Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A916EB94/E3CC25D8811E11EC92025551C4F9AE02/C6672DB890AE11EC9C2BC085C4F9AE02.roa
File: C6672DB890AE11EC9C2BC085C4F9AE02.roa (raw, json)
Hash identifier: OxMnHj2l0CUPMdSLw65NzW1gLp9+fXpbT9GZ3jHetUc=
Subject key identifier: EC:AA:09:01:20:FB:B6:27:1C:53:93:E4:E2:17:1F:5C:14:64:A9:B5
Certificate issuer: /CN=A916EB94/serialNumber=C4D4FB0FF027796E9DAA17B75551FD0B77F1982F
Certificate serial: 2B
Authority key identifier: C4:D4:FB:0F:F0:27:79:6E:9D:AA:17:B7:55:51:FD:0B:77:F1:98:2F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNT7D_AneW6dqhe3VVH9C3fxmC8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916EB94/E3CC25D8811E11EC92025551C4F9AE02/C6672DB890AE11EC9C2BC085C4F9AE02.roa
Signing time: Fri 18 Feb 2022 11:34:47 +0000
ROA not before: Fri 18 Feb 2022 11:34:47 +0000
ROA not after: Wed 31 Aug 2022 00:00:00 +0000
asID: 38067
IP address blocks: 43.231.20.0/22 maxlen: 24
103.14.128.0/22 maxlen: 23
103.14.128.0/24 maxlen: 24
103.14.129.0/24 maxlen: 24
103.14.130.0/24 maxlen: 24
103.14.131.0/24 maxlen: 24
103.20.180.0/22 maxlen: 24
103.29.124.0/22 maxlen: 24
103.240.44.0/22 maxlen: 24
116.12.32.0/21 maxlen: 24
120.50.176.0/21 maxlen: 24
122.102.32.0/21 maxlen: 24
210.1.240.0/20 maxlen: 24
210.1.255.128/26 maxlen: 26
2405:6900::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43 (0x2b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916EB94/serialNumber=C4D4FB0FF027796E9DAA17B75551FD0B77F1982F
Validity
Not Before: Feb 18 11:34:47 2022 GMT
Not After : Aug 31 00:00:00 2022 GMT
Subject: CN=620f8457-a543
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:59:b3:45:cd:da:02:5e:0e:2c:50:8b:97:a6:
92:18:04:8b:98:22:db:fc:f8:14:fe:05:ae:40:22:
3d:86:66:bf:93:8b:d7:a7:af:22:89:c6:41:60:c4:
ef:a2:b4:1a:85:0c:c7:42:62:aa:7d:4b:b4:cf:65:
3d:8c:ed:5a:3a:82:4b:3e:73:76:07:2f:39:6f:ab:
bd:05:b5:10:e3:e2:c3:f0:4a:97:2a:65:1a:3e:80:
e9:99:04:df:4c:2e:f4:43:51:97:f0:1f:00:8f:44:
9d:12:3b:77:fb:d1:8c:74:18:8c:32:dc:e3:02:3d:
b4:fa:2e:2b:8d:7b:e2:7a:59:8d:2c:5c:5a:f7:d6:
96:ab:9b:5a:b1:da:21:72:88:fe:e3:84:db:e3:d5:
69:8e:77:e0:fc:d8:38:1f:7f:4d:8d:a9:94:15:08:
62:60:22:ef:f8:18:0d:2f:f2:ab:36:36:96:65:21:
29:cc:05:a9:e3:b9:60:8d:05:03:a5:84:78:ea:2e:
12:a4:9f:e2:3d:52:bd:fa:ce:8c:19:5b:50:19:20:
07:79:c4:7d:e0:87:0e:b8:a1:68:60:e8:45:86:9f:
8a:3b:76:7f:e8:cc:d4:0b:03:51:f1:e6:14:8a:61:
ab:86:45:a9:7e:22:e0:e2:76:27:13:df:11:b5:b5:
5d:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:AA:09:01:20:FB:B6:27:1C:53:93:E4:E2:17:1F:5C:14:64:A9:B5
X509v3 Authority Key Identifier:
keyid:C4:D4:FB:0F:F0:27:79:6E:9D:AA:17:B7:55:51:FD:0B:77:F1:98:2F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916EB94/E3CC25D8811E11EC92025551C4F9AE02/xNT7D_AneW6dqhe3VVH9C3fxmC8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNT7D_AneW6dqhe3VVH9C3fxmC8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EB94/E3CC25D8811E11EC92025551C4F9AE02/C6672DB890AE11EC9C2BC085C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.231.20.0/22
103.14.128.0/22
103.20.180.0/22
103.29.124.0/22
103.240.44.0/22
116.12.32.0/21
120.50.176.0/21
122.102.32.0/21
210.1.240.0/20
IPv6:
2405:6900::/36
Signature Algorithm: sha256WithRSAEncryption
1b:df:85:2b:6b:31:70:10:f0:60:4e:26:a8:61:0e:5c:07:0c:
bf:42:54:e5:94:11:81:d6:eb:d2:4f:fa:a1:d9:ab:a0:0f:8a:
13:59:3e:ad:e6:ac:ea:e4:d9:6e:47:6b:1c:c3:30:02:c0:54:
14:23:81:51:75:6b:24:d5:9d:56:01:53:31:ca:c6:48:46:01:
38:75:ae:8c:90:68:4e:7a:63:2f:63:5a:ce:60:38:62:e4:9c:
a6:5f:de:9a:f6:8a:d7:b0:85:91:03:ca:77:e6:b9:09:d3:b8:
f9:3e:1b:34:1f:01:cc:6b:c2:1f:34:77:a6:3b:d9:c2:6a:df:
69:ed:9a:35:c3:15:4e:1d:2b:fe:10:74:3c:48:23:38:25:bd:
c9:74:c8:a3:dc:09:67:d6:83:1c:99:3b:be:44:ad:07:b7:a7:
2c:3b:1c:4d:97:ef:20:dc:28:5c:28:bd:6a:2f:b0:05:d8:d8:
c4:32:30:a6:ef:2e:df:ab:d0:d1:09:f5:26:c7:0c:75:38:4f:
d9:38:34:b5:bc:89:6a:87:f6:cf:ad:d5:72:92:77:93:b7:bd:
27:d9:08:d3:17:22:5b:0a:4e:19:fd:9d:bf:5e:3b:3a:9b:91:
ae:6e:2a:d5:ca:46:d8:99:5c:b5:af:6b:01:f7:42:6b:a0:88:
27:20:19:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:46 2023 by rpki-client on console-fra.rpki-client.org