Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9136655/F707F4640A9811EABDCAA17CC4F9AE02/6EC345827A1511EDB9C9C817C4F9AE02.roa
File: 6EC345827A1511EDB9C9C817C4F9AE02.roa (raw, json)
Hash identifier: KbVRn/020Zd6L9EmDNMcqfw8aGRsm0POHnEGK3EQNlM=
Subject key identifier: 20:D5:0E:C8:BB:B8:00:80:9D:79:7C:28:BE:51:7E:A1:68:4F:28:99
Certificate issuer: /CN=A9136655/serialNumber=70579F7F5F1B21DFC9DE667C6B3C21F16F87D572
Certificate serial: 0A5C
Authority key identifier: 70:57:9F:7F:5F:1B:21:DF:C9:DE:66:7C:6B:3C:21:F1:6F:87:D5:72
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFeff18bId_J3mZ8azwh8W-H1XI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9136655/F707F4640A9811EABDCAA17CC4F9AE02/6EC345827A1511EDB9C9C817C4F9AE02.roa
Signing time: Mon 12 Dec 2022 12:06:39 +0000
ROA not before: Mon 12 Dec 2022 12:06:39 +0000
ROA not after: Fri 31 Mar 2023 00:00:00 +0000
asID: 138541
IP address blocks: 103.132.176.0/22 maxlen: 22
103.132.176.0/23 maxlen: 23
103.132.176.0/24 maxlen: 24
103.132.178.0/23 maxlen: 23
103.132.178.0/24 maxlen: 24
103.132.179.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2652 (0xa5c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9136655/serialNumber=70579F7F5F1B21DFC9DE667C6B3C21F16F87D572
Validity
Not Before: Dec 12 12:06:39 2022 GMT
Not After : Mar 31 00:00:00 2023 GMT
Subject: CN=6397194f-b18e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:b1:79:ee:7c:3c:f9:93:cd:c7:06:e7:f4:36:
35:44:95:96:48:5f:bf:78:50:86:c8:e3:f4:39:c8:
86:0c:74:f4:eb:da:33:74:56:35:67:58:7d:e8:3d:
35:a4:ae:ed:56:9d:3c:6a:83:69:af:e4:11:03:e7:
ee:a3:f7:df:1c:86:6c:b0:b5:4a:fc:51:94:a6:ce:
bb:a4:37:86:c5:ec:c8:81:e0:eb:a9:93:49:f4:6c:
50:9f:ef:e9:0a:40:5b:1b:76:60:b4:3b:3c:0b:d6:
99:d9:3b:a4:19:70:74:97:68:ae:4e:00:69:05:46:
8a:89:a5:22:ec:35:23:ba:91:1c:f3:af:88:c2:36:
af:33:d0:11:4c:94:2b:c4:5c:81:f7:05:cb:e8:a0:
b3:97:92:f2:f5:d6:1b:66:06:4d:3a:28:28:02:62:
bb:63:c2:52:11:21:64:e9:ae:02:a4:6e:65:31:d8:
65:1d:a8:d6:9b:a3:2b:12:d3:da:8d:95:73:2e:81:
72:7c:80:ab:d7:b6:b8:1c:ee:fc:60:1a:73:49:c1:
79:01:73:b5:77:b5:93:a5:c3:e2:9f:75:24:30:11:
0a:0f:43:07:2f:86:58:d7:d4:3e:e2:87:36:34:24:
1a:85:47:23:5c:16:67:a0:3e:cf:f1:f2:9e:a4:34:
32:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:D5:0E:C8:BB:B8:00:80:9D:79:7C:28:BE:51:7E:A1:68:4F:28:99
X509v3 Authority Key Identifier:
keyid:70:57:9F:7F:5F:1B:21:DF:C9:DE:66:7C:6B:3C:21:F1:6F:87:D5:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9136655/F707F4640A9811EABDCAA17CC4F9AE02/cFeff18bId_J3mZ8azwh8W-H1XI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFeff18bId_J3mZ8azwh8W-H1XI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136655/F707F4640A9811EABDCAA17CC4F9AE02/6EC345827A1511EDB9C9C817C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.132.176.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:4c:cb:56:af:cf:f8:52:57:da:fd:66:e0:af:ea:29:6f:1d:
ec:1c:c7:21:7c:de:7a:6b:6d:1f:20:2f:3f:a3:de:47:d0:f0:
b0:de:a4:2b:40:75:0a:b8:30:f5:52:07:c1:0c:9b:29:01:98:
30:73:4d:8f:c3:87:47:f9:c0:4c:76:52:aa:55:33:b3:0e:12:
db:56:85:64:9f:95:69:c4:70:f5:e1:2f:53:8b:4e:e3:84:85:
ce:72:fb:06:0f:1b:44:b2:36:44:82:a9:c6:5a:17:70:80:df:
14:7b:ad:4a:ed:27:4d:59:16:ee:94:51:ab:72:a9:d7:06:e6:
9e:dc:9a:df:1b:56:04:b7:80:9d:84:c9:1c:0c:41:2c:3d:dc:
7e:c4:e2:63:79:94:d2:3b:d4:2b:44:89:db:a0:c8:91:cc:c9:
e6:d6:56:4b:0f:98:38:26:ea:fd:c1:0e:68:24:52:ed:11:d5:
f3:fb:0f:ae:28:cb:3f:23:65:56:84:90:ac:4a:e7:72:7b:55:
66:02:59:30:95:dc:f0:4c:16:d5:69:4f:46:ea:4d:78:fb:af:
c6:48:f7:a0:b8:95:2f:a4:91:56:2d:7d:2c:61:3d:b1:e1:e0:
da:0b:ae:f4:ad:3c:6f:80:79:44:11:b4:85:03:25:0b:31:a9:
a5:df:85:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:54 2024 by rpki-client on console-ams.rpki-client.org