Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9115964/EFC2CCBC270F11EBADE6C019C4F9AE02/FAE66454271011EBB6A4741AC4F9AE02.roa
File: FAE66454271011EBB6A4741AC4F9AE02.roa (raw, json)
Hash identifier: LKKrcS5HyFtXavSb6jKVAqCVdTB3kp+Uf/jrOeiVSv8=
Subject key identifier: 55:88:00:FC:B5:B9:19:E3:63:11:13:2D:E4:78:59:C3:B2:05:40:60
Certificate issuer: /CN=A9115964/serialNumber=7B721388FD13E8AE43C97F0301981D2292C88897
Certificate serial: 04C3
Authority key identifier: 7B:72:13:88:FD:13:E8:AE:43:C9:7F:03:01:98:1D:22:92:C8:88:97
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e3ITiP0T6K5DyX8DAZgdIpLIiJc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9115964/EFC2CCBC270F11EBADE6C019C4F9AE02/FAE66454271011EBB6A4741AC4F9AE02.roa
Signing time: Thu 30 Jun 2022 23:15:37 +0000
ROA not before: Thu 30 Jun 2022 23:15:37 +0000
ROA not after: Sun 28 May 2023 00:00:00 +0000
asID: 132337
IP address blocks: 103.69.212.0/24 maxlen: 24
103.69.213.0/24 maxlen: 24
103.69.214.0/24 maxlen: 24
103.69.215.0/24 maxlen: 24
103.148.238.0/23 maxlen: 23
103.148.238.0/24 maxlen: 24
103.148.239.0/24 maxlen: 24
103.196.48.0/24 maxlen: 24
103.196.49.0/24 maxlen: 24
103.196.50.0/24 maxlen: 24
103.196.51.0/24 maxlen: 24
113.30.156.0/24 maxlen: 24
113.30.157.0/24 maxlen: 24
113.30.158.0/24 maxlen: 24
113.30.159.0/24 maxlen: 24
113.30.228.0/24 maxlen: 24
113.30.229.0/24 maxlen: 24
113.30.230.0/24 maxlen: 24
113.30.231.0/24 maxlen: 24
2406:c140::/32 maxlen: 32
2406:c140:33::/48 maxlen: 48
2406:c140:65::/48 maxlen: 48
2406:c140:238::/48 maxlen: 48
2406:c140:239::/48 maxlen: 48
2406:c140:852::/48 maxlen: 48
2406:c140:886::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1219 (0x4c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9115964/serialNumber=7B721388FD13E8AE43C97F0301981D2292C88897
Validity
Not Before: Jun 30 23:15:37 2022 GMT
Not After : May 28 00:00:00 2023 GMT
Subject: CN=62be2e98-9fd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:8c:86:aa:e6:8b:ac:b3:0a:8d:91:ce:bd:ad:
0e:c1:0e:2e:ac:93:5d:66:e7:89:6d:21:2b:f1:7a:
50:a2:61:27:59:6c:42:81:a8:8e:3d:d0:44:03:9c:
9f:97:52:80:cb:1b:04:50:a1:92:65:f4:99:69:f4:
12:7f:7f:cb:9e:dd:0f:1f:ae:08:60:d2:9a:f9:88:
f0:e5:35:d4:8c:e7:d5:90:7b:7e:4c:0b:7e:a7:1e:
de:23:7f:c0:c3:30:a0:9a:1d:fc:bf:9f:ff:76:50:
0e:75:0b:ed:50:d7:f6:86:ad:65:06:19:47:e5:73:
dd:d8:07:49:52:02:3d:7e:39:b5:8b:50:a8:62:23:
e6:0f:bd:ae:b7:3a:9f:75:50:e3:fb:b4:8c:25:80:
dd:42:94:66:6f:05:4d:eb:ff:4b:32:3b:ef:ba:87:
8b:21:ed:24:6c:85:ec:7b:9d:44:2f:a5:5a:a8:ce:
0a:38:9f:ce:64:a3:c7:09:25:5a:9a:b9:e2:4d:3f:
05:75:a7:c9:a3:2f:59:1c:1a:88:67:37:99:ed:2b:
87:31:7e:4e:96:30:ad:59:38:a6:9a:a7:b5:d3:30:
4b:20:ce:a2:7c:44:69:b4:c5:70:5e:8a:10:5d:c6:
41:bf:74:d8:bc:4f:5f:24:95:99:28:2c:95:c7:18:
ea:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:88:00:FC:B5:B9:19:E3:63:11:13:2D:E4:78:59:C3:B2:05:40:60
X509v3 Authority Key Identifier:
keyid:7B:72:13:88:FD:13:E8:AE:43:C9:7F:03:01:98:1D:22:92:C8:88:97
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9115964/EFC2CCBC270F11EBADE6C019C4F9AE02/e3ITiP0T6K5DyX8DAZgdIpLIiJc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e3ITiP0T6K5DyX8DAZgdIpLIiJc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9115964/EFC2CCBC270F11EBADE6C019C4F9AE02/FAE66454271011EBB6A4741AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.69.212.0/22
103.148.238.0/23
103.196.48.0/22
113.30.156.0/22
113.30.228.0/22
IPv6:
2406:c140::/32
Signature Algorithm: sha256WithRSAEncryption
22:ea:80:45:31:4e:d0:da:00:ce:12:5b:8e:97:e9:e0:33:04:
e7:b8:c4:dc:61:5a:ce:bf:07:11:b9:6c:ba:76:91:4e:c4:85:
92:82:26:b5:bb:67:18:24:4c:69:73:17:46:ba:70:bb:98:c8:
51:d4:c8:a2:09:d8:6b:b8:2a:3a:0c:3f:6d:b1:8b:f4:40:25:
16:bf:02:41:c9:60:97:7b:ae:09:2d:98:24:ac:b0:74:99:f7:
ed:0b:82:36:d4:e7:42:c0:68:e6:54:85:08:a6:2c:63:83:80:
c9:67:5f:95:81:88:a3:9e:87:37:e6:a9:6f:76:0a:00:34:60:
b0:da:ab:9c:65:87:52:39:63:4a:0c:95:61:e6:c9:7c:10:2c:
16:72:cf:4e:b2:ec:53:ac:cc:e6:f7:4d:8b:a5:50:6f:dc:4e:
58:a6:5c:04:d2:5a:48:7a:32:ec:ca:fa:8b:a3:a4:63:3f:bd:
3f:f9:7b:6f:07:f7:73:2d:7a:53:d9:7a:0f:cf:7b:ce:43:c6:
3a:bd:66:b4:85:79:54:ab:37:a4:47:9f:e8:3c:31:58:c7:c1:
6d:1e:6c:33:ec:c8:fe:b5:fb:8d:d3:a5:96:c3:10:fb:7d:ee:
35:4c:b2:74:0c:a4:24:fd:56:ee:3f:72:a5:8e:60:a3:b2:5a:
0f:07:12:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:35 2023 by rpki-client on console-fra.rpki-client.org