Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/4D669582881711ED805C1736C4F9AE02.roa
File: 4D669582881711ED805C1736C4F9AE02.roa (raw, json)
Hash identifier: E29vLoKdPJ2BByPEINm0Q9eXforC1HuPSsV9QBwFLFc=
Subject key identifier: BC:6B:21:10:91:8F:0D:0F:16:DC:40:6B:3C:E0:A3:5B:8C:9F:DD:38
Certificate issuer: /CN=A91A9D0F/serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2
Certificate serial: 0D76
Authority key identifier: 88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/4D669582881711ED805C1736C4F9AE02.roa
Signing time: Fri 30 Dec 2022 08:15:33 +0000
ROA not before: Fri 30 Dec 2022 08:15:33 +0000
ROA not after: Mon 01 May 2023 00:00:00 +0000
asID: 138575
IP address blocks: 103.133.140.0/22 maxlen: 22
103.133.140.0/24 maxlen: 24
103.133.142.0/23 maxlen: 23
103.133.142.0/24 maxlen: 24
103.133.143.0/24 maxlen: 24
2404:4d40::/32 maxlen: 32
2404:4d40:1000::/36 maxlen: 36
2404:4d40:1000::/40 maxlen: 40
2404:4d40:1001::/48 maxlen: 48
2404:4d40:1002::/48 maxlen: 48
2404:4d40:1003::/48 maxlen: 48
2404:4d40:1004::/48 maxlen: 48
2404:4d40:1005::/48 maxlen: 48
2404:4d40:1006::/48 maxlen: 48
2404:4d40:1007::/48 maxlen: 48
2404:4d40:1008::/48 maxlen: 48
2404:4d40:1009::/48 maxlen: 48
2404:4d40:100a::/48 maxlen: 48
2404:4d40:100b::/48 maxlen: 48
2404:4d40:100c::/48 maxlen: 48
2404:4d40:100d::/48 maxlen: 48
2404:4d40:100e::/48 maxlen: 48
2404:4d40:100f::/48 maxlen: 48
2404:4d40:1010::/48 maxlen: 48
2404:4d40:1011::/48 maxlen: 48
2404:4d40:1012::/48 maxlen: 48
2404:4d40:1013::/48 maxlen: 48
2404:4d40:1014::/48 maxlen: 48
2404:4d40:1015::/48 maxlen: 48
2404:4d40:1016::/48 maxlen: 48
2404:4d40:1017::/48 maxlen: 48
2404:4d40:1018::/48 maxlen: 48
2404:4d40:1019::/48 maxlen: 48
2404:4d40:101a::/48 maxlen: 48
2404:4d40:101b::/48 maxlen: 48
2404:4d40:101c::/48 maxlen: 48
2404:4d40:101d::/48 maxlen: 48
2404:4d40:101e::/48 maxlen: 48
2404:4d40:101f::/48 maxlen: 48
2404:4d40:1020::/48 maxlen: 48
2404:4d40:1021::/48 maxlen: 48
2404:4d40:1022::/48 maxlen: 48
2404:4d40:1100::/40 maxlen: 40
2404:4d40:1200::/40 maxlen: 40
2404:4d40:1300::/40 maxlen: 40
2404:4d40:1400::/40 maxlen: 40
2404:4d40:1500::/40 maxlen: 40
2404:4d40:1600::/40 maxlen: 40
2404:4d40:1700::/40 maxlen: 40
2404:4d40:1800::/40 maxlen: 40
2404:4d40:1900::/40 maxlen: 40
2404:4d40:1a00::/40 maxlen: 40
2404:4d40:1b00::/40 maxlen: 40
2404:4d40:1c00::/40 maxlen: 40
2404:4d40:1d00::/40 maxlen: 40
2404:4d40:1e00::/40 maxlen: 40
2404:4d40:1f00::/40 maxlen: 40
2404:4d40:2000::/36 maxlen: 36
2404:4d40:2000::/40 maxlen: 40
2404:4d40:2100::/40 maxlen: 40
2404:4d40:2200::/40 maxlen: 40
2404:4d40:2300::/40 maxlen: 40
2404:4d40:2400::/40 maxlen: 40
2404:4d40:2500::/40 maxlen: 40
2404:4d40:2600::/40 maxlen: 40
2404:4d40:2700::/40 maxlen: 40
2404:4d40:2800::/40 maxlen: 40
2404:4d40:2900::/40 maxlen: 40
2404:4d40:2a00::/40 maxlen: 40
2404:4d40:2b00::/40 maxlen: 40
