Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9173CE6/0E8E27807BD011EB85A66980C4F9AE02/1734BE30D30511EB81663658C4F9AE02.roa
File: 1734BE30D30511EB81663658C4F9AE02.roa (raw, json)
Hash identifier: UZu1/8qChsLKDw3uI8OJ3nCdH13bU6wXqQqCTSswTeI=
Subject key identifier: 75:36:F5:5D:86:DF:00:06:BC:CC:0D:64:25:EB:E7:B2:F7:6A:F4:F5
Certificate issuer: /CN=A9173CE6/serialNumber=33195F96C46D4D285D5BDE4B0B030E38314E8FCB
Certificate serial: 03DC
Authority key identifier: 33:19:5F:96:C4:6D:4D:28:5D:5B:DE:4B:0B:03:0E:38:31:4E:8F:CB
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxlflsRtTShdW95LCwMOODFOj8s.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9173CE6/0E8E27807BD011EB85A66980C4F9AE02/1734BE30D30511EB81663658C4F9AE02.roa
Signing time: Mon 11 Jul 2022 13:11:31 +0000
ROA not before: Mon 11 Jul 2022 13:11:31 +0000
ROA not after: Thu 31 Aug 2023 00:00:00 +0000
asID: 17766
IP address blocks: 43.251.108.0/22 maxlen: 24
103.1.228.0/24 maxlen: 24
103.1.229.0/24 maxlen: 24
103.1.230.0/23 maxlen: 24
103.16.148.0/22 maxlen: 22
103.16.148.0/24 maxlen: 24
103.16.149.0/24 maxlen: 24
150.129.84.0/22 maxlen: 22
150.129.84.0/24 maxlen: 24
203.149.64.0/20 maxlen: 20
203.149.64.0/22 maxlen: 22
203.149.64.0/24 maxlen: 24
203.149.65.0/24 maxlen: 24
203.149.66.0/24 maxlen: 24
203.149.67.0/24 maxlen: 24
203.149.68.0/22 maxlen: 22
203.149.68.0/24 maxlen: 24
203.149.69.0/24 maxlen: 24
203.149.70.0/24 maxlen: 24
203.149.71.0/24 maxlen: 24
203.149.72.0/22 maxlen: 22
203.149.72.0/24 maxlen: 24
203.149.73.0/24 maxlen: 24
203.149.74.0/24 maxlen: 24
203.149.75.0/24 maxlen: 24
203.149.76.0/22 maxlen: 22
203.149.76.0/24 maxlen: 24
203.149.77.0/24 maxlen: 24
203.149.78.0/24 maxlen: 24
203.149.79.0/24 maxlen: 24
203.149.80.0/21 maxlen: 22
203.149.80.0/24 maxlen: 24
203.149.81.0/24 maxlen: 24
203.149.82.0/24 maxlen: 24
203.149.83.0/24 maxlen: 24
203.149.84.0/24 maxlen: 24
203.149.85.0/24 maxlen: 24
203.149.86.0/24 maxlen: 24
203.149.87.0/24 maxlen: 24
2001:db0::/32 maxlen: 32
2001:db0::/36 maxlen: 37
2001:db0:1000::/36 maxlen: 36
2001:db0:1000::/37 maxlen: 37
2001:db0:2000::/36 maxlen: 36
2001:db0:2000::/37 maxlen: 37
2001:db0:3000::/36 maxlen: 36
2001:db0:3000::/37 maxlen: 37
2001:db0:4000::/36 maxlen: 36
2001:db0:4000::/37 maxlen: 37
2001:db0:6000::/36 maxlen: 36
2001:db0:6800::/37 maxlen: 37
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 988 (0x3dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9173CE6/serialNumber=33195F96C46D4D285D5BDE4B0B030E38314E8FCB
Validity
Not Before: Jul 11 13:11:31 2022 GMT
