Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91747E1/CE3472DE4CC811EAA058EC14C4F9AE02/7ED913F6560311EDA723F533C4F9AE02.roa
File: 7ED913F6560311EDA723F533C4F9AE02.roa (raw, json)
Hash identifier: sqE207i6RjrVWTI4bJR7AtXAdOoLbBYDV3ryRabzsLg=
Subject key identifier: C5:AD:47:75:AC:6A:50:7F:16:8D:F8:C6:C1:06:5D:DD:A4:78:24:11
Certificate issuer: /CN=A91747E1/serialNumber=7AC6EFFB04C2B580F5A56B6A746CDFE053AF6A9E
Certificate serial: 08FA
Authority key identifier: 7A:C6:EF:FB:04:C2:B5:80:F5:A5:6B:6A:74:6C:DF:E0:53:AF:6A:9E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/esbv-wTCtYD1pWtqdGzf4FOvap4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91747E1/CE3472DE4CC811EAA058EC14C4F9AE02/7ED913F6560311EDA723F533C4F9AE02.roa
Signing time: Thu 27 Oct 2022 14:47:36 +0000
ROA not before: Thu 27 Oct 2022 14:47:36 +0000
ROA not after: Tue 31 Jan 2023 00:00:00 +0000
asID: 138362
IP address blocks: 103.131.144.0/22 maxlen: 24
2403:cc40::/32 maxlen: 36
2403:cc40:1::/48 maxlen: 48
2403:cc40:1000::/37 maxlen: 38
2403:cc40:1000::/39 maxlen: 40
2403:cc40:1200::/40 maxlen: 40
2403:cc40:1300::/40 maxlen: 40
2403:cc40:1400::/38 maxlen: 40
2403:cc40:1800::/37 maxlen: 38
2403:cc40:1800::/40 maxlen: 40
2403:cc40:1900::/40 maxlen: 40
2403:cc40:1a00::/40 maxlen: 40
2403:cc40:1b00::/40 maxlen: 40
2403:cc40:1c00::/40 maxlen: 40
2403:cc40:1d00::/40 maxlen: 40
2403:cc40:1e00::/39 maxlen: 40
2403:cc40:2000::/37 maxlen: 38
2403:cc40:2000::/40 maxlen: 40
2403:cc40:2100::/40 maxlen: 40
2403:cc40:2200::/40 maxlen: 40
2403:cc40:2300::/40 maxlen: 40
2403:cc40:2400::/40 maxlen: 40
2403:cc40:2500::/40 maxlen: 40
2403:cc40:2600::/40 maxlen: 40
2403:cc40:2700::/40 maxlen: 40
2403:cc40:2800::/37 maxlen: 40
2403:cc40:3000::/37 maxlen: 40
2403:cc40:3800::/37 maxlen: 40
2403:cc40:ff00::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2298 (0x8fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91747E1/serialNumber=7AC6EFFB04C2B580F5A56B6A746CDFE053AF6A9E
Validity
Not Before: Oct 27 14:47:36 2022 GMT
Not After : Jan 31 00:00:00 2023 GMT
Subject: CN=635a9a07-6eed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:fd:62:30:7e:42:dc:db:35:8c:3a:9f:72:71:
b8:8c:d5:10:9e:43:05:04:dc:ae:34:61:c9:ca:f8:
40:20:16:75:be:87:5a:b3:ef:5c:c8:db:ff:45:0e:
3f:bd:ae:25:59:0d:9c:31:c7:41:9f:55:db:aa:12:
f7:41:0f:31:59:78:50:b9:1e:23:a2:ab:9c:db:a5:
74:f1:b1:92:7d:58:96:17:df:fc:c8:ab:79:c4:e0:
9d:71:18:39:11:62:95:8e:43:69:4d:9b:f9:b7:cf:
2c:86:da:00:44:60:7d:e1:a2:40:d3:9b:04:79:cd:
2a:e4:78:0f:0f:c5:c9:cf:b1:36:16:97:81:d1:94:
65:7e:53:83:ab:71:ea:f4:98:97:59:10:76:3f:95:
88:a1:82:34:61:58:35:67:93:ed:1a:7d:c8:3f:09:
2c:41:13:9b:78:65:e0:5a:f5:eb:89:db:3f:df:8e:
17:1f:90:3e:ec:ca:a9:45:9e:c5:79:95:66:0e:98:
07:79:42:c1:e0:a2:7b:8f:b7:d4:3a:0f:35:43:4b:
ae:92:47:4b:c7:98:6d:c8:cf:a9:9a:dd:91:7b:78:
90:f0:06:10:c8:0b:c2:76:29:c2:84:d1:13:c0:45:
4b:e7:7f:0b:91:8e:8c:64:18:8b:d9:9d:da:0b:01:
4b:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:AD:47:75:AC:6A:50:7F:16:8D:F8:C6:C1:06:5D:DD:A4:78:24:11
X509v3 Authority Key Identifier:
keyid:7A:C6:EF:FB:04:C2:B5:80:F5:A5:6B:6A:74:6C:DF:E0:53:AF:6A:9E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91747E1/CE3472DE4CC811EAA058EC14C4F9AE02/esbv-wTCtYD1pWtqdGzf4FOvap4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/esbv-wTCtYD1pWtqdGzf4FOvap4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91747E1/CE3472DE4CC811EAA058EC14C4F9AE02/7ED913F6560311EDA723F533C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.131.144.0/22
IPv6:
2403:cc40::/32
Signature Algorithm: sha256WithRSAEncryption
1c:84:6c:f4:e6:b5:50:ee:76:23:a3:04:46:91:85:89:ff:20:
ea:8b:e4:db:e2:44:6a:ec:4f:71:78:f0:3c:4b:9a:5a:13:7e:
38:f5:f4:1a:b3:a4:de:34:57:b9:c5:17:f3:c1:9b:0f:9e:91:
ba:ad:bd:2f:6f:de:76:a8:a0:fa:af:84:84:dc:c0:cd:e4:c3:
3f:e2:c9:a1:b2:47:ff:b0:9a:8c:41:a7:e4:8c:bc:31:97:0b:
44:1c:3d:86:89:b4:82:4f:97:2a:b5:13:88:80:21:6c:d9:9f:
e4:bf:d0:74:d3:e1:35:ef:16:04:74:7a:8f:e7:6a:44:e7:fb:
1b:ba:ac:28:59:6d:91:73:d3:11:5b:b8:52:be:fd:94:f5:ea:
4d:f3:7c:02:21:6d:e8:f1:23:74:c9:65:23:7b:66:4a:bb:00:
5e:bf:86:c4:89:46:1c:fc:af:68:70:ae:f6:a4:7e:45:07:8e:
da:33:b0:03:93:c1:8c:8e:78:5b:53:9a:ac:eb:35:15:36:3f:
bf:7c:5b:22:08:a3:60:9a:59:6c:d6:3b:37:a5:67:f2:96:81:
73:ef:f0:fe:80:b3:ec:a7:a8:96:af:32:4b:0c:1f:34:d1:dd:
69:32:0b:d1:41:71:2d:32:5f:ed:ba:f6:ff:91:23:8e:02:2f:
d4:80:4b:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:44 2023 by rpki-client on console-ams.rpki-client.org