Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915B2EC/842759562B0911EC851B980EC4F9AE02/011707B89AE011EC930B5F2CC4F9AE02.roa
File: 011707B89AE011EC930B5F2CC4F9AE02.roa (raw, json)
Hash identifier: hfYeneV/vbaOpT5Pc/mKsIxAzKSBPjdWHzT5pwNvMSo=
Subject key identifier: FF:6C:E8:0B:A8:22:32:EC:14:FD:AD:E4:1D:3C:AB:E8:C4:08:5F:DF
Certificate issuer: /CN=A915B2EC/serialNumber=46922C565440040BD99AFD4E329ED9DEB6F92573
Certificate serial: 0218
Authority key identifier: 46:92:2C:56:54:40:04:0B:D9:9A:FD:4E:32:9E:D9:DE:B6:F9:25:73
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RpIsVlRABAvZmv1OMp7Z3rb5JXM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915B2EC/842759562B0911EC851B980EC4F9AE02/011707B89AE011EC930B5F2CC4F9AE02.roa
Signing time: Fri 17 Jun 2022 16:38:52 +0000
ROA not before: Fri 17 Jun 2022 16:38:52 +0000
ROA not after: Fri 30 Dec 2022 00:00:00 +0000
asID: 51847
IP address blocks: 103.172.182.0/24 maxlen: 24
103.172.183.0/24 maxlen: 24
2407:d840:1::/48 maxlen: 48
2407:d840:2::/48 maxlen: 48
2407:d840:40::/44 maxlen: 44
2407:d840:40::/48 maxlen: 48
2407:d840:41::/48 maxlen: 48
2407:d840:42::/48 maxlen: 48
2407:d840:43::/48 maxlen: 48
2407:d840:44::/46 maxlen: 46
2407:d840:44::/48 maxlen: 48
2407:d840:45::/48 maxlen: 48
2407:d840:46::/48 maxlen: 48
2407:d840:47::/48 maxlen: 48
2407:d840:48::/48 maxlen: 48
2407:d840:49::/48 maxlen: 48
2407:d840:4a::/48 maxlen: 48
2407:d840:4b::/48 maxlen: 48
2407:d840:4c::/48 maxlen: 48
2407:d840:4d::/48 maxlen: 48
2407:d840:4e::/48 maxlen: 48
2407:d840:4f::/48 maxlen: 48
2407:d840:50::/44 maxlen: 44
2407:d840:50::/48 maxlen: 48
2407:d840:51::/48 maxlen: 48
2407:d840:52::/48 maxlen: 48
2407:d840:53::/48 maxlen: 48
2407:d840:60::/44 maxlen: 44
2407:d840:60::/48 maxlen: 48
2407:d840:61::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 536 (0x218)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915B2EC/serialNumber=46922C565440040BD99AFD4E329ED9DEB6F92573
Validity
Not Before: Jun 17 16:38:52 2022 GMT
Not After : Dec 30 00:00:00 2022 GMT
Subject: CN=62acae1c-a1a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:18:5d:bb:69:9b:dd:c0:b5:78:08:a6:d4:61:
cf:f5:5d:bf:ba:4d:f6:0e:0f:f1:76:34:92:18:92:
3c:94:93:36:ab:17:e8:9f:72:53:97:e6:fe:82:53:
c1:94:87:71:7e:16:ec:66:ea:8f:55:d6:18:dc:04:
e5:65:c4:c4:d9:ba:7d:93:63:09:c7:b1:18:cd:dc:
3c:6c:75:10:1f:3f:0b:4a:93:ff:81:53:5b:02:df:
63:66:d8:e0:f6:03:e1:cd:b2:3d:f8:12:16:05:f0:
64:00:55:1d:4d:e4:92:b4:9b:47:cb:2f:ce:82:ea:
12:e9:1b:ec:a8:ea:dd:58:68:ed:6d:9b:f7:3c:e5:
13:1b:d3:5a:f6:ab:33:d3:09:cb:27:93:f1:9e:1d:
a0:30:0d:71:9c:12:f7:6a:04:36:c5:9a:45:ed:e0:
3e:d5:7f:e6:8f:1e:ef:37:b3:28:a4:d4:d1:29:ce:
91:34:a0:47:53:f3:9f:4d:fd:77:a4:37:d6:b8:01:
8c:a8:fb:fc:bc:c4:e5:6b:0d:1b:d0:09:f1:b3:86:
65:5d:22:c8:ca:3d:fb:e8:40:2c:37:b3:d9:c2:43:
6f:17:e5:01:bb:7a:b0:6e:9b:7b:e7:ac:b5:d3:2c:
44:02:55:3c:2d:d7:43:ce:cc:4a:c5:1f:2a:29:ac:
f9:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:6C:E8:0B:A8:22:32:EC:14:FD:AD:E4:1D:3C:AB:E8:C4:08:5F:DF
X509v3 Authority Key Identifier:
keyid:46:92:2C:56:54:40:04:0B:D9:9A:FD:4E:32:9E:D9:DE:B6:F9:25:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915B2EC/842759562B0911EC851B980EC4F9AE02/RpIsVlRABAvZmv1OMp7Z3rb5JXM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RpIsVlRABAvZmv1OMp7Z3rb5JXM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B2EC/842759562B0911EC851B980EC4F9AE02/011707B89AE011EC930B5F2CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.172.182.0/23
IPv6:
2407:d840:1::-2407:d840:2:ffff:ffff:ffff:ffff:ffff
2407:d840:40::-2407:d840:6f:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
29:f0:cd:a4:b3:f5:3d:81:82:66:b4:a9:6d:f7:bb:35:f9:97:
e2:43:2b:6f:c6:56:06:ad:15:dc:25:e6:09:e6:55:b5:4c:03:
47:47:3d:13:79:df:44:7a:da:09:7d:1c:11:7a:56:67:75:e7:
5e:26:14:cc:ef:70:da:db:b5:2e:86:ea:d3:65:84:71:a4:aa:
dc:91:aa:43:18:5e:27:35:b7:89:55:b7:7e:19:a1:3c:50:82:
a2:de:a2:26:30:56:dd:ef:af:2d:7e:fd:bd:d0:98:ab:21:f7:
bf:e0:e4:f1:a6:f7:ab:8b:5b:a4:87:46:7b:d9:49:e8:5f:b7:
4e:db:2b:64:01:97:4d:57:92:96:ea:e5:cf:79:e8:15:32:25:
1d:07:1e:52:07:4d:6d:5e:29:58:74:51:51:40:1e:f7:ed:1b:
cc:83:28:f6:0d:bf:22:5e:b7:5d:1f:d5:41:38:60:f8:16:ec:
19:a3:7b:32:11:79:da:b5:ec:85:54:f7:cd:8a:7a:2b:76:93:
40:93:99:e6:d4:46:0a:87:87:0f:49:9b:f2:9a:c2:47:da:d2:
af:d3:fc:4f:ae:59:25:3c:70:8d:b6:11:a0:6d:66:8b:6e:e9:
39:01:3c:0c:ae:c6:7a:f9:f9:6f:e2:50:10:90:8e:49:15:87:
19:60:72:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:07 2024 by rpki-client on console-ams.rpki-client.org