Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9153646/6B8EFA5AFF9811E987C80A6AC4F9AE02/D3FF48AA039C11ED8AD56517C4F9AE02.roa
File: D3FF48AA039C11ED8AD56517C4F9AE02.roa (raw, json)
Hash identifier: /p1HnPFScW3iLxV+wWIPuTRy8qCg+CrOxmbW00Tc8I0=
Subject key identifier: F0:2C:BB:B4:C4:B9:E4:F4:04:34:95:07:79:A9:51:70:99:19:BB:2E
Certificate issuer: /CN=A9153646/serialNumber=3492EFFE9622B1FFF881597003763C1BA24A1E06
Certificate serial: 0508
Authority key identifier: 34:92:EF:FE:96:22:B1:FF:F8:81:59:70:03:76:3C:1B:A2:4A:1E:06
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NJLv_pYisf_4gVlwA3Y8G6JKHgY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9153646/6B8EFA5AFF9811E987C80A6AC4F9AE02/D3FF48AA039C11ED8AD56517C4F9AE02.roa
Signing time: Sun 22 Jan 2023 09:06:34 +0000
ROA not before: Sun 22 Jan 2023 09:06:34 +0000
ROA not after: Wed 31 Jan 2024 00:00:00 +0000
asID: 64074
IP address blocks: 103.203.176.0/24 maxlen: 24
103.203.179.0/24 maxlen: 24
223.29.212.0/24 maxlen: 24
223.29.214.0/24 maxlen: 24
223.29.215.0/24 maxlen: 24
2401:b8c0::/32 maxlen: 32
2401:b8c0::/48 maxlen: 48
2401:b8c0:1::/48 maxlen: 48
2401:b8c0:2::/48 maxlen: 48
2401:b8c0:3::/48 maxlen: 48
2401:b8c0:4::/48 maxlen: 48
2401:b8c0:5::/48 maxlen: 48
2401:b8c0:6::/48 maxlen: 48
2401:b8c0:7::/48 maxlen: 48
2401:b8c0:8::/48 maxlen: 48
2401:b8c0:9::/48 maxlen: 48
2401:b8c0:b::/48 maxlen: 48
2401:b8c0:c::/48 maxlen: 48
2401:b8c0:e::/48 maxlen: 48
2401:b8c0:f::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1288 (0x508)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9153646/serialNumber=3492EFFE9622B1FFF881597003763C1BA24A1E06
Validity
Not Before: Jan 22 09:06:34 2023 GMT
Not After : Jan 31 00:00:00 2024 GMT
Subject: CN=63ccfc99-4886
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:7d:d0:4a:bb:7c:25:25:1e:6f:0a:6d:11:09:
7b:47:9c:14:b2:23:30:17:cb:af:60:89:9a:e2:f7:
22:26:93:b5:16:34:77:f2:64:3f:2c:72:ca:78:e0:
02:8d:2f:39:d2:b8:16:f6:08:20:92:c9:33:0f:13:
5a:a6:33:38:2c:57:1f:5d:5e:90:17:35:bc:b8:57:
62:de:ae:1a:7f:1c:4e:28:6d:d4:ca:db:9b:29:9f:
61:0b:4b:ea:b2:08:ba:ee:be:98:1d:52:33:bb:88:
94:1d:87:ec:a3:1c:52:a8:80:61:0c:b1:55:af:b3:
f6:2e:5c:18:22:5e:ac:49:98:7f:41:0e:f4:c0:0f:
cb:0f:ac:94:3d:8f:08:72:56:9e:5c:ad:02:90:76:
5b:28:a3:6f:1f:b9:0b:4a:55:0d:8f:c0:21:92:71:
70:7e:9d:4e:92:0f:67:1a:69:3c:79:0a:d7:22:32:
bb:62:b2:19:cf:04:34:f7:f4:35:51:7a:39:97:e9:
a0:9e:db:4a:9b:71:d4:cc:bd:42:d6:4f:16:12:98:
1b:1d:5e:e6:c4:e0:ad:49:5c:1a:3e:96:a1:9a:5e:
13:90:28:2c:ca:33:ea:75:7d:30:b9:e0:e6:f6:ce:
87:25:8c:6a:95:ca:e1:94:22:80:02:3e:09:ca:b6:
92:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:2C:BB:B4:C4:B9:E4:F4:04:34:95:07:79:A9:51:70:99:19:BB:2E
X509v3 Authority Key Identifier:
keyid:34:92:EF:FE:96:22:B1:FF:F8:81:59:70:03:76:3C:1B:A2:4A:1E:06
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9153646/6B8EFA5AFF9811E987C80A6AC4F9AE02/NJLv_pYisf_4gVlwA3Y8G6JKHgY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NJLv_pYisf_4gVlwA3Y8G6JKHgY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153646/6B8EFA5AFF9811E987C80A6AC4F9AE02/D3FF48AA039C11ED8AD56517C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.203.176.0/24
103.203.179.0/24
223.29.212.0/24
223.29.214.0/23
IPv6:
2401:b8c0::/32
Signature Algorithm: sha256WithRSAEncryption
9e:6c:da:84:5f:28:f5:54:68:d2:5e:ac:98:48:51:58:78:86:
e2:90:68:31:6e:37:32:d8:9f:d1:7d:95:1b:c0:a3:81:97:34:
cb:46:75:6f:5f:ab:cc:ed:3a:76:7d:25:f3:1c:7f:fe:96:35:
cd:a5:b0:16:20:36:c4:39:3f:cb:85:6e:57:eb:5b:c4:5a:98:
f0:bd:c3:4b:f8:99:98:b6:bc:fe:66:3a:cd:9e:e3:f0:e9:79:
f0:80:36:b9:c0:49:3a:07:1a:eb:4e:35:92:ad:f3:92:0a:ca:
bb:4d:4e:51:66:82:89:bf:5f:98:5b:0d:b4:c5:f9:e8:e4:90:
bd:79:f4:fc:ab:02:58:7f:5c:a6:f2:5f:3a:17:6c:68:a5:5a:
ab:22:15:5a:79:73:9f:e6:43:81:c6:42:66:e6:11:b6:18:5f:
27:fd:f5:91:29:15:08:47:38:d0:4b:42:55:34:cf:50:5f:d0:
69:26:cd:d5:d3:76:c0:66:4e:85:73:a4:d9:f7:02:46:cb:e5:
4c:76:5d:df:f8:6d:9a:28:67:96:c1:bc:30:95:c4:28:1e:16:
4b:eb:4d:48:83:9c:ed:20:ee:c8:35:bd:e3:8c:70:fa:72:84:
65:de:6a:3c:02:a2:74:8a:ad:54:e4:23:28:bd:14:56:20:95:
79:8c:a3:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:06 2024 by rpki-client on console-fra.rpki-client.org