Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/0B831F5CDA4711EB829C3B2BC4F9AE02.roa
File: 0B831F5CDA4711EB829C3B2BC4F9AE02.roa (raw, json)
Hash identifier: VvxzhEx6BkydbXxsTIssQYbDNwXXxMps7/ArVFVPtE0=
Subject key identifier: 30:57:F7:EE:C8:90:C1:B8:C1:AA:1C:A9:07:37:00:0A:E3:D0:B6:69
Certificate issuer: /CN=A912FCD6/serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B
Certificate serial: 1F08
Authority key identifier: 53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/0B831F5CDA4711EB829C3B2BC4F9AE02.roa
Signing time: Wed 22 Jun 2022 04:53:40 +0000
ROA not before: Wed 22 Jun 2022 04:53:40 +0000
ROA not after: Sun 30 Jul 2023 00:00:00 +0000
asID: 134128
IP address blocks: 59.153.28.0/22 maxlen: 24
103.18.80.0/22 maxlen: 24
103.54.148.0/22 maxlen: 24
180.210.220.0/22 maxlen: 24
2402:3b80::/32 maxlen: 32
2402:3b80::/48 maxlen: 48
2402:3b80:1::/48 maxlen: 48
2402:3b80:2::/48 maxlen: 48
2402:3b80:3::/48 maxlen: 48
2402:3b80:4::/48 maxlen: 48
2402:3b80:5::/48 maxlen: 48
2402:3b80:6::/48 maxlen: 48
2402:3b80:7::/48 maxlen: 48
2402:3b80:8::/48 maxlen: 48
2402:3b80:9::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7944 (0x1f08)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912FCD6/serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B
Validity
Not Before: Jun 22 04:53:40 2022 GMT
Not After : Jul 30 00:00:00 2023 GMT
Subject: CN=62b2a054-89be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:90:c2:d3:73:6d:25:9b:f4:19:ee:cc:bb:9a:
29:c5:81:0d:46:45:92:0d:47:5d:56:22:e7:11:ce:
4d:6e:f8:a3:14:ac:24:4c:56:d0:ef:d0:f1:4c:c6:
68:fb:85:6c:d3:84:fd:a0:5a:b7:8c:84:39:f0:86:
3d:6d:6c:77:fb:52:2f:99:31:fe:40:3d:19:87:80:
95:45:c7:cc:ed:24:a3:6e:48:32:79:60:bb:4f:34:
2e:f6:6d:7c:39:ec:7a:e4:64:a7:25:05:3a:59:12:
b3:cb:58:41:75:29:1b:28:05:4f:70:a6:06:ab:af:
94:69:bf:87:26:fd:2c:39:a9:56:64:f6:fe:cf:7c:
38:21:7c:51:90:68:06:65:59:08:06:0f:2b:0b:0d:
5a:1d:8d:52:1c:00:eb:cc:45:9a:45:00:3c:ad:2c:
ec:9f:ce:92:a9:e6:47:4b:33:2b:00:06:93:7d:96:
d9:aa:9f:79:29:d6:1d:3d:ca:4b:42:f0:8d:e4:e3:
8d:ee:2e:49:22:83:47:58:aa:32:40:92:83:0c:8e:
17:1a:52:09:ab:57:39:31:c4:6f:16:ea:5d:15:3a:
2c:2a:7f:ab:39:34:1d:18:b7:fc:aa:9e:88:b1:99:
4f:2b:5e:ff:90:b8:41:0e:ed:7f:1d:ba:40:a2:06:
66:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:57:F7:EE:C8:90:C1:B8:C1:AA:1C:A9:07:37:00:0A:E3:D0:B6:69
X509v3 Authority Key Identifier:
keyid:53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/0B831F5CDA4711EB829C3B2BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
59.153.28.0/22
103.18.80.0/22
103.54.148.0/22
180.210.220.0/22
IPv6:
2402:3b80::/32
Signature Algorithm: sha256WithRSAEncryption
5a:3e:dd:34:5e:83:10:b1:1a:78:68:e8:c9:6a:67:8d:a7:15:
33:1d:a4:b3:2d:5a:3e:7b:c2:cb:b0:f2:5c:c1:d7:c5:81:88:
92:13:ca:11:bf:49:a7:2e:90:e7:77:03:65:ff:e5:70:10:04:
8c:81:a2:43:e7:00:0b:a6:48:85:56:27:9c:a3:91:e3:ff:65:
49:fc:f1:c6:0a:af:f3:74:1c:d3:60:fa:f2:17:76:d3:ed:e6:
a7:9d:0c:71:b9:c4:b6:36:e2:70:82:ab:69:8c:0b:ef:82:f4:
95:f9:17:f0:e4:c2:b4:4b:9e:d0:32:f7:3d:f2:f2:3a:02:ca:
79:07:45:fc:21:6e:4f:26:76:54:6b:40:ad:b1:83:1e:4e:8b:
be:80:e5:13:ee:4e:18:7a:91:e0:89:33:6d:54:e8:97:aa:11:
62:92:b5:74:9f:29:92:66:6f:16:66:12:ec:ef:86:aa:6a:8e:
f5:47:22:8f:27:1e:1a:e5:23:b7:d5:7f:20:d5:6e:0d:87:2f:
01:3e:25:a3:00:04:6b:60:67:da:75:7a:b9:75:fb:d2:e5:95:
25:93:df:da:57:12:a8:03:37:5e:89:d8:6f:60:e0:0a:eb:14:
1e:f6:86:f7:25:2b:f7:7e:9b:14:12:46:b8:1e:13:e2:f0:3d:
fd:98:38:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:50:58 2024 by rpki-client on console-fra.rpki-client.org