Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913900D/FCDCD3A0AC9D11E892CDAD0DC4F9AE02/4C58848CC29811EDA44AFE15C4F9AE02.roa
File: 4C58848CC29811EDA44AFE15C4F9AE02.roa (raw, json)
Hash identifier: 3GodyPmI/7YyLVY314jyLJbnBgbPItgBHBt38Naraxo=
Subject key identifier: CF:C5:29:35:2D:0B:B5:CE:2A:FE:06:77:CB:DE:1D:EA:C2:A7:55:49
Certificate issuer: /CN=A913900D/serialNumber=C603786D55A904124E7592EED2899EF578921100
Certificate serial: 7B9F
Authority key identifier: C6:03:78:6D:55:A9:04:12:4E:75:92:EE:D2:89:9E:F5:78:92:11:00
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xgN4bVWpBBJOdZLu0ome9XiSEQA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913900D/FCDCD3A0AC9D11E892CDAD0DC4F9AE02/4C58848CC29811EDA44AFE15C4F9AE02.roa
Signing time: Mon 24 Apr 2023 22:35:09 +0000
ROA not before: Mon 24 Apr 2023 22:35:09 +0000
ROA not after: Tue 31 Oct 2023 00:00:00 +0000
asID: 3949
IP address blocks: 103.13.83.144/29 maxlen: 29
103.13.83.152/29 maxlen: 29
103.13.83.160/29 maxlen: 29
103.13.83.161/32 maxlen: 32
202.68.66.76/30 maxlen: 30
202.68.67.48/29 maxlen: 29
202.68.68.0/26 maxlen: 26
202.68.68.96/27 maxlen: 27
202.68.68.96/28 maxlen: 28
202.68.68.112/28 maxlen: 28
202.68.68.192/26 maxlen: 26
202.68.68.192/27 maxlen: 27
202.68.68.224/27 maxlen: 27
202.68.69.0/27 maxlen: 27
202.68.69.32/29 maxlen: 29
202.68.69.48/28 maxlen: 28
202.68.69.64/27 maxlen: 28
202.68.69.68/30 maxlen: 30
202.68.69.96/28 maxlen: 28
202.68.69.128/25 maxlen: 25
202.68.71.0/26 maxlen: 26
202.68.71.64/26 maxlen: 26
202.68.71.128/26 maxlen: 26
202.68.71.192/29 maxlen: 29
202.68.71.200/29 maxlen: 29
202.68.71.208/29 maxlen: 29
202.68.71.216/29 maxlen: 29
202.68.71.224/29 maxlen: 29
202.68.71.232/29 maxlen: 29
202.68.71.240/28 maxlen: 28
202.68.72.0/24 maxlen: 24
202.68.73.88/29 maxlen: 29
202.68.73.192/27 maxlen: 27
202.68.74.32/29 maxlen: 29
202.68.74.96/28 maxlen: 28
202.68.74.156/30 maxlen: 30
202.68.74.208/28 maxlen: 28
202.68.75.64/28 maxlen: 28
202.68.75.80/28 maxlen: 28
202.68.75.104/29 maxlen: 29
202.68.75.128/27 maxlen: 27
202.68.75.160/28 maxlen: 28
202.68.75.176/28 maxlen: 28
202.68.75.240/28 maxlen: 28
202.68.76.64/28 maxlen: 28
202.68.79.0/24 maxlen: 24
202.68.79.0/25 maxlen: 25
202.68.79.128/25 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31647 (0x7b9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913900D/serialNumber=C603786D55A904124E7592EED2899EF578921100
Validity
Not Before: Apr 24 22:35:09 2023 GMT
Not After : Oct 31 00:00:00 2023 GMT
Subject: CN=6447041d-2285
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:be:ef:bd:8d:24:0a:ad:44:df:e9:0f:e7:a8:
