Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9115964/EFC2CCBC270F11EBADE6C019C4F9AE02/F8AEA23E46F611EDA5BFF241C4F9AE02.roa
File: F8AEA23E46F611EDA5BFF241C4F9AE02.roa (raw, json)
Hash identifier: yuv/ulmx8s5eXL3xnTnuk5hXFBcA2WK53af2q916OIg=
Subject key identifier: 29:37:46:EC:8B:3B:66:C7:86:C9:D4:16:4D:F4:6E:0F:B8:E1:DB:7C
Certificate issuer: /CN=A9115964/serialNumber=7B721388FD13E8AE43C97F0301981D2292C88897
Certificate serial: 0584
Authority key identifier: 7B:72:13:88:FD:13:E8:AE:43:C9:7F:03:01:98:1D:22:92:C8:88:97
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e3ITiP0T6K5DyX8DAZgdIpLIiJc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9115964/EFC2CCBC270F11EBADE6C019C4F9AE02/F8AEA23E46F611EDA5BFF241C4F9AE02.roa
Signing time: Sat 08 Oct 2022 10:50:07 +0000
ROA not before: Sat 08 Oct 2022 10:50:07 +0000
ROA not after: Sun 28 May 2023 00:00:00 +0000
asID: 132337
IP address blocks: 103.69.212.0/24 maxlen: 24
103.69.213.0/24 maxlen: 24
103.69.214.0/24 maxlen: 24
103.69.215.0/24 maxlen: 24
103.148.238.0/23 maxlen: 23
103.148.238.0/24 maxlen: 24
103.148.239.0/24 maxlen: 24
103.196.48.0/24 maxlen: 24
103.196.49.0/24 maxlen: 24
103.196.50.0/24 maxlen: 24
103.196.51.0/24 maxlen: 24
113.30.156.0/24 maxlen: 24
113.30.157.0/24 maxlen: 24
113.30.158.0/24 maxlen: 24
113.30.159.0/24 maxlen: 24
113.30.228.0/22 maxlen: 24
121.50.216.0/21 maxlen: 24
2406:c140::/32 maxlen: 32
2406:c140:33::/48 maxlen: 48
2406:c140:65::/48 maxlen: 48
2406:c140:238::/48 maxlen: 48
2406:c140:239::/48 maxlen: 48
2406:c140:852::/48 maxlen: 48
2406:c140:886::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1412 (0x584)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9115964/serialNumber=7B721388FD13E8AE43C97F0301981D2292C88897
Validity
Not Before: Oct 8 10:50:07 2022 GMT
Not After : May 28 00:00:00 2023 GMT
Subject: CN=634155de-9414
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:50:78:b7:c3:f0:ca:2f:c7:9c:8c:a4:ae:5d:
cd:3f:62:6a:e9:3a:d3:51:93:19:3e:23:b8:da:d5:
37:74:22:d2:99:bd:90:1f:31:e1:02:dc:e8:b9:ac:
db:68:2b:14:0d:01:1a:62:12:19:c2:09:42:d2:99:
a5:f1:a5:fd:ee:5f:2a:a4:3d:19:87:2e:bf:b9:c9:
72:ea:bf:9f:22:32:4b:f1:df:2f:a5:3c:cf:73:cc:
d4:d3:ff:2d:56:7a:c6:01:d3:78:b8:86:ff:37:d5:
45:7b:83:3e:45:a2:74:e6:18:59:a6:b9:bb:e5:7a:
45:55:ce:bc:16:a9:d2:c8:bc:61:10:bd:58:dd:6c:
0d:0e:3b:9f:c6:10:78:a9:52:2c:d5:11:86:24:c0:
b2:32:98:fa:f2:1f:70:f2:2b:17:b9:88:02:26:5c:
4b:14:e7:2e:37:97:e2:84:11:e9:7a:e4:d6:fa:ad:
d7:7d:5e:1c:08:e1:a9:36:52:f6:72:02:ee:9e:bf:
57:2b:ed:9d:1d:cb:7f:ef:dc:cd:81:67:02:d0:e4:
84:d2:eb:38:8c:a9:05:b2:9d:78:22:b5:11:2a:c4:
ab:a2:33:78:0b:06:93:67:46:cd:6a:de:6b:39:2d:
73:39:91:e8:8f:f8:61:45:98:b9:4e:10:88:e2:71:
71:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:37:46:EC:8B:3B:66:C7:86:C9:D4:16:4D:F4:6E:0F:B8:E1:DB:7C
X509v3 Authority Key Identifier:
keyid:7B:72:13:88:FD:13:E8:AE:43:C9:7F:03:01:98:1D:22:92:C8:88:97
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9115964/EFC2CCBC270F11EBADE6C019C4F9AE02/e3ITiP0T6K5DyX8DAZgdIpLIiJc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e3ITiP0T6K5DyX8DAZgdIpLIiJc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9115964/EFC2CCBC270F11EBADE6C019C4F9AE02/F8AEA23E46F611EDA5BFF241C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.69.212.0/22
103.148.238.0/23
103.196.48.0/22
113.30.156.0/22
113.30.228.0/22
121.50.216.0/21
IPv6:
2406:c140::/32
Signature Algorithm: sha256WithRSAEncryption
8f:75:c6:01:37:95:ce:58:f1:6e:b4:a4:32:6d:5c:96:2d:7b:
7e:7c:da:30:fd:5d:5d:0a:d0:8c:95:92:05:7d:06:3b:01:8a:
a2:bb:1b:01:77:5f:f1:7f:af:7f:47:bf:aa:d7:90:d7:86:0b:
c2:d8:50:6c:8a:92:f1:a7:2c:2e:8d:05:b0:92:99:36:02:9d:
65:f4:d3:ab:69:49:be:18:d1:42:3c:7f:ec:b0:d1:23:24:79:
31:6c:d5:be:7a:71:51:b3:f8:dd:67:75:85:26:e8:ae:30:da:
d0:48:bf:51:96:21:1c:c8:e9:35:e3:7e:ec:85:bb:a1:2d:75:
5b:ce:58:96:ab:ab:d0:36:7f:f7:6b:51:28:de:3a:e4:9e:ec:
c6:c9:66:59:95:4a:9c:53:de:c8:15:b0:e5:e7:47:cc:b4:67:
2d:fb:c1:72:a2:e4:e4:05:24:79:af:54:55:d5:5d:68:ad:b7:
b0:af:70:3a:b2:58:4a:7a:26:41:e1:00:2d:f9:89:5b:d8:ae:
a1:fe:9d:3e:9e:e3:fa:18:9b:55:cd:fe:be:27:32:7f:e7:c7:
13:61:ec:23:e2:3d:ee:39:85:b2:a0:c5:cd:80:b8:b7:bb:40:
6d:cf:8b:b9:2a:0d:e4:0d:a3:b3:39:f0:db:16:7c:7b:12:d5:
9c:56:9f:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:33 2023 by rpki-client on console-ams.rpki-client.org