Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/F5320BA6880E11ED9BE52B17C4F9AE02.roa
File: F5320BA6880E11ED9BE52B17C4F9AE02.roa (raw, json)
Hash identifier: NngiIe9Z8dha4o/GCX5locv8e96UgjAfWGawCie4UFc=
Subject key identifier: E8:2D:E1:EE:0B:36:53:10:26:77:99:63:58:B8:EA:BE:43:6D:99:EE
Certificate issuer: /CN=A91A9D0F/serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2
Certificate serial: 0D70
Authority key identifier: 88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/F5320BA6880E11ED9BE52B17C4F9AE02.roa
Signing time: Fri 30 Dec 2022 06:55:34 +0000
ROA not before: Fri 30 Dec 2022 06:55:34 +0000
ROA not after: Mon 01 May 2023 00:00:00 +0000
asID: 138575
IP address blocks: 103.133.140.0/22 maxlen: 22
103.133.140.0/24 maxlen: 24
103.133.142.0/23 maxlen: 23
103.133.142.0/24 maxlen: 24
103.133.143.0/24 maxlen: 24
2404:4d40::/32 maxlen: 32
2404:4d40:1000::/36 maxlen: 36
2404:4d40:1001::/48 maxlen: 48
2404:4d40:1002::/48 maxlen: 48
2404:4d40:1003::/48 maxlen: 48
2404:4d40:1004::/48 maxlen: 48
2404:4d40:1005::/48 maxlen: 48
2404:4d40:1006::/48 maxlen: 48
2404:4d40:1007::/48 maxlen: 48
2404:4d40:1008::/48 maxlen: 48
2404:4d40:1009::/48 maxlen: 48
2404:4d40:100a::/48 maxlen: 48
2404:4d40:100b::/48 maxlen: 48
2404:4d40:100c::/48 maxlen: 48
2404:4d40:100d::/48 maxlen: 48
2404:4d40:100e::/48 maxlen: 48
2404:4d40:100f::/48 maxlen: 48
2404:4d40:1010::/48 maxlen: 48
2404:4d40:1011::/48 maxlen: 48
2404:4d40:1012::/48 maxlen: 48
2404:4d40:1013::/48 maxlen: 48
2404:4d40:1014::/48 maxlen: 48
2404:4d40:1015::/48 maxlen: 48
2404:4d40:1016::/48 maxlen: 48
2404:4d40:1017::/48 maxlen: 48
2404:4d40:1018::/48 maxlen: 48
2404:4d40:1019::/48 maxlen: 48
2404:4d40:101a::/48 maxlen: 48
2404:4d40:101b::/48 maxlen: 48
2404:4d40:101c::/48 maxlen: 48
2404:4d40:101d::/48 maxlen: 48
2404:4d40:101e::/48 maxlen: 48
2404:4d40:101f::/48 maxlen: 48
2404:4d40:1020::/48 maxlen: 48
2404:4d40:1021::/48 maxlen: 48
2404:4d40:1022::/48 maxlen: 48
2404:4d40:2000::/36 maxlen: 36
2404:4d40:3000::/36 maxlen: 36
2404:4d40:4000::/36 maxlen: 36
2404:4d40:5000::/36 maxlen: 36
2404:4d40:6000::/36 maxlen: 36
2404:4d40:7000::/36 maxlen: 36
2404:4d40:8000::/36 maxlen: 36
2404:4d40:9000::/36 maxlen: 36
2404:4d40:a000::/36 maxlen: 36
2404:4d40:b000::/36 maxlen: 36
2404:4d40:c000::/36 maxlen: 36
2404:4d40:d000::/36 maxlen: 36
2404:4d40:e000::/36 maxlen: 36
