Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9175027/2505CEDC256811EBAC2CAC5AC4F9AE02/F8D9A1E62D3511EBAA38AF44C4F9AE02.roa
File: F8D9A1E62D3511EBAA38AF44C4F9AE02.roa (raw, json)
Hash identifier: eZb7qRoNov759e1NliFvjHLle0UkO3u+s9Y6tZ8la2s=
Subject key identifier: 4F:38:BE:D4:4F:01:5E:18:C4:1A:10:7C:2E:B5:E5:6B:48:6C:40:5F
Certificate issuer: /CN=A9175027/serialNumber=E1772CB5D3965276CF4E98D3766B630D7E3F8178
Certificate serial: 01EB
Authority key identifier: E1:77:2C:B5:D3:96:52:76:CF:4E:98:D3:76:6B:63:0D:7E:3F:81:78
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XcstdOWUnbPTpjTdmtjDX4_gXg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9175027/2505CEDC256811EBAC2CAC5AC4F9AE02/F8D9A1E62D3511EBAA38AF44C4F9AE02.roa
Signing time: Thu 01 Jul 2021 12:18:49 +0000
ROA not before: Thu 01 Jul 2021 12:18:49 +0000
ROA not after: Wed 31 Aug 2022 00:00:00 +0000
asID: 45654
IP address blocks: 103.1.188.0/22 maxlen: 24
103.19.172.0/22 maxlen: 24
103.232.160.0/22 maxlen: 24
113.212.168.0/22 maxlen: 24
113.212.172.0/22 maxlen: 24
163.47.120.0/22 maxlen: 24
163.47.136.0/22 maxlen: 24
163.47.168.0/22 maxlen: 24
182.237.4.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 491 (0x1eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9175027/serialNumber=E1772CB5D3965276CF4E98D3766B630D7E3F8178
Validity
Not Before: Jul 1 12:18:49 2021 GMT
Not After : Aug 31 00:00:00 2022 GMT
Subject: CN=60ddb2a8-3e60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:51:f1:63:c8:41:bc:a0:e4:58:65:1e:95:f1:
c7:1f:c9:00:f5:f6:94:cb:88:9e:9a:b3:98:52:9b:
e4:d7:f9:8f:4d:23:f0:55:1d:96:45:e3:0a:20:19:
a4:90:6b:ed:0c:de:f5:97:de:90:45:20:88:22:8e:
a4:5a:11:01:fa:eb:07:68:53:09:7b:16:1c:57:62:
ea:12:29:ba:90:1d:9f:ae:06:17:c0:84:f9:70:b2:
c2:cc:11:97:d5:9b:e8:e3:e9:e2:64:01:9a:90:96:
4b:52:76:e5:4f:31:19:dc:37:81:90:79:94:84:de:
23:c2:84:43:48:c1:fa:20:33:1b:7e:b8:0a:18:ab:
d0:98:08:27:9b:df:02:75:cd:de:51:68:d6:82:7b:
fb:7e:69:d8:b5:ba:5f:78:2d:85:c3:1e:13:6e:71:
ce:c6:f6:88:9f:e8:43:f0:cd:93:25:11:5a:30:1e:
54:75:c5:1c:b3:92:63:e4:fb:c5:77:56:00:03:bf:
a1:17:74:7d:c6:0f:19:be:76:60:b1:fc:c7:10:89:
51:af:8f:80:4b:26:90:08:7f:8d:92:f9:63:96:a6:
05:b4:e4:a1:ab:01:6f:83:16:01:87:2d:bf:df:ee:
ec:fb:e1:9e:11:a1:0b:23:cf:bc:d2:5f:b1:e4:df:
cf:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:38:BE:D4:4F:01:5E:18:C4:1A:10:7C:2E:B5:E5:6B:48:6C:40:5F
X509v3 Authority Key Identifier:
keyid:E1:77:2C:B5:D3:96:52:76:CF:4E:98:D3:76:6B:63:0D:7E:3F:81:78
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9175027/2505CEDC256811EBAC2CAC5AC4F9AE02/4XcstdOWUnbPTpjTdmtjDX4_gXg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XcstdOWUnbPTpjTdmtjDX4_gXg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175027/2505CEDC256811EBAC2CAC5AC4F9AE02/F8D9A1E62D3511EBAA38AF44C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.1.188.0/22
103.19.172.0/22
103.232.160.0/22
113.212.168.0/21
163.47.120.0/22
163.47.136.0/22
163.47.168.0/22
182.237.4.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:5a:50:83:2c:99:e7:04:6d:52:c1:8c:53:04:8f:4c:10:b7:
a6:94:fa:97:e6:e0:69:a0:55:4f:e6:1e:60:e1:9d:fa:78:79:
51:1e:8c:7c:4b:0a:21:36:46:39:0b:9a:97:49:00:01:db:9b:
d0:6e:c7:3e:21:f7:aa:47:bf:f1:dd:87:ca:f3:6f:8d:a7:82:
c9:d1:85:de:30:8a:41:8c:bd:fe:9e:6f:c4:7f:66:3c:d9:f9:
2a:0d:8c:9a:1a:b5:55:c2:32:28:9e:26:43:2c:5b:52:e8:91:
91:1a:5e:93:8c:e3:ca:47:c4:88:c1:a1:99:5d:9c:91:61:aa:
66:a1:5f:3f:30:21:0b:0d:3a:a1:98:13:44:8c:9a:94:30:c7:
9d:9f:20:ca:b4:1d:82:9d:80:6d:35:bd:05:67:8f:b7:3f:a2:
fd:75:86:a4:33:2d:66:21:76:dd:ac:02:97:81:b3:36:98:cc:
18:85:5a:f9:3a:c6:f7:84:23:c8:82:45:74:cc:7d:39:f3:78:
3e:50:9f:12:38:21:3a:8b:84:d8:be:30:44:0b:59:23:8a:5f:
56:3d:f3:17:5a:15:59:09:d0:a5:b0:6e:2f:d5:83:3d:be:7f:
41:16:33:73:04:51:d3:36:4e:d4:62:3b:5a:f4:c3:a0:4f:2b:
2c:da:f6:f2
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:44 2023 by rpki-client on console-ams.rpki-client.org