Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915F1EF/D7B310062EF811EA965C4E11C4F9AE02/BB76415C6F8C11ECA833186BC4F9AE02.roa
File: BB76415C6F8C11ECA833186BC4F9AE02.roa (raw, json)
Hash identifier: E5tfmDsTHKT7c0fYeeRbBOQQYHD/s02YQ5leaONdN0w=
Subject key identifier: 07:8C:99:CE:E0:E1:27:AD:53:DB:27:94:14:BE:72:79:CF:43:BC:70
Certificate issuer: /CN=A915F1EF/serialNumber=FC2ABD4F9707FD41CFBBA3A3095CDF436DFD0402
Certificate serial: 0782
Authority key identifier: FC:2A:BD:4F:97:07:FD:41:CF:BB:A3:A3:09:5C:DF:43:6D:FD:04:02
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Cq9T5cH_UHPu6OjCVzfQ239BAI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915F1EF/D7B310062EF811EA965C4E11C4F9AE02/BB76415C6F8C11ECA833186BC4F9AE02.roa
Signing time: Sat 08 Jan 2022 07:17:00 +0000
ROA not before: Sat 08 Jan 2022 07:17:00 +0000
ROA not after: Tue 31 Jan 2023 00:00:00 +0000
asID: 139769
IP address blocks: 103.145.10.0/23 maxlen: 23
103.145.10.0/24 maxlen: 24
103.145.11.0/24 maxlen: 24
2001:df1:ec80::/48 maxlen: 48
2001:df1:ec80::/52 maxlen: 52
2001:df1:ec80:1000::/52 maxlen: 52
2001:df1:ec80:2000::/52 maxlen: 52
2001:df1:ec80:3000::/52 maxlen: 52
2001:df1:ec80:4000::/52 maxlen: 52
2001:df1:ec80:5000::/52 maxlen: 52
2001:df1:ec80:6000::/52 maxlen: 52
2001:df1:ec80:7000::/52 maxlen: 52
2001:df1:ec80:8000::/52 maxlen: 52
2001:df1:ec80:9000::/52 maxlen: 52
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1922 (0x782)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915F1EF/serialNumber=FC2ABD4F9707FD41CFBBA3A3095CDF436DFD0402
Validity
Not Before: Jan 8 07:17:00 2022 GMT
Not After : Jan 31 00:00:00 2023 GMT
Subject: CN=61d93a6c-9c17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:80:ab:7f:48:a9:01:b7:4a:8e:ec:ff:7e:fb:
1a:91:d3:53:9a:5a:bf:97:a5:b1:30:1c:11:33:be:
91:5e:d5:c0:95:ed:e8:10:68:eb:e1:78:53:1b:08:
c4:a5:4b:1b:1f:4b:e6:84:f3:16:ce:40:5c:4b:92:
79:85:9b:23:03:fe:a5:cd:fe:7b:20:49:f0:fa:b8:
00:20:72:82:34:9a:46:9b:38:9a:ff:89:19:9e:5f:
fb:f1:64:b0:aa:02:2d:26:54:e1:c1:be:ef:c2:9d:
42:d9:2d:23:1a:14:13:1e:33:1d:86:d5:61:9c:71:
f2:2f:2b:06:ab:29:23:a5:bf:81:49:ea:fc:a0:59:
32:68:29:7c:ef:dd:d2:84:d3:05:72:d6:2b:65:76:
65:da:59:09:32:dc:10:23:d8:42:e4:35:aa:95:5b:
e5:30:ee:f0:43:04:07:19:43:5e:31:35:b2:2b:5c:
69:28:c6:d9:7a:68:33:d1:3b:60:40:2b:dc:ad:b1:
92:68:7f:fa:62:49:6c:cc:46:57:77:98:28:39:be:
a1:fc:74:50:8b:ca:49:56:a0:65:87:f4:9e:09:3a:
bf:b7:4e:46:9f:6b:3c:89:a3:81:ff:78:16:93:6f:
97:ed:49:90:21:62:7e:2f:40:a6:5d:c8:5c:92:0c:
70:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:8C:99:CE:E0:E1:27:AD:53:DB:27:94:14:BE:72:79:CF:43:BC:70
X509v3 Authority Key Identifier:
keyid:FC:2A:BD:4F:97:07:FD:41:CF:BB:A3:A3:09:5C:DF:43:6D:FD:04:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915F1EF/D7B310062EF811EA965C4E11C4F9AE02/_Cq9T5cH_UHPu6OjCVzfQ239BAI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Cq9T5cH_UHPu6OjCVzfQ239BAI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F1EF/D7B310062EF811EA965C4E11C4F9AE02/BB76415C6F8C11ECA833186BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.145.10.0/23
IPv6:
2001:df1:ec80::/48
Signature Algorithm: sha256WithRSAEncryption
1c:ce:04:5d:9b:bd:31:fa:5c:3b:80:29:08:22:3c:01:9e:84:
d2:bc:e3:fc:0c:7c:07:0d:26:6c:d1:e5:b4:0d:4c:3b:9d:8d:
10:33:d9:fa:21:60:5b:de:bf:64:55:81:a1:7d:dd:43:39:27:
8f:e8:39:63:78:e2:fe:f3:44:34:e4:80:9c:c3:28:c2:aa:ba:
76:98:0a:1d:72:47:86:95:9a:3a:b8:d5:00:74:95:9d:30:4d:
ec:a3:cc:14:82:43:dd:00:9c:aa:66:30:1b:26:03:79:33:88:
ce:c5:75:fe:58:05:b0:db:79:20:d5:61:f3:63:3d:39:10:22:
23:0f:29:c7:23:0a:bb:f6:07:53:64:a9:15:5f:dc:62:65:8f:
e5:fe:f6:63:16:9b:47:e6:84:1d:29:6c:df:6f:b0:03:c5:1a:
78:cd:23:13:27:8f:e4:a9:9f:78:e4:68:47:c9:69:c7:77:bb:
8f:2c:fc:d9:35:c9:ec:56:21:18:a4:43:f2:a6:1c:84:71:61:
fa:24:14:89:d9:48:49:5f:f9:e3:a2:6c:e8:9f:79:27:32:c6:
d0:21:95:12:12:1f:bf:5a:4a:4b:a8:9d:f8:5f:27:8f:fb:08:
f8:c8:41:b1:dd:be:32:f1:ca:8f:ba:5b:b4:81:1c:cf:31:b8:
96:64:9b:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:44 2023 by rpki-client on console-fra.rpki-client.org