Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/0B8AD922E17B11EC93AB7473C4F9AE02.roa
File: 0B8AD922E17B11EC93AB7473C4F9AE02.roa (raw, json)
Hash identifier: IRVCHxYdyyzzCIs2qRsysuOU0zCIVsqjnTHQv1E25QM=
Subject key identifier: A6:FE:E1:01:20:B7:6F:DD:76:AB:AA:E2:3C:31:72:62:F9:8A:3E:C3
Certificate issuer: /CN=A911ABF4/serialNumber=BBE233560EFD409B38CDB80A00575A37BA896435
Certificate serial: 0502
Authority key identifier: BB:E2:33:56:0E:FD:40:9B:38:CD:B8:0A:00:57:5A:37:BA:89:64:35
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-IzVg79QJs4zbgKAFdaN7qJZDU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/0B8AD922E17B11EC93AB7473C4F9AE02.roa
Signing time: Wed 01 Jun 2022 19:17:44 +0000
ROA not before: Wed 01 Jun 2022 19:17:44 +0000
ROA not after: Sat 01 Oct 2022 00:00:00 +0000
asID: 137542
IP address blocks: 103.112.128.0/24 maxlen: 24
103.112.129.0/24 maxlen: 24
103.112.130.0/24 maxlen: 24
103.112.131.0/24 maxlen: 24
2402:a940::/32 maxlen: 32
2402:a940::/36 maxlen: 36
2402:a940:1000::/36 maxlen: 36
2402:a940:2000::/36 maxlen: 36
2402:a940:3000::/36 maxlen: 36
2402:a940:4000::/36 maxlen: 36
2402:a940:5000::/36 maxlen: 36
2402:a940:6000::/36 maxlen: 36
2402:a940:7000::/36 maxlen: 36
2402:a940:8000::/36 maxlen: 36
2402:a940:9000::/36 maxlen: 36
2402:a940:a000::/36 maxlen: 36
2402:a940:b000::/36 maxlen: 36
2402:a940:c000::/36 maxlen: 36
2402:a940:d000::/36 maxlen: 36
2402:a940:e000::/36 maxlen: 36
2402:a940:f000::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1282 (0x502)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911ABF4/serialNumber=BBE233560EFD409B38CDB80A00575A37BA896435
Validity
Not Before: Jun 1 19:17:44 2022 GMT
Not After : Oct 1 00:00:00 2022 GMT
Subject: CN=6297bb57-3dda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e9:af:19:7c:40:0a:f2:c2:33:42:b0:0b:57:
a4:c2:94:62:90:d4:ba:ce:ce:94:cb:92:56:31:92:
5f:f0:0d:e6:d2:9c:9f:16:16:7e:c4:3b:66:f3:6e:
ff:ad:7e:36:48:d7:95:9e:9b:f0:28:5a:d3:37:8d:
6c:46:a5:e9:29:dd:14:45:cf:50:73:9a:2d:74:75:
ac:73:cc:ea:5b:3d:56:83:32:30:17:1e:e1:7c:74:
e1:d8:a1:f5:76:13:46:41:8e:76:2d:bb:dd:9e:28:
a8:16:e9:64:57:10:12:d0:dc:ae:80:ec:92:22:a1:
3c:cd:4b:7b:77:95:4f:d3:79:3f:7a:c5:de:8c:19:
2c:96:ca:e2:04:29:4e:40:a3:80:4f:f0:98:a0:6d:
c8:c1:ea:d6:38:6e:36:0b:9e:68:43:ef:23:2c:10:
97:7a:38:4e:05:a9:2f:d7:60:39:fb:a7:11:5f:5b:
7b:13:a8:fc:5b:57:b8:41:44:d3:06:0c:6f:f9:29:
b5:c1:83:6b:46:dc:6d:07:2c:19:5f:7c:b6:92:db:
a2:7b:a1:0e:57:96:87:87:8c:25:9d:c2:6e:e8:b2:
8a:d5:72:46:13:4a:6d:06:1d:62:e6:0b:c3:93:84:
6d:45:97:98:70:16:ea:4c:8f:9f:e6:05:ba:0f:99:
6d:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:FE:E1:01:20:B7:6F:DD:76:AB:AA:E2:3C:31:72:62:F9:8A:3E:C3
X509v3 Authority Key Identifier:
keyid:BB:E2:33:56:0E:FD:40:9B:38:CD:B8:0A:00:57:5A:37:BA:89:64:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/u-IzVg79QJs4zbgKAFdaN7qJZDU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-IzVg79QJs4zbgKAFdaN7qJZDU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/0B8AD922E17B11EC93AB7473C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.112.128.0/22
IPv6:
2402:a940::/32
Signature Algorithm: sha256WithRSAEncryption
a1:8b:e7:37:b8:54:e1:76:ee:55:62:89:d0:37:96:80:ed:38:
45:d0:be:37:60:1c:55:7d:57:97:b7:1c:6b:e9:3b:05:15:27:
04:c0:5f:2f:87:1a:2b:01:40:4c:f6:92:57:2b:8b:5a:0b:ec:
48:8a:72:35:32:28:5e:6a:e9:8e:15:4e:0e:be:59:aa:43:a0:
88:ac:f6:2c:ee:c2:8c:fd:e3:f0:27:e0:30:62:60:f0:3e:eb:
15:be:41:3d:e1:99:ed:5a:52:64:a5:53:01:d3:8f:6f:08:43:
9c:ae:18:80:fa:21:94:96:d8:18:17:b9:32:0a:d6:64:dd:39:
15:b2:e7:95:42:aa:a5:ff:3a:eb:f2:fc:57:76:98:57:fb:f5:
c4:40:f7:d3:e6:77:f3:11:44:48:60:ed:17:0c:43:26:f2:55:
ff:26:5e:58:ee:7e:eb:49:e0:8a:c5:29:49:5f:b3:89:4b:51:
15:ad:dc:9a:ea:87:23:09:88:63:1b:73:64:4b:85:c4:b3:18:
f4:cc:2f:b5:28:dc:d7:40:d4:ac:89:eb:c9:68:9b:ac:6b:43:
6a:2a:97:de:f1:40:05:7c:3c:9e:0f:53:ea:6f:d2:80:51:0b:
ab:74:26:f2:54:97:d5:f1:88:11:55:1e:7b:92:c0:28:44:b8:
fc:ed:50:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:36 2023 by rpki-client on console-fra.rpki-client.org