Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9162EE1/752D42E88FD211EC948A937EC4F9AE02/7776C6A82C4511EE8187122AC4F9AE02.roa
File: 7776C6A82C4511EE8187122AC4F9AE02.roa (raw, json)
Hash identifier: zB5m5wcNdF6FXnS5lpU0BBxrc6qqUR+T1cG+MsIhZwg=
Subject key identifier: 27:2B:97:C1:04:71:56:F1:9A:B5:9E:03:76:F0:A4:14:36:14:A9:4C
Certificate issuer: /CN=A9162EE1/serialNumber=6076BD0BA4DB797A72A68FEFF9BFB558C44398B2
Certificate serial: 0269
Authority key identifier: 60:76:BD:0B:A4:DB:79:7A:72:A6:8F:EF:F9:BF:B5:58:C4:43:98:B2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YHa9C6TbeXpypo_v-b-1WMRDmLI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9162EE1/752D42E88FD211EC948A937EC4F9AE02/7776C6A82C4511EE8187122AC4F9AE02.roa
Signing time: Fri 28 Jul 2023 18:06:31 +0000
ROA not before: Fri 28 Jul 2023 18:06:31 +0000
ROA not after: Sat 30 Dec 2023 00:00:00 +0000
asID: 147049
IP address blocks: 103.173.150.0/23 maxlen: 23
2407:e8c0::/48 maxlen: 48
2407:e8c0:1::/48 maxlen: 48
2407:e8c0:2::/48 maxlen: 48
2407:e8c0:3::/48 maxlen: 48
2407:e8c0:4::/48 maxlen: 48
2407:e8c0:5::/48 maxlen: 48
2407:e8c0:6::/48 maxlen: 48
2407:e8c0:7::/48 maxlen: 48
2407:e8c0:8::/48 maxlen: 48
2407:e8c0:9::/48 maxlen: 48
2407:e8c0:a::/48 maxlen: 48
2407:e8c0:b::/48 maxlen: 48
2407:e8c0:c::/48 maxlen: 48
2407:e8c0:d::/48 maxlen: 48
2407:e8c0:e::/48 maxlen: 48
2407:e8c0:f::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 617 (0x269)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162EE1/serialNumber=6076BD0BA4DB797A72A68FEFF9BFB558C44398B2
Validity
Not Before: Jul 28 18:06:31 2023 GMT
Not After : Dec 30 00:00:00 2023 GMT
Subject: CN=64c403a7-899a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:17:11:5d:3c:ce:e9:11:c0:b3:61:8e:9e:f5:
50:d7:47:59:54:ac:a8:57:23:8a:81:67:2f:6c:70:
7a:6a:b9:a9:71:4a:e4:94:e2:6d:cb:3c:9f:d6:c3:
81:c1:f5:6a:c9:fb:b4:b1:c6:52:7b:5b:37:46:9e:
d0:d3:07:f3:72:00:03:96:53:2e:5e:fb:22:3b:4a:
98:96:3d:a8:ea:03:28:77:fe:79:eb:12:75:e2:a3:
da:e0:ad:f1:89:b0:02:f1:e5:71:45:fc:82:9f:b3:
f1:3b:af:38:5b:03:18:42:f3:e3:f3:bc:40:11:f2:
c9:56:a4:f5:fd:9f:ee:e9:6a:c9:6d:f4:f4:bd:9c:
19:54:58:e1:96:76:31:cb:38:08:ed:58:9c:d3:f2:
2b:b5:be:89:52:a4:1a:c7:99:3a:c2:0b:1f:7a:32:
1e:54:e1:87:59:ba:71:d1:dd:6d:3d:cd:3a:63:9f:
2f:ee:ab:99:05:68:3b:a0:05:49:1e:6c:db:0c:1d:
80:aa:98:6d:3f:89:2b:29:db:76:fc:55:5a:82:f3:
85:2d:32:a1:e4:21:cd:b6:29:db:53:39:83:a9:47:
65:92:cd:5a:61:83:a4:31:3c:30:a3:33:34:f6:c5:
d7:47:69:f7:a3:af:9a:fb:98:01:95:ab:76:bd:38:
69:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:2B:97:C1:04:71:56:F1:9A:B5:9E:03:76:F0:A4:14:36:14:A9:4C
X509v3 Authority Key Identifier:
keyid:60:76:BD:0B:A4:DB:79:7A:72:A6:8F:EF:F9:BF:B5:58:C4:43:98:B2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9162EE1/752D42E88FD211EC948A937EC4F9AE02/YHa9C6TbeXpypo_v-b-1WMRDmLI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YHa9C6TbeXpypo_v-b-1WMRDmLI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9162EE1/752D42E88FD211EC948A937EC4F9AE02/7776C6A82C4511EE8187122AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.173.150.0/23
IPv6:
2407:e8c0::/44
Signature Algorithm: sha256WithRSAEncryption
27:32:b2:f5:fe:39:9c:96:cc:9d:2f:9d:98:6f:6d:67:9e:72:
c7:a6:8c:0d:af:cf:ee:f3:91:d6:ae:bb:02:a1:44:ce:9e:9c:
fd:6e:f0:a3:de:1a:f7:bb:db:84:df:d3:73:0d:0f:ab:dd:51:
82:5e:09:2a:cf:37:5a:ad:de:34:1a:ef:42:28:38:f2:c7:ec:
62:81:41:92:22:b1:63:26:a5:d1:27:37:a1:38:43:42:a2:e3:
c3:40:41:b0:a8:b6:99:04:15:40:e0:c3:65:9e:09:76:bf:f1:
92:82:1f:f8:c6:6d:a3:55:fa:19:0d:49:0f:68:19:0f:f5:5e:
4e:1d:cf:b0:0b:8d:b6:c1:a5:23:d8:d7:10:7a:92:18:a8:e9:
68:d6:f3:a4:13:a2:3e:80:4c:80:3e:72:d5:58:9d:1f:2b:02:
5c:20:1b:3d:d3:48:14:01:13:68:d5:66:cf:1a:38:71:65:77:
e5:bd:38:0b:96:c4:4d:59:1e:5f:6d:da:0b:d2:e5:ca:ff:90:
28:75:44:ca:5f:b3:94:d8:27:de:b6:14:5a:81:a5:01:3c:c3:
ff:01:e3:e9:f3:6b:19:81:10:13:39:fe:6d:96:32:7d:fd:a1:
79:e2:5d:e0:56:33:e4:41:97:5b:71:d8:4b:c3:8a:3f:49:36:
f1:4c:22:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:09 2024 by rpki-client on console-fra.rpki-client.org