Not After : Aug 31 00:00:00 2023 GMT
Subject: CN=62cc2183-faa3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:59:28:34:f4:f1:68:ff:b0:01:d2:91:bd:b1:
85:ba:f5:f8:80:4a:25:c1:78:2e:8c:1a:1f:c8:4a:
8b:ba:86:41:2d:16:25:5c:0a:e0:86:c6:1f:c8:fb:
da:86:7a:9e:41:04:02:ce:f2:f4:c6:c2:df:a3:d0:
ff:84:25:3e:ca:36:e5:2c:48:f7:9f:34:70:48:54:
e2:2c:85:41:c1:f5:ab:82:7e:97:9b:eb:08:4a:79:
88:1c:0f:fe:ce:78:fb:30:81:19:51:53:34:0d:ca:
6b:fe:77:74:bf:09:eb:0e:74:37:b0:2a:f8:04:63:
fc:dc:9a:d7:8f:ff:62:1f:06:ee:6c:64:2b:b1:f3:
5e:e2:f4:02:6d:d1:c9:71:ed:73:75:96:82:c1:89:
6d:80:8b:af:1b:d5:11:55:c2:9d:6f:e4:9a:75:48:
95:f3:f2:dd:f4:31:21:11:b4:24:86:d6:d1:a2:13:
d4:39:c9:4f:5c:4d:e7:38:d7:02:c8:bd:d7:b7:9f:
8b:f2:cc:75:4d:be:12:fb:91:bf:cd:54:e9:bd:54:
d4:cf:e6:4d:5b:81:80:8c:c1:bf:8f:9e:ba:14:88:
b6:86:2d:db:68:0d:69:ec:f3:9b:ab:cb:46:be:36:
c5:78:d7:62:5e:bb:0e:fc:fd:b2:d9:67:d5:5a:53:
dd:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:36:F5:5D:86:DF:00:06:BC:CC:0D:64:25:EB:E7:B2:F7:6A:F4:F5
X509v3 Authority Key Identifier:
keyid:33:19:5F:96:C4:6D:4D:28:5D:5B:DE:4B:0B:03:0E:38:31:4E:8F:CB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9173CE6/0E8E27807BD011EB85A66980C4F9AE02/MxlflsRtTShdW95LCwMOODFOj8s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxlflsRtTShdW95LCwMOODFOj8s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173CE6/0E8E27807BD011EB85A66980C4F9AE02/1734BE30D30511EB81663658C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.251.108.0/22
103.1.228.0/22
103.16.148.0/22
150.129.84.0/22
203.149.64.0-203.149.87.255
IPv6:
2001:db0::/32
Signature Algorithm: sha256WithRSAEncryption
89:37:ea:d9:f3:7e:05:4c:7a:d4:9b:a9:79:d7:cb:82:aa:fc:
a7:59:e8:1f:40:7d:f2:3f:a2:83:6f:b1:0f:81:08:32:e0:d2:
c3:62:33:0b:d8:02:3e:12:c2:15:80:a7:29:01:e7:fd:23:fb:
03:cf:ca:3e:5d:77:55:35:b2:8c:72:b6:99:7d:0c:44:4e:a6:
ae:ae:95:e2:40:b0:8a:84:62:57:d7:10:67:05:7c:53:12:7d:
5c:85:8d:02:f5:ad:4c:a7:8a:ae:dc:c5:11:b5:19:2b:06:64:
09:f2:dc:67:c2:26:56:d5:63:f9:d3:8f:34:74:be:4b:d9:ec:
6a:ec:f8:5e:82:06:2d:1e:4a:6d:9d:29:b8:74:f6:53:73:ec:
37:a8:d9:92:d9:07:b3:a0:75:8b:03:8c:32:a9:93:e9:59:2f:
f6:36:86:6b:ac:67:ac:d8:bd:3d:71:7d:37:47:30:0b:56:48:
3d:50:56:63:6e:4f:d5:58:ec:e0:06:16:a8:41:34:72:7d:2a:
15:b1:2f:d3:a5:fc:12:6b:65:5a:c3:ae:20:f2:1b:08:05:5b:
e5:b9:09:ab:8a:8f:b1:ff:d3:f6:b3:91:50:78:f5:e3:54:2a:
cc:d7:5e:7b:3e:4c:20:5a:8a:f4:2f:0e:08:00:5d:01:ab:20:
b5:5c:0b:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:11 2024 by rpki-client on console-fra.rpki-client.org