2404:4d40:2c00::/40 maxlen: 40
2404:4d40:2d00::/40 maxlen: 40
2404:4d40:2e00::/40 maxlen: 40
2404:4d40:2f00::/40 maxlen: 40
2404:4d40:3000::/36 maxlen: 36
2404:4d40:4000::/36 maxlen: 36
2404:4d40:4000::/40 maxlen: 40
2404:4d40:5000::/36 maxlen: 36
2404:4d40:6000::/36 maxlen: 36
2404:4d40:7000::/36 maxlen: 36
2404:4d40:8000::/36 maxlen: 36
2404:4d40:9000::/36 maxlen: 36
2404:4d40:a000::/36 maxlen: 36
2404:4d40:b000::/36 maxlen: 36
2404:4d40:c000::/36 maxlen: 36
2404:4d40:d000::/36 maxlen: 36
2404:4d40:e000::/36 maxlen: 36
2404:4d40:f000::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A9D0F/serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2
Validity
Not Before: Dec 30 08:15:33 2022 GMT
Not After : May 1 00:00:00 2023 GMT
Subject: CN=63ae9e25-67e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ce:b9:71:07:d4:63:b3:ad:6d:61:44:a6:56:
63:22:85:1f:b8:28:b6:46:a7:5e:0a:92:46:d1:95:
d2:58:60:ce:fd:e0:37:d5:b2:bb:9e:c3:42:7d:00:
f9:b8:4c:89:61:87:f8:f4:0a:af:5a:e4:c2:07:a8:
25:dc:c8:9a:6a:7e:01:6d:a9:f5:ec:50:0d:c0:52:
48:02:09:47:39:1d:f4:84:13:07:37:25:ab:d1:37:
fa:f9:4c:0d:22:01:32:5e:29:b5:00:aa:c2:67:5b:
c9:04:58:11:e8:52:e2:83:c6:9e:fb:90:b8:cf:b4:
50:3e:50:b2:33:04:b2:10:84:4b:82:60:d0:0a:2b:
f7:08:fb:16:08:a3:0a:0f:6a:84:a2:b6:b6:28:44:
1b:bf:ee:91:41:d4:e5:90:7b:05:12:ba:d1:74:cd:
d0:47:e3:b6:90:c8:be:33:21:12:f2:70:58:82:19:
94:6c:c4:6a:a6:c6:30:83:02:0d:8a:fc:86:3a:de:
e5:da:e7:38:a8:59:69:e8:10:dc:1b:65:6c:b7:ae:
7e:cd:a7:26:ef:06:6b:4a:97:95:63:ab:4f:76:3d:
26:70:7b:52:98:79:f4:e0:06:aa:36:1f:df:41:1c:
05:ba:b0:f8:41:bc:3c:cc:f7:f2:7b:d2:99:59:2c:
fd:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:6B:21:10:91:8F:0D:0F:16:DC:40:6B:3C:E0:A3:5B:8C:9F:DD:38
X509v3 Authority Key Identifier:
keyid:88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/4D669582881711ED805C1736C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.133.140.0/22
IPv6:
2404:4d40::/32
Signature Algorithm: sha256WithRSAEncryption
a2:08:4d:9a:16:e2:c0:e0:c9:a2:f4:3e:7b:0f:eb:0a:6e:03:
de:c0:88:eb:c3:b9:e2:f2:fa:13:49:34:a4:cf:68:2e:92:5f:
13:32:74:4f:9a:4e:43:29:0b:d6:d6:35:b2:9b:ae:15:2b:ff:
26:6d:02:8e:ca:c7:92:8c:af:33:6e:66:81:1b:68:b2:d8:41:
c4:f1:7b:57:e5:16:44:09:5d:ad:3e:3d:e8:22:eb:8f:c7:46:
ee:72:1b:a7:7f:04:00:e7:db:37:1c:9e:d3:66:d2:42:60:2e:
24:42:d9:1e:89:e3:f9:22:44:72:d8:7b:c7:ba:64:67:5e:ac:
15:ec:ae:e3:6c:4b:47:8d:ac:a5:16:8f:4c:49:90:d9:ab:ae:
36:37:c4:f8:6b:2e:49:df:a0:ae:ce:95:87:e3:18:f8:eb:a4:
dd:ac:d1:88:33:56:e0:b1:f0:ac:a2:ad:7c:97:b1:e9:4e:3d:
3c:63:9a:04:8b:8b:a2:9f:d1:72:c6:d7:c1:20:27:3b:35:5a:
e1:85:dc:92:0e:02:2c:b7:c0:81:a5:dd:b5:f5:f7:e6:64:be:
26:cf:f0:a1:82:0e:49:1e:45:a0:88:e0:0c:22:9d:bb:ee:c9:
a9:08:a9:55:e5:77:8a:cc:18:fb:91:8f:a1:67:1c:2d:df:c3:
bf:0f:ab:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:55 2024 by rpki-client on console-ams.rpki-client.org