2404:4d40:f000::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3440 (0xd70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A9D0F/serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2
Validity
Not Before: Dec 30 06:55:34 2022 GMT
Not After : May 1 00:00:00 2023 GMT
Subject: CN=63ae8b66-5d4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:10:09:b1:7f:33:dd:ea:02:78:51:4c:05:7c:
d8:03:14:6d:6a:bf:a3:ff:ed:48:bf:05:91:36:10:
3a:6c:d7:7e:78:88:cf:b4:5c:cc:64:04:9a:7f:44:
82:7c:5e:96:d7:46:a5:8e:80:d7:9d:fc:40:fb:b9:
e6:06:74:92:b8:07:63:68:52:98:e8:29:20:d4:4e:
9b:c5:72:7c:c2:fe:00:37:97:5e:73:0e:0e:de:f3:
a6:0e:ad:c2:20:ee:e0:cb:ed:21:11:3e:d9:21:09:
53:d5:c8:42:22:2f:86:6a:7f:3d:ce:36:5a:4f:eb:
d6:43:f4:56:eb:cf:71:68:4a:dc:8d:f8:c4:ed:2b:
53:38:44:e6:db:0b:6a:c0:3e:57:45:b2:b6:f9:6c:
63:ad:93:ff:f2:2a:ac:99:3b:aa:8f:f9:76:71:cf:
31:d3:02:7f:cd:98:91:6a:5d:24:d7:87:ed:ad:c1:
f4:d5:44:22:0a:9e:ca:fe:bb:b5:a6:87:a1:c4:36:
87:3e:4e:e8:6b:55:1e:ea:a8:70:f7:6d:71:f7:fc:
be:03:ea:80:5b:81:2b:d5:5a:f8:c2:98:de:43:f2:
7b:5e:c6:b6:3f:8b:ce:d4:56:f9:20:3c:09:36:2f:
37:9f:f4:a7:d2:fc:03:8e:d2:d7:5a:92:e3:27:e5:
10:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:2D:E1:EE:0B:36:53:10:26:77:99:63:58:B8:EA:BE:43:6D:99:EE
X509v3 Authority Key Identifier:
keyid:88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/F5320BA6880E11ED9BE52B17C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.133.140.0/22
IPv6:
2404:4d40::/32
Signature Algorithm: sha256WithRSAEncryption
4f:55:66:a3:d7:8a:93:f8:f6:2f:0e:66:68:b6:8a:e3:19:81:
13:cd:65:c5:58:cc:9c:67:c8:e5:95:02:6a:27:00:5c:3f:a4:
18:ff:ca:d2:03:a2:72:1c:85:36:25:0b:b7:14:57:84:17:26:
be:5b:73:4d:f1:bf:79:65:6e:db:c4:f3:99:05:e8:c8:39:31:
61:ad:11:53:bc:09:56:73:50:26:12:77:6d:90:9d:fe:ba:b3:
3a:54:5a:da:7e:56:39:f4:be:c4:60:fe:40:26:62:be:49:25:
98:55:1d:fb:5b:cd:19:a9:01:1d:32:04:49:2b:ee:cd:66:3c:
06:56:a2:fe:ab:7d:8d:ec:6f:6b:f5:de:49:bc:94:c2:57:fa:
8b:79:b5:6f:aa:86:81:cf:ad:54:77:56:64:91:b4:cc:b4:85:
43:fe:10:96:47:c1:c0:cc:1c:3b:dd:ae:1c:e4:eb:38:1f:3e:
6e:02:19:f8:e6:27:d3:35:9e:a3:2a:52:b0:99:33:8e:9e:bd:
f8:1d:89:10:c9:85:a5:fb:d2:80:c2:8f:8b:af:53:01:20:2f:
ef:76:df:f8:20:3b:3b:c2:b2:d4:d7:b2:18:ae:22:06:54:7c:
91:99:ba:52:91:ea:ee:e6:3e:9f:2e:3f:9d:2c:74:d7:bb:8a:
ab:8c:33:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:55 2024 by rpki-client on console-ams.rpki-client.org