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9188F6D/9A5B1A9EF66A11E9BF50697AC4F9AE02/_QaxUIVX9l9ozLo8ID7KrQdd0Zs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_QaxUIVX9l9ozLo8ID7KrQdd0Zs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188F6D/9A5B1A9EF66A11E9BF50697AC4F9AE02/CE5E90DA726011EDA8A30E34C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.109.94.0/24
Signature Algorithm: sha256WithRSAEncryption
84:6b:19:2a:42:71:63:ce:2b:44:ae:ee:bd:c6:51:26:bb:66:
26:5f:a1:8f:11:38:65:c3:8e:ce:4c:61:7c:cb:c8:ce:83:88:
45:16:f6:a9:45:45:df:d0:b7:22:25:05:2e:5d:19:0a:73:7b:
54:21:d8:be:de:17:b4:6e:7d:10:f0:71:68:56:39:65:8b:9d:
6d:f1:5c:41:2e:cc:5b:2a:ef:c9:35:28:d2:34:21:80:f6:69:
38:06:c5:1b:f6:cf:ba:d9:0c:3b:b0:93:7f:f4:20:1f:63:72:
e5:e6:bf:bc:d0:0e:dc:ef:56:d3:c4:af:0c:4f:27:06:90:77:
89:ec:21:04:b9:be:18:a2:64:76:f4:c6:d3:ce:d9:ef:e4:0d:
79:48:23:e0:5e:dc:c0:9d:c9:5b:66:0b:d5:77:57:a9:f6:21:
62:07:88:ae:e2:b5:46:84:92:95:ea:cb:6b:a5:36:90:a4:ff:
59:38:5c:01:3e:77:34:13:8c:0d:62:5e:26:7b:ca:a1:b1:c6:
8a:fe:79:8e:44:b3:59:7b:84:95:93:22:6c:e2:8f:2b:e4:f1:
5e:2d:b7:a9:af:7b:e1:83:32:f2:d1:b7:3f:e4:44:70:63:b2:
18:29:d1:5b:2f:59:e1:9a:90:b7:87:9d:1b:6c:a0:8b:07:dd:
2c:5b:2e:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:35:58 2023 by rpki-client on console.sobornost.net