4d:24:f1:d3:b8:7e:13:8e:12:13:bb:69:f1:e1:c3:
79:fe:0e:a7:b2:44:bc:3d:cf:e8:55:38:3c:db:2b:
e0:12:c8:5c:cd:f2:ec:ec:03:18:40:be:7d:a7:02:
aa:95:5a:5e:1d:23:8a:bf:5b:af:d6:df:49:3b:cd:
7a:ef:8e:10:8b:2c:67:4d:14:e3:92:86:92:3a:b0:
1a:86:22:d0:eb:91:a3:25:6a:bb:6b:80:80:44:0c:
38:88:7b:24:e9:54:7f:c8:2d:fb:99:5e:47:e3:cd:
27:e9:df:85:72:7a:e3:e2:eb:70:0b:f5:41:8e:2b:
21:7c:35:84:9d:6f:fa:59:b7:c1:16:87:0e:13:01:
ad:3c:c0:05:56:34:29:77:26:3d:e0:1a:04:6e:7a:
9a:48:9a:72:8c:f3:30:cf:98:a1:10:0f:e1:a5:d0:
c3:95:3e:ff:c7:e5:be:ec:0f:48:bb:98:65:73:83:
93:11:0a:3c:40:bb:9f:4e:53:df:9a:1c:0f:c4:92:
7d:b1:79:da:e5:89:05:fa:fd:be:0c:13:cc:86:d4:
48:cc:c0:1c:9b:66:08:36:51:cb:0e:4b:22:43:0c:
66:e2:2d:99:dc:bd:fd:d7:dc:21:fb:d8:06:7f:db:
62:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:C5:29:35:2D:0B:B5:CE:2A:FE:06:77:CB:DE:1D:EA:C2:A7:55:49
X509v3 Authority Key Identifier:
keyid:C6:03:78:6D:55:A9:04:12:4E:75:92:EE:D2:89:9E:F5:78:92:11:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913900D/FCDCD3A0AC9D11E892CDAD0DC4F9AE02/xgN4bVWpBBJOdZLu0ome9XiSEQA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xgN4bVWpBBJOdZLu0ome9XiSEQA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913900D/FCDCD3A0AC9D11E892CDAD0DC4F9AE02/4C58848CC29811EDA44AFE15C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.13.83.144-103.13.83.167
202.68.66.76/30
202.68.67.48/29
202.68.68.0/26
202.68.68.96/27
202.68.68.192-202.68.69.39
202.68.69.48-202.68.69.111
202.68.69.128/25
202.68.71.0-202.68.72.255
202.68.73.88/29
202.68.73.192/27
202.68.74.32/29
202.68.74.96/28
202.68.74.156/30
202.68.74.208/28
202.68.75.64/27
202.68.75.104/29
202.68.75.128/26
202.68.75.240/28
202.68.76.64/28
202.68.79.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:e3:dd:a4:04:81:85:44:74:74:2a:91:37:d3:20:54:50:a4:
f0:34:81:0d:f6:59:f4:f8:2a:e6:f8:99:f0:66:ff:b9:78:36:
6e:af:42:d1:ed:e0:2b:8a:47:63:1e:bf:56:cf:bd:d5:fc:e7:
dc:18:61:53:94:36:ae:e3:13:54:d6:f2:0d:87:92:89:26:1f:
76:5f:7b:4d:9e:d6:28:ad:4a:23:1a:59:2c:44:c7:00:06:a1:
d2:57:69:30:37:00:e7:04:6e:95:98:e0:54:d9:ea:05:37:2f:
d7:1e:bf:69:48:27:b3:62:7a:7f:b1:73:fa:1e:cc:44:ff:1f:
83:39:eb:27:47:fd:de:f9:51:33:22:78:06:a2:a9:f0:e4:da:
5b:4e:84:96:71:0d:60:08:12:c9:43:d5:f7:23:85:d0:c8:36:
1d:83:66:a1:77:12:ca:2d:b2:e4:e3:b3:cd:46:28:84:a8:7c:
0f:a5:04:ec:d7:b7:1c:ac:03:c9:39:f6:d6:f5:ba:a3:74:0e:
83:f6:15:b0:9b:23:2f:35:92:53:c8:4f:7c:eb:6d:a2:81:21:
bc:3d:04:e5:dd:84:f9:2f:ef:79:6c:78:ee:d0:e2:cd:e6:dc:
15:4f:6f:5f:d6:ed:fa:7d:e0:d9:8a:7a:90:85:3a:65:34:f0:
6a:7e:22:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:02 2024 by rpki-client on console-fra.rpki-client.org