Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/143EE332005B11EA83141632C4F9AE02.roa
File: 143EE332005B11EA83141632C4F9AE02.roa (raw, json)
Hash identifier: aUxa/LMSbG43m9fQu2hQHh6eAWexvWDsiTw0RAHwFBE=
Subject key identifier: 34:B8:ED:01:A2:C0:AF:6F:F5:C9:F2:A0:77:75:5C:96:90:95:A4:E5
Certificate issuer: /CN=A9150384/serialNumber=B1BA33053C39BA5865537743112389E300C48807
Certificate serial: 0AED
Authority key identifier: B1:BA:33:05:3C:39:BA:58:65:53:77:43:11:23:89:E3:00:C4:88:07
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sbozBTw5ulhlU3dDESOJ4wDEiAc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/143EE332005B11EA83141632C4F9AE02.roa
Signing time: Thu 25 May 2023 12:36:12 +0000
ROA not before: Thu 25 May 2023 12:36:12 +0000
ROA not after: Sun 31 Mar 2024 00:00:00 +0000
asID: 134968
IP address blocks: 103.23.204.0/22 maxlen: 22
103.23.204.0/23 maxlen: 23
103.23.204.0/24 maxlen: 24
103.23.205.0/24 maxlen: 24
103.23.206.0/23 maxlen: 23
103.23.206.0/24 maxlen: 24
103.23.207.0/24 maxlen: 24
223.25.252.0/22 maxlen: 22
223.25.252.0/23 maxlen: 23
223.25.252.0/24 maxlen: 24
223.25.253.0/24 maxlen: 24
223.25.254.0/23 maxlen: 23
223.25.254.0/24 maxlen: 24
223.25.255.0/24 maxlen: 24
2401:52c0::/32 maxlen: 32
2401:52c0::/40 maxlen: 40
2401:52c0::/44 maxlen: 44
2401:52c0::/48 maxlen: 48
2401:52c0:1::/48 maxlen: 48
2401:52c0:2::/48 maxlen: 48
2401:52c0:3::/48 maxlen: 48
2401:52c0:4::/48 maxlen: 48
2401:52c0:5::/48 maxlen: 48
2401:52c0:6::/48 maxlen: 48
2401:52c0:7::/48 maxlen: 48
2401:52c0:8::/48 maxlen: 48
2401:52c0:9::/48 maxlen: 48
2401:52c0:a::/48 maxlen: 48
2401:52c0:b::/48 maxlen: 48
2401:52c0:c::/48 maxlen: 48
2401:52c0:d::/48 maxlen: 48
2401:52c0:e::/48 maxlen: 48
2401:52c0:f::/48 maxlen: 48
2401:52c0:100::/40 maxlen: 40
2401:52c0:100::/44 maxlen: 44
2401:52c0:100::/48 maxlen: 48
2401:52c0:101::/48 maxlen: 48
2401:52c0:102::/48 maxlen: 48
2401:52c0:103::/48 maxlen: 48
2401:52c0:104::/48 maxlen: 48
2401:52c0:105::/48 maxlen: 48
2401:52c0:106::/48 maxlen: 48
2401:52c0:107::/48 maxlen: 48
2401:52c0:108::/48 maxlen: 48
2401:52c0:109::/48 maxlen: 48
2401:52c0:110::/44 maxlen: 44
2401:52c0:120::/44 maxlen: 44
2401:52c0:130::/44 maxlen: 44
2401:52c0:140::/44 maxlen: 44
2401:52c0:150::/44 maxlen: 44
2401:52c0:160::/44 maxlen: 44
2401:52c0:170::/44 maxlen: 44
2401:52c0:180::/44 maxlen: 44
2401:52c0:190::/44 maxlen: 44
2401:52c0:1a0::/44 maxlen: 44
2401:52c0:1b0::/44 maxlen: 44
2401:52c0:1c0::/44 maxlen: 44
2401:52c0:1d0::/44 maxlen: 44
2401:52c0:1e0::/44 maxlen: 44
2401:52c0:1f0::/44 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2797 (0xaed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9150384/serialNumber=B1BA33053C39BA5865537743112389E300C48807
Validity
Not Before: May 25 12:36:12 2023 GMT
Not After : Mar 31 00:00:00 2024 GMT
Subject: CN=646f563c-8ca6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:f0:a4:ab:1a:d8:8f:26:f6:22:df:1a:f1:4a:
ba:81:43:0a:bc:fb:d5:b6:f0:ed:b6:d1:f2:40:38:
d2:db:5b:3f:db:f8:93:4e:23:10:55:ad:8b:1a:0f:
21:b3:04:04:7d:b0:bf:2a:ad:d6:0b:ae:27:15:f6:
c7:ed:b4:98:98:a0:9b:c8:6c:9c:44:6c:7e:03:9d:
49:42:49:84:1c:a6:b1:68:fb:35:09:72:01:a9:05:
de:3d:94:28:7b:6b:95:fc:73:17:db:26:69:a4:d5:
49:a8:8d:31:68:74:b7:4a:3a:74:95:6c:b1:34:26:
d5:ae:f8:ce:ad:39:76:e8:8b:87:ec:2e:9f:22:94:
4a:37:e0:a0:ee:79:4c:29:b8:68:3c:23:52:cc:68:
e1:03:bd:58:d4:2e:71:0c:e3:47:cf:4f:31:c5:da:
