Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91509A4/DBAB936EDA7611ECA48FFC6CC4F9AE02/6F134834DA7E11ECBEE1D13BC4F9AE02.roa
File: 6F134834DA7E11ECBEE1D13BC4F9AE02.roa (raw, json)
Hash identifier: Rav6Jiy6xtSOQn1UhJJM2QXcFC3uOTtcqGcFmC5ICmY=
Subject key identifier: 11:09:D7:27:39:23:C6:CE:EE:4B:7B:12:D5:54:4B:CA:CF:BB:FA:9D
Certificate issuer: /CN=A91509A4/serialNumber=0C099EB77B68D1A2DF5492C731B64D541F559B02
Certificate serial: 03
Authority key identifier: 0C:09:9E:B7:7B:68:D1:A2:DF:54:92:C7:31:B6:4D:54:1F:55:9B:02
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DAmet3to0aLfVJLHMbZNVB9VmwI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91509A4/DBAB936EDA7611ECA48FFC6CC4F9AE02/6F134834DA7E11ECBEE1D13BC4F9AE02.roa
Signing time: Mon 23 May 2022 09:55:11 +0000
ROA not before: Mon 23 May 2022 09:55:11 +0000
ROA not after: Mon 31 Oct 2022 00:00:00 +0000
asID: 17976
IP address blocks: 103.193.204.0/24 maxlen: 24
203.144.64.0/20 maxlen: 21
203.144.80.0/24 maxlen: 24
203.144.81.0/24 maxlen: 24
203.144.82.0/24 maxlen: 24
203.144.83.0/24 maxlen: 24
203.144.84.0/24 maxlen: 24
203.144.85.0/24 maxlen: 24
203.144.86.0/24 maxlen: 24
203.144.88.0/24 maxlen: 24
203.144.89.0/24 maxlen: 24
203.144.90.0/24 maxlen: 24
203.144.91.0/24 maxlen: 24
203.144.92.0/24 maxlen: 24
203.144.93.0/24 maxlen: 24
203.144.94.0/24 maxlen: 24
203.144.95.0/24 maxlen: 24
2401:4d80::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91509A4/serialNumber=0C099EB77B68D1A2DF5492C731B64D541F559B02
Validity
Not Before: May 23 09:55:11 2022 GMT
Not After : Oct 31 00:00:00 2022 GMT
Subject: CN=628b59fe-f252
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:37:28:03:6b:20:2f:69:fd:e3:55:ff:ca:e6:
bd:29:a4:b7:c2:c9:17:9d:31:b4:31:77:68:93:1e:
2c:43:2c:91:89:ed:1c:a9:18:74:6c:87:10:b0:bb:
73:d5:c1:09:be:d1:6d:d9:a4:8c:73:f5:68:61:f7:
33:cc:c1:7f:59:18:89:91:17:e4:fc:bd:ca:c9:9c:
aa:dd:7b:05:6f:47:e0:0a:7e:14:78:98:c4:d0:44:
15:31:70:3f:89:e1:1c:1e:41:28:58:09:ea:79:68:
93:b0:73:72:37:67:3f:d5:a5:08:ff:a2:14:cc:13:
0b:a3:2a:8f:f9:3a:41:0f:5d:7a:43:97:53:bf:a2:
66:f6:aa:26:ce:22:98:5d:1a:89:34:49:7c:9e:8f:
62:5a:43:af:58:2b:10:07:ef:0c:4e:dd:f0:e9:ef:
a1:52:48:24:82:8c:f1:1d:c0:7b:5c:be:b3:09:be:
78:50:f8:94:ac:65:69:85:47:a0:49:85:4d:0b:6c:
23:e3:aa:68:db:23:12:7c:37:18:1c:f4:5a:15:43:
f3:9a:1e:9b:92:33:1a:65:17:71:77:9c:ad:ab:c9:
7a:b2:17:3b:9e:99:97:2b:ed:4a:3f:3a:03:62:28:
35:b9:67:73:26:44:0e:cf:6f:ce:73:87:7d:12:ea:
6c:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:09:D7:27:39:23:C6:CE:EE:4B:7B:12:D5:54:4B:CA:CF:BB:FA:9D
X509v3 Authority Key Identifier:
keyid:0C:09:9E:B7:7B:68:D1:A2:DF:54:92:C7:31:B6:4D:54:1F:55:9B:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91509A4/DBAB936EDA7611ECA48FFC6CC4F9AE02/DAmet3to0aLfVJLHMbZNVB9VmwI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DAmet3to0aLfVJLHMbZNVB9VmwI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91509A4/DBAB936EDA7611ECA48FFC6CC4F9AE02/6F134834DA7E11ECBEE1D13BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.193.204.0/24
203.144.64.0-203.144.86.255
203.144.88.0/21
IPv6:
2401:4d80::/32
Signature Algorithm: sha256WithRSAEncryption
87:e9:14:36:44:84:18:75:2d:0d:a2:f8:a4:6a:bf:8b:08:ed:
6a:a9:16:d0:36:85:36:90:2f:9e:31:62:a5:0a:0e:c6:bd:d1:
31:9b:8c:42:4f:93:31:a3:c4:3d:a5:67:d6:38:88:b9:19:c8:
30:78:87:4d:85:18:b9:33:83:30:c0:c4:9c:0b:e0:a4:de:b2:
d5:91:e5:d5:6b:3d:3e:dd:7f:88:33:1c:fc:a7:14:51:b6:7b:
f0:fc:42:af:56:c9:22:92:6f:19:c9:6f:ce:71:f9:36:f5:e0:
2e:6f:59:fb:ba:dc:7a:64:9c:43:4c:cf:10:ec:3e:64:9b:cc:
41:7f:8e:e9:0e:74:f8:aa:0d:2d:1b:99:d4:e7:95:77:35:22:
99:61:8a:43:0e:cf:be:1c:8a:5d:4d:7d:eb:03:5b:ef:95:c3:
fa:eb:f2:5c:0c:d2:b2:96:91:cd:5d:5b:6b:30:64:70:60:65:
a4:05:45:f7:9a:a9:a4:43:3b:17:d1:2c:4c:66:ee:b9:03:48:
72:e8:7a:ab:9c:0a:0d:90:3a:a8:77:67:12:80:63:03:5b:1d:
4e:72:ca:53:a9:ee:2e:70:69:2d:2f:d2:0d:16:9f:31:1e:01:
d4:c0:b7:8c:42:79:a4:68:d4:08:0d:46:cb:da:1e:50:54:10:
0e:6b:a3:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:41 2023 by rpki-client on console-fra.rpki-client.org