Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9153646/6B8EFA5AFF9811E987C80A6AC4F9AE02/24DDD16678C811EC98827C76C4F9AE02.roa
File: 24DDD16678C811EC98827C76C4F9AE02.roa (raw, json)
Hash identifier: 7KMss7xy+7fSBI7QPD0cEL0HmBf29Kcb0MAm3Oe5w2E=
Subject key identifier: 76:78:20:2D:B7:1D:18:22:F6:4F:D8:C5:C3:8D:C7:B3:43:98:43:BE
Certificate issuer: /CN=A9153646/serialNumber=3492EFFE9622B1FFF881597003763C1BA24A1E06
Certificate serial: 02C3
Authority key identifier: 34:92:EF:FE:96:22:B1:FF:F8:81:59:70:03:76:3C:1B:A2:4A:1E:06
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NJLv_pYisf_4gVlwA3Y8G6JKHgY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9153646/6B8EFA5AFF9811E987C80A6AC4F9AE02/24DDD16678C811EC98827C76C4F9AE02.roa
Signing time: Mon 24 Jan 2022 13:17:48 +0000
ROA not before: Mon 24 Jan 2022 13:17:48 +0000
ROA not after: Tue 31 Jan 2023 00:00:00 +0000
asID: 64074
IP address blocks: 103.203.176.0/22 maxlen: 22
103.203.176.0/24 maxlen: 24
103.203.177.0/24 maxlen: 24
103.203.179.0/24 maxlen: 24
223.29.212.0/22 maxlen: 22
223.29.212.0/24 maxlen: 24
223.29.213.0/24 maxlen: 24
223.29.215.0/24 maxlen: 24
2401:b8c0::/32 maxlen: 32
2401:b8c0::/48 maxlen: 48
2401:b8c0:1::/48 maxlen: 48
2401:b8c0:2::/48 maxlen: 48
2401:b8c0:3::/48 maxlen: 48
2401:b8c0:4::/48 maxlen: 48
2401:b8c0:5::/48 maxlen: 48
2401:b8c0:6::/48 maxlen: 48
2401:b8c0:7::/48 maxlen: 48
2401:b8c0:8::/48 maxlen: 48
2401:b8c0:9::/48 maxlen: 48
2401:b8c0:b::/48 maxlen: 48
2401:b8c0:c::/48 maxlen: 48
2401:b8c0:e::/48 maxlen: 48
2401:b8c0:f::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 707 (0x2c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9153646/serialNumber=3492EFFE9622B1FFF881597003763C1BA24A1E06
Validity
Not Before: Jan 24 13:17:48 2022 GMT
Not After : Jan 31 00:00:00 2023 GMT
Subject: CN=61eea6fc-d829
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:45:d8:9b:4c:f5:a2:dd:25:a1:02:59:ef:7a:
47:2e:4b:23:95:00:2a:6e:61:ea:18:97:62:c3:d5:
9f:84:49:d3:ff:f0:c6:9a:5d:cc:6f:de:81:be:f0:
11:3a:c2:14:29:30:c7:bf:99:8f:bc:a5:d5:92:38:
cf:d5:6f:08:6b:f6:05:89:07:db:6e:af:f7:1d:8b:
98:c8:10:3d:59:97:0c:2e:01:14:91:c5:68:61:88:
f7:18:96:f4:46:10:ce:21:29:4d:c5:ef:db:be:92:
bf:c6:6c:68:07:56:53:f1:d0:b2:f8:ff:96:0f:64:
43:6f:b3:43:fd:ae:4a:7b:82:3e:06:0b:48:05:e5:
57:76:c0:44:c3:58:25:cc:77:18:13:f0:5e:98:fa:
23:38:de:fc:0a:13:f7:5b:48:0d:be:fc:b2:96:04:
00:46:a1:14:c8:e0:76:fd:fd:5e:3a:54:05:4c:d7:
af:a8:4f:2a:b8:6e:1c:42:da:76:34:58:9b:79:78:
53:54:d4:b3:a6:da:d4:71:3f:6a:a0:8f:cf:be:5f:
2b:a9:5c:54:8d:7e:80:3e:43:c3:bf:df:75:57:9a:
e8:90:c0:f7:15:e9:0d:61:12:63:34:90:b0:21:3d:
7a:cf:33:af:17:12:ba:05:0b:a9:a4:58:ab:f7:59:
66:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:78:20:2D:B7:1D:18:22:F6:4F:D8:C5:C3:8D:C7:B3:43:98:43:BE
X509v3 Authority Key Identifier:
keyid:34:92:EF:FE:96:22:B1:FF:F8:81:59:70:03:76:3C:1B:A2:4A:1E:06
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9153646/6B8EFA5AFF9811E987C80A6AC4F9AE02/NJLv_pYisf_4gVlwA3Y8G6JKHgY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NJLv_pYisf_4gVlwA3Y8G6JKHgY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153646/6B8EFA5AFF9811E987C80A6AC4F9AE02/24DDD16678C811EC98827C76C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.203.176.0/22
223.29.212.0/22
IPv6:
2401:b8c0::/32
Signature Algorithm: sha256WithRSAEncryption
66:ee:01:f2:60:c5:d3:e1:f4:82:b5:5f:3b:0d:53:ba:08:06:
29:18:a0:6a:69:83:8a:9d:4c:38:71:ba:2f:59:46:c9:c6:28:
0f:39:a9:c5:b6:73:9c:39:fe:6e:59:e0:72:05:16:da:1f:8e:
d4:23:6d:6f:bf:91:95:ed:2b:d0:05:08:bb:a0:2f:19:88:e2:
20:b1:c0:79:2e:2d:9c:20:27:ba:98:cb:7b:65:a9:9e:1f:2b:
49:d2:50:90:da:fa:47:6e:8f:30:0b:98:70:72:6a:37:c3:68:
bb:5d:69:9e:67:e1:48:31:96:46:f9:1c:de:75:c4:3b:53:c1:
55:39:66:df:6e:e1:1c:94:86:61:19:b0:a6:47:3b:a0:24:f0:
70:6d:96:86:73:3f:79:32:ae:6c:64:9a:5d:34:3d:3a:75:d0:
ca:7d:c2:bd:a1:09:21:81:a6:54:11:ea:2e:84:5c:41:b9:ad:
08:c0:9e:52:f6:f4:db:54:ab:23:af:20:85:3e:1d:65:a1:bc:
b4:70:19:85:0a:c6:2c:1d:85:56:d9:07:40:a4:f2:df:cd:48:
4d:dd:e5:35:01:67:94:4f:09:aa:a6:6f:f8:8e:d9:fb:57:58:
f9:67:4d:09:39:c3:34:cb:7e:35:69:36:17:81:03:59:b9:71:
2a:b5:30:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:06 2024 by rpki-client on console-fra.rpki-client.org