Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9164390/0E9354FCDC5C11E68E915E32C4F9AE02/6D518D6CBCB211EAB6572A3EC4F9AE02.roa
File: 6D518D6CBCB211EAB6572A3EC4F9AE02.roa (raw, json)
Hash identifier: S8QCySlezgpVgxEwOxzmsiPu8EPw6rwFCHGBT0g6g4g=
Subject key identifier: 78:36:34:B6:EB:6D:9F:DF:C5:EA:9B:FC:1A:3A:DB:5C:54:C4:90:3B
Certificate issuer: /CN=A9164390/serialNumber=C6433C49E63CD92035B307E8F79637608FEADBF5
Certificate serial: 18DC
Authority key identifier: C6:43:3C:49:E6:3C:D9:20:35:B3:07:E8:F7:96:37:60:8F:EA:DB:F5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xkM8SeY82SA1swfo95Y3YI_q2_U.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9164390/0E9354FCDC5C11E68E915E32C4F9AE02/6D518D6CBCB211EAB6572A3EC4F9AE02.roa
Signing time: Thu 17 Feb 2022 10:03:16 +0000
ROA not before: Thu 17 Feb 2022 10:03:16 +0000
ROA not after: Wed 31 Aug 2022 00:00:00 +0000
asID: 38201
IP address blocks: 43.255.148.0/22 maxlen: 22
43.255.148.0/24 maxlen: 24
103.239.160.0/22 maxlen: 23
103.239.160.0/23 maxlen: 24
175.176.144.0/22 maxlen: 22
175.176.147.0/24 maxlen: 24
202.134.24.0/21 maxlen: 21
202.134.24.0/22 maxlen: 22
202.134.24.0/24 maxlen: 24
202.134.25.0/24 maxlen: 24
202.134.26.0/24 maxlen: 24
202.134.27.0/24 maxlen: 24
202.134.28.0/22 maxlen: 22
202.134.29.0/24 maxlen: 24
202.134.30.0/24 maxlen: 24
202.134.31.0/24 maxlen: 24
2400:6400::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6364 (0x18dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9164390/serialNumber=C6433C49E63CD92035B307E8F79637608FEADBF5
Validity
Not Before: Feb 17 10:03:16 2022 GMT
Not After : Aug 31 00:00:00 2022 GMT
Subject: CN=620e1d64-7226
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:6f:60:af:87:98:e4:7b:c4:b7:90:32:50:28:
b3:3f:62:fe:0e:e4:28:16:60:38:e5:3a:62:b1:db:
e4:dc:c1:01:50:b3:30:2c:39:bf:84:7a:06:96:7f:
26:94:a4:9e:52:42:40:8b:25:40:da:ca:71:ee:6f:
8f:9f:59:f7:36:ed:a3:61:18:04:21:f3:54:d9:91:
75:45:a5:10:93:e4:f3:a2:09:c2:d7:68:10:94:45:
b0:b5:7c:86:e6:1f:e6:f8:f4:3f:9d:f3:be:12:2e:
a2:a9:05:93:d5:70:c3:0c:99:de:a3:7b:49:45:90:
bf:c7:0f:02:1b:9a:ce:42:b2:b6:ee:10:90:08:90:
9c:ff:a5:65:df:24:6e:4a:8c:e5:e3:aa:ab:0f:eb:
bb:56:d6:f8:c4:60:06:67:03:a1:6b:68:14:7b:0a:
61:72:27:a3:17:1a:2b:69:d5:ee:93:e5:34:77:3a:
eb:dd:01:75:49:8c:7f:45:eb:53:51:78:ad:3b:a9:
62:75:9a:a6:2f:b5:1e:d7:5f:35:ab:3d:d1:6d:d7:
97:5f:5e:be:4c:0b:76:ea:97:e3:a7:c5:0b:8a:31:
08:f3:19:27:eb:ed:f2:84:2b:08:cc:0b:08:e5:67:
3a:35:f6:11:af:3f:3d:54:50:37:0a:9d:6f:da:07:
d5:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:36:34:B6:EB:6D:9F:DF:C5:EA:9B:FC:1A:3A:DB:5C:54:C4:90:3B
X509v3 Authority Key Identifier:
keyid:C6:43:3C:49:E6:3C:D9:20:35:B3:07:E8:F7:96:37:60:8F:EA:DB:F5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9164390/0E9354FCDC5C11E68E915E32C4F9AE02/xkM8SeY82SA1swfo95Y3YI_q2_U.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xkM8SeY82SA1swfo95Y3YI_q2_U.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164390/0E9354FCDC5C11E68E915E32C4F9AE02/6D518D6CBCB211EAB6572A3EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.255.148.0/22
103.239.160.0/22
175.176.144.0/22
202.134.24.0/21
IPv6:
2400:6400::/32
Signature Algorithm: sha256WithRSAEncryption
71:19:19:62:30:1e:6f:d1:06:a2:32:63:e1:2e:c0:e3:4d:62:
09:27:bc:d4:36:bd:7c:1f:d4:87:94:dd:42:2c:4f:7e:2c:9b:
ec:21:84:0e:5c:56:30:fc:d1:d1:8a:57:12:1e:8e:9c:9a:ba:
92:69:32:94:f7:7f:7d:85:57:aa:5f:2b:0a:3f:7f:f3:67:6d:
df:6e:0e:14:0d:86:12:77:87:3d:31:00:da:1f:c7:2b:06:20:
e9:ef:04:09:ff:f9:ec:79:2e:b3:fd:71:2c:28:17:02:d7:b6:
d5:1c:dd:c1:4d:15:07:08:7f:55:42:53:c0:69:80:c8:cc:c0:
45:5e:27:ea:6d:58:1c:45:db:f7:26:d0:59:7e:1a:d7:8c:4d:
2a:19:4f:6b:49:31:7c:32:c9:cf:26:9d:b7:f4:1a:8b:18:d0:
87:c2:89:30:75:c6:43:bd:75:17:d4:c9:43:d0:e9:b0:65:c9:
06:ac:5f:51:e5:d1:09:fc:db:4a:f0:ed:fa:b9:5e:8b:58:36:
bf:0e:5b:0a:5a:95:11:1c:10:71:44:31:d6:3a:72:b8:76:d5:
5e:50:ff:cf:08:85:74:15:a1:a4:08:3f:3e:ce:f1:9e:c7:df:
e1:be:6c:61:25:43:41:48:2b:30:3b:a4:ba:f5:34:72:7d:0f:
57:b4:e8:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:09 2024 by rpki-client on console-fra.rpki-client.org