Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911AB93/8D303946818B11E6BF1CB657C4F9AE02/C2E64730ABF511E6B5EA120BC4F9AE02.roa
File: C2E64730ABF511E6B5EA120BC4F9AE02.roa (raw, json)
Hash identifier: PNVewu7xK6uZHHX4jMcvr5aqDKbk7VE/6y9SvD1/2Ms=
Subject key identifier: E1:D0:1A:3B:FF:89:E7:58:8E:02:44:35:CE:5B:56:7A:82:96:D7:41
Certificate issuer: /CN=A911AB93/serialNumber=8FC3F8DE523AF29DB24A1590FD40A04475AE0A25
Certificate serial: 1C65
Authority key identifier: 8F:C3:F8:DE:52:3A:F2:9D:B2:4A:15:90:FD:40:A0:44:75:AE:0A:25
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j8P43lI68p2yShWQ_UCgRHWuCiU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911AB93/8D303946818B11E6BF1CB657C4F9AE02/C2E64730ABF511E6B5EA120BC4F9AE02.roa
Signing time: Thu 24 Nov 2022 16:43:00 +0000
ROA not before: Thu 24 Nov 2022 16:42:59 +0000
ROA not after: Sat 30 Dec 2023 00:00:00 +0000
asID: 133476
IP address blocks: 103.75.212.0/22 maxlen: 22
103.75.212.0/24 maxlen: 24
103.75.213.0/24 maxlen: 24
103.75.214.0/24 maxlen: 24
2407:5680::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7269 (0x1c65)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911AB93/serialNumber=8FC3F8DE523AF29DB24A1590FD40A04475AE0A25
Validity
Not Before: Nov 24 16:42:59 2022 GMT
Not After : Dec 30 00:00:00 2023 GMT
Subject: CN=637f9f13-fe89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c4:14:a8:61:08:e0:98:54:57:d5:11:07:a6:
cf:d8:3d:23:94:f5:61:36:c3:ee:e4:40:17:e3:e1:
8d:67:ed:cb:8f:fa:d3:c2:e0:39:b2:dc:c2:c9:6b:
15:75:e6:4b:23:95:1b:0c:ae:74:f0:74:8b:c4:bc:
90:e7:cb:94:1a:81:fd:51:00:8f:94:22:01:4b:89:
7e:b3:51:55:4a:36:4f:f9:4d:b1:f5:02:ea:93:33:
8e:8f:79:19:d3:3c:07:57:2a:3d:7b:78:e8:e5:41:
98:7b:fb:1d:41:7c:7f:72:b4:cf:f0:63:9a:60:d0:
cc:01:58:a8:92:ff:2f:91:43:28:f9:8e:68:0a:d6:
04:39:cb:bc:83:0f:62:7b:8e:c3:fe:cb:85:a2:15:
6c:d3:07:d9:00:f6:92:10:aa:83:be:fb:2a:75:32:
1d:eb:5a:2d:8e:4b:5a:37:40:ec:80:d0:01:ed:17:
49:98:97:79:67:1e:80:46:45:f2:f7:92:2e:57:89:
7c:91:13:37:bd:26:82:e4:2b:a8:f4:a5:88:41:0e:
71:f3:f6:b8:ec:66:1d:d9:11:7e:44:b6:76:7b:99:
65:12:c2:16:cd:e5:0b:0e:e7:ad:5b:f8:db:9b:c1:
9e:03:37:5d:ce:e5:db:38:7f:37:5d:2e:4d:5b:a6:
5d:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:D0:1A:3B:FF:89:E7:58:8E:02:44:35:CE:5B:56:7A:82:96:D7:41
X509v3 Authority Key Identifier:
keyid:8F:C3:F8:DE:52:3A:F2:9D:B2:4A:15:90:FD:40:A0:44:75:AE:0A:25
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911AB93/8D303946818B11E6BF1CB657C4F9AE02/j8P43lI68p2yShWQ_UCgRHWuCiU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j8P43lI68p2yShWQ_UCgRHWuCiU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AB93/8D303946818B11E6BF1CB657C4F9AE02/C2E64730ABF511E6B5EA120BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.75.212.0/22
IPv6:
2407:5680::/32
Signature Algorithm: sha256WithRSAEncryption
0e:fb:3d:7c:f8:16:90:f4:bb:2a:0e:12:e7:d1:f8:f0:9a:e0:
d3:9e:07:fd:cb:bf:a1:bd:59:b6:73:8d:2f:21:1a:c4:56:0e:
a5:c5:b9:a8:51:f0:f5:81:ed:af:c1:fe:18:0a:e2:0b:ea:43:
03:fd:0f:55:4d:3f:bf:61:56:44:0f:3b:21:fe:60:5e:cc:18:
a9:53:84:a7:89:be:d1:5e:a4:9e:79:32:93:97:cd:de:5f:d5:
32:4b:3a:a0:1c:84:17:e0:31:7e:44:78:aa:c9:6a:6a:a5:b3:
65:ae:ed:76:09:46:ee:7d:50:c3:19:4a:24:6a:45:3a:2a:34:
98:cf:bb:6d:86:a4:76:23:56:55:32:7f:5f:27:ca:67:ba:06:
b8:e0:bd:c5:d9:1c:91:2f:ce:e2:81:56:aa:f9:e7:77:3c:5e:
1e:69:2a:09:e9:a2:c7:89:a6:13:ba:2a:f1:41:84:a1:0d:32:
5b:38:1a:f6:f2:6c:96:cb:8d:95:71:70:01:e7:ea:8d:60:cb:
12:9b:81:5f:0e:82:f0:67:a0:f7:37:29:9c:3e:50:9d:5b:b9:
b9:90:bf:f3:40:6b:b2:5b:de:1b:c5:4a:21:29:0a:fe:08:df:
43:87:e3:f8:2b:4b:16:6d:40:de:49:ab:70:ac:40:01:1d:55:
d4:56:9e:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:46 2024 by rpki-client on console-ams.rpki-client.org