Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91775B7/08A49BD21DA211E29364959408B02CD2/1A8B36D29F7311E7B6E1627FC4F9AE02.roa
File: 1A8B36D29F7311E7B6E1627FC4F9AE02.roa (raw, json)
Hash identifier: uHh+DZCr/o6daZiWDO8kZjr1qQmlP/Kzax+ClvD3vQ8=
Subject key identifier: 11:4B:26:29:C6:37:C8:5F:F0:38:D5:53:DF:59:28:6F:33:82:FC:B2
Certificate issuer: /CN=A91775B7/serialNumber=7A8F8E6A0E58F575FC7DE1CD838479D7F73FE279
Certificate serial: 2FBF
Authority key identifier: 7A:8F:8E:6A:0E:58:F5:75:FC:7D:E1:CD:83:84:79:D7:F7:3F:E2:79
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eo-Oag5Y9XX8feHNg4R51_c_4nk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91775B7/08A49BD21DA211E29364959408B02CD2/1A8B36D29F7311E7B6E1627FC4F9AE02.roa
Signing time: Sat 02 Oct 2021 15:40:54 +0000
ROA not before: Sat 02 Oct 2021 15:40:54 +0000
ROA not after: Fri 30 Dec 2022 00:00:00 +0000
asID: 45910
IP address blocks: 103.11.228.0/24 maxlen: 24
103.11.229.0/24 maxlen: 24
103.11.230.0/24 maxlen: 24
103.11.231.0/24 maxlen: 24
180.188.192.0/24 maxlen: 24
180.188.193.0/24 maxlen: 24
180.188.194.0/24 maxlen: 24
180.188.195.0/24 maxlen: 24
182.173.76.0/24 maxlen: 24
182.173.77.0/24 maxlen: 24
182.173.78.0/24 maxlen: 24
182.173.79.0/24 maxlen: 24
2404:fc00:1::/48 maxlen: 48
2404:fc00:2::/48 maxlen: 48
2404:fc00:3::/48 maxlen: 48
2404:fc00:4::/48 maxlen: 48
2404:fc00:1001::/48 maxlen: 48
2404:fc00:1002::/48 maxlen: 48
2404:fc00:1003::/48 maxlen: 48
2404:fc00:1004::/48 maxlen: 48
2404:fc00:1005::/48 maxlen: 48
2404:fc00:1006::/48 maxlen: 48
2404:fc00:1007::/48 maxlen: 48
2404:fc00:1008::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12223 (0x2fbf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91775B7/serialNumber=7A8F8E6A0E58F575FC7DE1CD838479D7F73FE279
Validity
Not Before: Oct 2 15:40:54 2021 GMT
Not After : Dec 30 00:00:00 2022 GMT
Subject: CN=61587d86-4f69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:6e:d9:17:ab:5a:17:bd:0f:a8:49:ec:3a:96:
e4:2c:70:33:4e:3d:73:8c:53:a8:8b:10:5b:f0:d7:
7c:01:d3:4e:15:30:74:c4:9d:ef:bd:f6:fd:4b:b7:
ad:07:42:ea:4e:5d:eb:7f:a5:43:12:32:17:1e:1e:
90:fb:0a:c9:fb:13:83:ef:75:06:fd:53:3e:ca:43:
cb:08:df:d1:90:c6:ad:e2:a7:f4:87:e9:a6:af:d3:
f7:3f:74:e1:0b:9e:89:4e:f0:37:b7:88:cc:fa:3d:
c5:4f:07:80:9b:81:f0:89:e1:66:a2:64:fb:ed:52:
48:13:6e:76:d8:e6:01:d2:c3:78:ca:7a:34:7d:d8:
95:45:95:ca:7d:5f:f0:98:83:6d:8d:6d:08:47:49:
f6:3d:79:1d:65:20:49:f7:47:54:7f:e9:7d:ca:91:
11:d0:6d:63:c1:93:28:ef:94:c6:39:01:e9:b5:e9:
9d:e5:c2:46:8d:59:21:f8:f2:d6:5e:e3:68:bf:e5:
95:06:26:1c:07:ea:48:ed:5a:4a:f1:f6:3b:cf:a7:
15:8f:86:a4:2e:1e:fd:15:82:ad:c3:72:d9:e0:f2:
e4:47:f2:6d:1b:07:1a:a2:e1:bd:ea:f9:bb:97:b6:
19:51:e8:f0:1b:91:25:4b:84:0a:f4:9f:22:0c:df:
51:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:4B:26:29:C6:37:C8:5F:F0:38:D5:53:DF:59:28:6F:33:82:FC:B2
X509v3 Authority Key Identifier:
keyid:7A:8F:8E:6A:0E:58:F5:75:FC:7D:E1:CD:83:84:79:D7:F7:3F:E2:79
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91775B7/08A49BD21DA211E29364959408B02CD2/eo-Oag5Y9XX8feHNg4R51_c_4nk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eo-Oag5Y9XX8feHNg4R51_c_4nk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91775B7/08A49BD21DA211E29364959408B02CD2/1A8B36D29F7311E7B6E1627FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.11.228.0/22
180.188.192.0/22
182.173.76.0/22
IPv6:
2404:fc00:1::-2404:fc00:4:ffff:ffff:ffff:ffff:ffff
2404:fc00:1001::-2404:fc00:1008:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
16:85:2d:05:ad:7b:8f:49:f1:89:22:dd:29:e7:17:36:0d:a6:
af:48:9d:b8:16:fe:51:54:4c:7c:ab:27:70:81:4a:44:59:08:
c9:53:41:b9:b0:51:27:f3:ac:81:26:b5:97:a3:2a:0d:01:96:
c6:7a:95:9f:cd:96:01:60:48:3e:ef:36:2c:3d:a4:70:fc:1a:
04:d4:76:48:6f:3a:65:f2:4c:e7:27:98:aa:b4:d3:dc:a6:e5:
4a:5b:fd:ac:5a:07:07:af:ee:72:5a:64:ed:17:66:2c:4b:d8:
53:80:7c:49:ca:26:2e:9c:e7:a4:2b:3f:6e:ea:b3:8c:00:d1:
54:1f:93:7c:6f:d8:d8:86:c4:72:ed:c1:e2:76:f2:a7:9f:d0:
72:43:52:70:a7:1f:fc:67:52:b6:78:6b:19:b9:39:35:21:57:
a0:59:51:29:89:3a:78:b4:a4:e6:4d:2d:8e:65:97:40:b4:a1:
c3:a6:09:42:9c:47:df:b1:ec:a9:a3:72:34:04:17:84:4a:ff:
d7:2a:1f:da:5d:53:e7:51:78:70:7f:81:bc:f4:a5:70:cd:ea:
21:18:92:5e:bb:28:2d:f2:dd:29:9e:d6:31:c2:de:95:bd:92:
f9:fa:f6:15:bd:b5:5d:11:12:d6:dc:45:3c:cb:eb:e5:2c:a8:
26:cb:8b:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:44 2023 by rpki-client on console-ams.rpki-client.org