Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/ADA61D265E2711EBB097D32FC4F9AE02.roa
File: ADA61D265E2711EBB097D32FC4F9AE02.roa (raw, json)
Hash identifier: E2CNH5G5KLCo3672sR3Z51zn5skJhO+0LdaqSbHwp+g=
Subject key identifier: E4:1B:26:0A:44:84:F6:7C:6E:39:13:86:68:2A:9B:56:FF:4F:4A:62
Certificate issuer: /CN=A913025C/serialNumber=0CEA68A02C529F88752C642DE0D2FEF9F5D7A14A
Certificate serial: 04E7
Authority key identifier: 0C:EA:68:A0:2C:52:9F:88:75:2C:64:2D:E0:D2:FE:F9:F5:D7:A1:4A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOpooCxSn4h1LGQt4NL--fXXoUo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/ADA61D265E2711EBB097D32FC4F9AE02.roa
Signing time: Sun 23 Oct 2022 00:50:32 +0000
ROA not before: Sun 23 Oct 2022 00:50:32 +0000
ROA not after: Sat 30 Dec 2023 00:00:00 +0000
asID: 40138
IP address blocks: 45.127.112.0/23 maxlen: 24
45.127.114.0/24 maxlen: 24
45.127.115.0/24 maxlen: 24
103.196.36.0/24 maxlen: 24
103.196.37.0/24 maxlen: 24
103.196.38.0/24 maxlen: 24
103.196.39.0/24 maxlen: 24
2402:e580::/48 maxlen: 48
2402:e580:1::/48 maxlen: 48
2402:e580:2::/48 maxlen: 48
2402:e580:3::/48 maxlen: 48
2402:e580:4::/48 maxlen: 48
2402:e580:5::/48 maxlen: 48
2402:e580:6::/48 maxlen: 48
2402:e580:7::/48 maxlen: 48
2402:e580:8::/48 maxlen: 48
2402:e580:9::/48 maxlen: 48
2402:e580:a::/48 maxlen: 48
2402:e580:b::/48 maxlen: 48
2402:e580:c::/48 maxlen: 48
2402:e580:d::/48 maxlen: 48
2402:e580:e::/48 maxlen: 48
2402:e580:f::/48 maxlen: 48
2402:e580:40::/42 maxlen: 42
2402:e580:100::/40 maxlen: 40
2402:e580:200::/39 maxlen: 39
2402:e580:400::/38 maxlen: 38
2402:e580:800::/37 maxlen: 37
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1255 (0x4e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913025C/serialNumber=0CEA68A02C529F88752C642DE0D2FEF9F5D7A14A
Validity
Not Before: Oct 23 00:50:32 2022 GMT
Not After : Dec 30 00:00:00 2023 GMT
Subject: CN=63548fd7-1267
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:f1:3b:d8:92:5c:a3:b6:00:e2:59:5a:8a:ec:
8a:e4:db:e7:50:52:3b:f4:3b:6f:ca:34:f5:08:b4:
c2:41:5c:21:b4:fa:12:31:47:21:40:b3:48:3a:37:
0a:34:f2:78:a2:3c:97:6f:bf:96:13:43:50:b6:16:
4e:6e:56:a8:ae:9a:10:b5:72:83:d3:33:99:b9:38:
b6:d7:3b:25:eb:30:13:7d:e1:5d:64:cc:e7:2b:64:
62:22:7c:44:c2:4c:c2:e8:27:e1:da:b5:01:82:e2:
1b:83:b4:ba:47:60:c6:71:c7:40:11:eb:9e:8d:f4:
29:27:70:11:fe:bb:e6:43:3d:ab:4e:53:8d:1c:24:
62:6b:09:4f:98:03:a2:28:f2:18:50:0e:6b:e7:80:
eb:35:5a:65:23:46:8b:b7:2d:5f:a1:61:97:4e:db:
bb:0b:01:24:1a:78:37:16:92:bd:c2:d1:9c:c8:cb:
92:44:3d:e2:c4:d4:be:25:0f:61:68:98:66:d0:22:
11:21:e8:33:ab:dc:40:4f:5d:2f:93:a7:3f:17:48:
20:31:a1:32:3a:28:6b:37:7f:7a:bc:c4:0d:20:03:
43:52:aa:23:c5:86:f0:3c:1e:9b:2f:e2:29:84:6a:
fa:0a:f8:59:e5:21:53:e6:59:66:d0:b5:a7:af:09:
14:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:1B:26:0A:44:84:F6:7C:6E:39:13:86:68:2A:9B:56:FF:4F:4A:62
X509v3 Authority Key Identifier:
keyid:0C:EA:68:A0:2C:52:9F:88:75:2C:64:2D:E0:D2:FE:F9:F5:D7:A1:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOpooCxSn4h1LGQt4NL--fXXoUo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/ADA61D265E2711EBB097D32FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.127.112.0/22
103.196.36.0/22
IPv6:
2402:e580::/44
2402:e580:40::/42
2402:e580:100::-2402:e580:fff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
4c:68:02:b9:e4:37:b9:ed:f8:60:8f:8a:e7:83:c3:0b:3e:a4:
d9:57:90:af:3c:78:21:d3:f1:c0:64:21:31:ee:c2:d0:42:a8:
9f:1f:80:31:2e:67:8c:09:1b:76:e4:93:1a:29:d8:f6:07:18:
05:0d:1f:80:e2:08:cb:7c:6f:19:38:48:4e:ad:de:3e:f7:ef:
8d:21:1c:0d:33:d2:5a:65:27:fd:bc:53:8a:80:1e:fa:8f:8f:
d9:99:ad:6a:8d:a1:3c:f8:bc:01:2f:e1:42:2d:a2:7e:1d:cf:
8f:fe:9c:08:c0:4a:bb:28:b4:17:b0:82:67:40:0b:15:d0:5e:
1c:30:af:e0:09:40:b5:f2:2a:4a:99:39:d5:1b:e2:c9:9a:69:
77:dd:f1:1b:c4:89:a8:41:c8:b7:8f:08:20:c3:fe:7f:7c:50:
bc:ee:1e:f8:46:f2:9b:1e:32:68:2b:0d:17:97:a6:1c:80:c4:
e9:16:0c:81:ee:7a:4d:c4:82:c0:a7:d6:d9:f7:1b:b6:31:4e:
4b:32:20:48:35:f0:9f:ca:c4:8c:1a:6d:61:47:a7:b7:bc:31:
04:19:b8:a4:1b:ff:96:7e:bc:3d:58:85:95:e8:88:5b:75:60:
89:b5:3f:2c:65:be:31:85:10:f5:31:5c:ff:8e:2f:14:28:a4:
5a:b2:fd:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:53 2024 by rpki-client on console-ams.rpki-client.org