Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A916BCDF/F858344EE36D11E8956F3516C4F9AE02/051C9854E9B911E8B7734A26C4F9AE02.roa
File: 051C9854E9B911E8B7734A26C4F9AE02.roa (raw, json)
Hash identifier: 4oihZvuRP8gqVMgqUQ+AuWywIgejcYGa4XiEKzrHZMA=
Subject key identifier: 07:A1:E0:D8:19:59:48:D8:57:DF:B7:CF:C2:9E:7B:0C:1C:B9:D2:0D
Certificate issuer: /CN=A916BCDF/serialNumber=51AAAC7F6F58F747072C87EC2F4878EF1CB8F4CE
Certificate serial: 10AD
Authority key identifier: 51:AA:AC:7F:6F:58:F7:47:07:2C:87:EC:2F:48:78:EF:1C:B8:F4:CE
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Uaqsf29Y90cHLIfsL0h47xy49M4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916BCDF/F858344EE36D11E8956F3516C4F9AE02/051C9854E9B911E8B7734A26C4F9AE02.roa
Signing time: Fri 30 Jun 2023 16:36:44 +0000
ROA not before: Fri 30 Jun 2023 16:36:44 +0000
ROA not after: Sat 30 Dec 2023 00:00:00 +0000
asID: 20473
IP address blocks: 43.224.32.0/22 maxlen: 24
103.43.72.0/22 maxlen: 22
202.182.96.0/20 maxlen: 24
202.182.112.0/20 maxlen: 24
2401:c080:1000::/38 maxlen: 38
2401:c080:1400::/38 maxlen: 38
2401:c080:1800::/38 maxlen: 38
2401:c080:18fb::/48 maxlen: 48
2401:c080:1c00::/38 maxlen: 38
2401:c080:2000::/38 maxlen: 38
2401:c080:2400::/38 maxlen: 38
2401:c080:3000::/38 maxlen: 38
2401:c080:3400::/38 maxlen: 38
2401:c080:3800::/38 maxlen: 38
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4269 (0x10ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916BCDF/serialNumber=51AAAC7F6F58F747072C87EC2F4878EF1CB8F4CE
Validity
Not Before: Jun 30 16:36:44 2023 GMT
Not After : Dec 30 00:00:00 2023 GMT
Subject: CN=649f049b-4fad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:d5:de:3f:31:99:43:d9:b9:91:9b:c8:e1:2e:
30:6e:67:11:a0:50:92:31:fd:64:c5:6b:9a:ad:91:
31:86:99:f1:69:3e:8e:5c:e8:ac:ca:7c:ac:e8:4a:
e4:79:ad:bb:0f:1d:fc:b7:6d:7c:c2:c4:36:8a:04:
a9:91:a8:e7:ba:4f:3d:0a:0f:0a:1c:eb:36:82:61:
49:93:a9:0e:9c:e3:03:29:53:af:4d:c6:75:81:10:
21:42:51:8f:18:99:b2:b9:de:69:2e:62:7d:9a:b1:
dd:22:c4:d6:2b:f8:62:f9:57:0f:03:2f:2d:e5:53:
c0:0b:c5:34:fb:5e:4d:4a:bc:46:de:da:30:c9:e9:
08:17:b6:97:6c:62:a4:dd:53:df:1e:33:8e:fe:77:
86:0d:e1:ea:50:a8:74:9e:24:2f:c2:94:02:ac:27:
67:ff:2d:f6:cf:ab:ee:85:90:ab:83:25:68:79:6a:
c7:fc:fb:04:42:71:1c:ea:9f:d1:ff:13:7b:64:fc:
f6:a8:e7:f2:97:60:1c:76:d4:9e:68:de:a6:65:0b:
51:d1:89:a0:53:59:98:ba:d4:98:ff:e4:24:ce:78:
bc:81:9c:bb:4a:9a:8c:45:10:14:6b:be:20:88:36:
b8:58:dd:ad:21:02:04:e9:da:30:21:ca:b7:99:5c:
46:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:A1:E0:D8:19:59:48:D8:57:DF:B7:CF:C2:9E:7B:0C:1C:B9:D2:0D
X509v3 Authority Key Identifier:
keyid:51:AA:AC:7F:6F:58:F7:47:07:2C:87:EC:2F:48:78:EF:1C:B8:F4:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916BCDF/F858344EE36D11E8956F3516C4F9AE02/Uaqsf29Y90cHLIfsL0h47xy49M4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Uaqsf29Y90cHLIfsL0h47xy49M4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BCDF/F858344EE36D11E8956F3516C4F9AE02/051C9854E9B911E8B7734A26C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.224.32.0/22
103.43.72.0/22
202.182.96.0/19
IPv6:
2401:c080:1000::-2401:c080:27ff:ffff:ffff:ffff:ffff:ffff
2401:c080:3000::-2401:c080:3bff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
85:c6:14:aa:de:da:5b:2a:e7:74:b7:63:1f:d4:8c:c0:46:ca:
1f:12:2d:87:97:cb:cc:ab:b5:bd:e9:2f:43:b4:32:5f:4f:1f:
e2:34:0f:a6:94:2c:a8:ee:70:69:d9:bd:7d:bc:06:0a:aa:1d:
62:15:99:1c:7f:81:33:9f:6e:dc:46:78:71:91:0d:ef:b9:a3:
77:9e:94:db:44:e0:41:57:12:9e:3b:5b:b4:d1:eb:ae:13:ac:
53:00:82:ef:25:89:29:9f:04:29:ab:7e:3e:af:87:0f:b3:36:
f8:91:44:2f:f9:59:0a:33:4c:74:fb:d2:48:59:76:ee:8c:42:
c4:6a:70:f9:6b:61:73:a7:32:8c:9f:33:b1:f2:d2:c6:2a:2a:
41:95:09:15:6e:5e:6b:c8:37:76:6b:be:15:46:80:19:3a:2e:
de:4f:05:cc:6c:66:d3:29:a0:f6:30:f6:37:2b:d2:1d:9b:e7:
8e:f9:92:57:55:4c:1b:8d:7e:a2:60:66:97:12:e0:40:80:fc:
90:e4:a9:b7:9f:24:da:7a:ab:f0:18:ba:19:8d:da:8c:f3:39:
58:7a:61:15:e8:64:7e:4b:f6:fb:40:6a:0a:d8:63:4f:fa:e2:
ef:5e:37:72:fb:72:bf:cf:6a:c8:df:b2:42:8c:3e:32:de:32:
f7:7d:f1:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:20 2024 by rpki-client on console-ams.rpki-client.org