4f:ed:db:79:26:ac:26:ad:ff:af:0f:81:d5:b6:24:
85:1b:60:4b:90:10:eb:05:a8:13:9d:7b:f6:f1:b9:
bf:69:99:28:2b:db:ce:0c:9c:68:c2:ca:fb:94:72:
fa:ac:90:3b:f8:a6:6d:81:d7:21:56:75:4c:69:50:
10:86:04:ec:ea:64:8f:0e:60:4e:ca:43:ca:09:23:
34:e2:55:4e:b5:6c:80:bf:a6:96:83:05:42:77:42:
0c:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:B8:ED:01:A2:C0:AF:6F:F5:C9:F2:A0:77:75:5C:96:90:95:A4:E5
X509v3 Authority Key Identifier:
keyid:B1:BA:33:05:3C:39:BA:58:65:53:77:43:11:23:89:E3:00:C4:88:07
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sbozBTw5ulhlU3dDESOJ4wDEiAc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/143EE332005B11EA83141632C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.23.204.0/22
223.25.252.0/22
IPv6:
2401:52c0::/32
Signature Algorithm: sha256WithRSAEncryption
7c:16:db:cc:b1:9d:3e:ae:89:d2:17:8c:5c:72:e6:36:41:be:
ca:08:f2:0c:77:f2:73:57:62:bd:93:24:b9:c5:22:61:68:55:
66:c2:7a:00:b8:2a:83:82:5e:32:89:c7:1f:2d:bb:e1:71:42:
33:45:0d:3e:10:bf:c7:36:3d:67:cb:33:7f:52:62:f2:fe:d4:
85:28:c2:c1:86:64:dc:2d:25:77:67:a2:d9:36:cf:ca:a1:72:
0b:82:a0:c0:fc:aa:64:c8:dd:c4:cc:36:e3:af:89:0d:2a:3a:
34:51:b9:95:2e:6d:f6:b9:f6:16:6e:7f:51:3f:eb:ec:f0:d3:
90:3f:75:df:72:b0:34:c4:fe:84:0b:ef:12:6c:7a:f8:ab:a5:
47:dd:83:d9:e2:29:54:3b:2e:16:5f:cd:2d:f3:b2:b1:09:60:
f2:8c:1e:48:b8:6d:fc:de:11:30:71:40:59:6e:09:1e:bc:7e:
0a:05:37:2f:f7:17:78:68:47:50:49:83:6d:11:cc:b5:08:7a:
18:0e:4a:8a:dd:10:5b:e8:9d:62:53:f6:ea:5f:37:7d:62:6a:
3b:45:3b:a9:b2:b7:ef:60:3e:75:eb:7e:84:f6:82:4d:a6:09:
64:82:95:d0:f8:28:75:fc:3a:17:02:f7:84:a7:73:61:59:0c:
02:63:39:ba
-----BEGIN CERTIFICATE-----
MIIFhjCCBG6gAwIBAgICCu0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NTAzODQxMTAvBgNVBAUTKEIxQkEzMzA1M0MzOUJBNTg2NTUzNzc0MzExMjM4OUUz
MDBDNDg4MDcwHhcNMjMwNTI1MTIzNjEyWhcNMjQwMzMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NDZmNTYzYy04Y2E2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAzfCkqxrYjyb2It8a8Uq6gUMKvPvVtvDtttHyQDjS21s/2/iTTiMQVa2LGg8h
swQEfbC/Kq3WC64nFfbH7bSYmKCbyGycRGx+A51JQkmEHKaxaPs1CXIBqQXePZQo
e2uV/HMX2yZppNVJqI0xaHS3Sjp0lWyxNCbVrvjOrTl26IuH7C6fIpRKN+Cg7nlM
KbhoPCNSzGjhA71Y1C5xDONHz08xxdpP7dt5Jqwmrf+vD4HVtiSFG2BLkBDrBagT
nXv28bm/aZkoK9vODJxowsr7lHL6rJA7+KZtgdchVnVMaVAQhgTs6mSPDmBOykPK
CSM04lVOtWyAv6aWgwVCd0IM+wIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFDS47QGi
wK9v9cnyoHd1XJaQlaTlMB8GA1UdIwQYMBaAFLG6MwU8ObpYZVN3QxEjieMAxIgH
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDM4NC85MzdGMzcyRTAw
NUExMUVBQTA5NEJEMzFDNEY5QUUwMi9zYm96QlR3NXVsaGxVM2RERVNPSjR3REVp
QWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3Nib3pCVHc1dWxobFUzZERFU09KNHdERWlBYy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NTAzODQvOTM3RjM3MkUwMDVBMTFFQUEwOTRCRDMxQzRGOUFFMDIvMTQzRUUzMzIw
MDVCMTFFQTgzMTQxNjMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E
JTAjMBIEAgABMAwDBAJnF8wDBALfGfwwDQQCAAIwBwMFACQBUsAwDQYJKoZIhvcN
AQELBQADggEBAHwW28yxnT6uidIXjFxy5jZBvsoI8gx38nNXYr2TJLnFImFoVWbC
egC4KoOCXjKJxx8tu+FxQjNFDT4Qv8c2PWfLM39SYvL+1IUowsGGZNwtJXdnotk2
z8qhcguCoMD8qmTI3cTMNuOviQ0qOjRRuZUubfa59hZuf1E/6+zw05A/dd9ysDTE
/oQL7xJsevirpUfdg9niKVQ7LhZfzS3zsrEJYPKMHki4bfzeETBxQFluCR68fgoF
Ny/3F3hoR1BJg20RzLUIehgOSordEFvonWJT9upfN31iajtFO6myt+9gPnXrfoT2
gk2mCWSCldD4KHX8OhcC94Snc2FZDAJjObo=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:06 2024 by rpki-client on console-fra.rpki-client.org