Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/8744A406689011EEA00A095DC4F9AE02.roa
File: 8744A406689011EEA00A095DC4F9AE02.roa (raw, json)
Hash identifier: jmnpRc+nJD8Aa9Q+qZX4ezRjAv9TuBJ40vzK5MQL66Q=
Subject key identifier: 49:35:0E:03:BE:4E:B2:C2:23:78:17:F4:5A:82:6F:84:E3:79:53:DE
Certificate issuer: /CN=A914FA25/serialNumber=00389A8657AE098804472F8E68D705E2EFDBD7C0
Certificate serial: 12
Authority key identifier: 00:38:9A:86:57:AE:09:88:04:47:2F:8E:68:D7:05:E2:EF:DB:D7:C0
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ADiahleuCYgERy-OaNcF4u_b18A.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/8744A406689011EEA00A095DC4F9AE02.roa
Signing time: Sun 05 Nov 2023 08:36:52 +0000
ROA not before: Sun 05 Nov 2023 08:36:52 +0000
ROA not after: Wed 29 May 2024 00:00:00 +0000
asID: 137496
IP address blocks: 103.110.160.0/22 maxlen: 22
103.110.160.0/23 maxlen: 23
103.110.160.0/24 maxlen: 24
103.110.161.0/24 maxlen: 24
103.110.162.0/24 maxlen: 24
2402:8dc0::/32 maxlen: 32
2402:8dc0::/48 maxlen: 48
2402:8dc0:1::/48 maxlen: 48
2402:8dc0:2::/48 maxlen: 48
2402:8dc0:3::/48 maxlen: 48
2402:8dc0:4::/48 maxlen: 48
2402:8dc0:10::/48 maxlen: 48
2402:8dc0:11::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18 (0x12)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914FA25/serialNumber=00389A8657AE098804472F8E68D705E2EFDBD7C0
Validity
Not Before: Nov 5 08:36:52 2023 GMT
Not After : May 29 00:00:00 2024 GMT
Subject: CN=65475423-8f95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:85:b9:c0:f8:f4:a4:9d:04:6e:7f:ee:0c:f6:
8b:ec:92:30:0a:42:4c:95:f5:d8:bb:42:cc:73:fc:
67:71:9f:48:48:48:fc:19:36:3c:64:18:6b:0f:dc:
4d:c4:d1:2d:28:95:f6:c2:b6:0c:3c:42:78:94:07:
9d:06:87:79:34:80:a7:22:96:9e:e5:1e:2f:44:05:
42:ab:43:60:2f:a1:4d:2f:f1:ff:a6:f3:b8:55:10:
4e:af:bf:4c:05:17:9d:94:d6:5e:b3:66:ab:c1:26:
f0:53:ac:8f:13:90:f6:2d:5c:21:b8:69:42:81:6b:
4f:22:66:2b:77:62:3a:e7:9a:0b:1d:37:0a:e1:58:
34:df:1c:e1:b1:1d:85:a6:7a:1f:42:2c:4e:a6:2e:
87:53:54:f7:4e:18:96:4a:1d:d0:51:a9:68:3c:af:
07:ad:3d:32:5c:87:5b:b5:f7:20:84:c4:46:ce:24:
20:2c:c2:5f:1f:54:32:22:9c:b5:2b:b4:20:f6:61:
79:0d:59:55:4b:52:1d:51:87:d1:5c:09:dd:05:70:
4c:cb:24:9f:92:c7:c6:e6:09:04:ae:4b:46:17:ee:
84:38:4f:36:5f:66:37:d7:0c:a2:c2:5b:b8:c0:ab:
1d:e9:a1:5b:59:bb:ab:f1:07:6f:92:a1:f2:0e:26:
b9:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:35:0E:03:BE:4E:B2:C2:23:78:17:F4:5A:82:6F:84:E3:79:53:DE
X509v3 Authority Key Identifier:
keyid:00:38:9A:86:57:AE:09:88:04:47:2F:8E:68:D7:05:E2:EF:DB:D7:C0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/ADiahleuCYgERy-OaNcF4u_b18A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ADiahleuCYgERy-OaNcF4u_b18A.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/8744A406689011EEA00A095DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.110.160.0/22
IPv6:
2402:8dc0::/32
Signature Algorithm: sha256WithRSAEncryption
a6:98:72:aa:7b:e2:1f:b8:c5:77:97:61:1c:e6:8e:a8:da:96:
71:a8:1a:35:20:95:e6:01:d7:85:43:05:18:5c:74:4e:7f:93:
84:d9:29:c5:f9:85:2e:b6:30:77:c0:84:21:22:02:f0:cf:2d:
57:cc:b0:38:cf:42:27:df:d0:d7:a6:0e:8a:cf:8a:66:34:dc:
47:47:5f:f1:45:32:86:93:08:64:ab:5b:b2:1a:51:50:b0:6c:
7a:35:32:88:dd:41:26:b5:9a:b7:cc:63:46:04:f7:a9:ea:f7:
cb:f5:54:17:2e:0f:97:6a:b1:4a:e9:4c:9d:d6:a4:77:b4:2f:
91:9f:9e:53:df:31:0f:3f:74:ef:03:9b:c7:61:a3:95:54:ee:
48:c2:de:3c:14:1b:8e:e3:15:14:9b:27:e1:23:a4:1c:d1:c7:
d5:aa:cc:41:99:2e:b9:32:c0:e4:48:c8:cf:51:5a:dd:92:be:
06:87:f9:d9:3a:06:ce:e8:b2:0e:4c:df:81:9b:f8:97:75:d7:
f7:a3:a9:e8:ae:4b:4a:38:1a:4a:81:9d:13:92:66:be:c1:07:
18:ae:18:2e:3b:83:5f:b4:ee:7a:9b:ce:aa:69:8f:50:24:21:
37:b9:dd:3e:d3:e9:b3:94:76:71:33:38:d8:ba:2b:4a:62:30:
ee:8e:94:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:06 2024 by rpki-client on console-fra.rpki-client.org