Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9182FBC/A335B258FCE411E890FC1E37C4F9AE02/B2343BFA84C711EA9030D685C4F9AE02.roa
File: B2343BFA84C711EA9030D685C4F9AE02.roa (raw, json)
Hash identifier: 96w9rgdxnbwDCNH55zafzRsiByrOBvRXLS6/qB6FPWY=
Subject key identifier: 50:A7:18:E4:62:CE:35:B1:B1:3B:80:99:A8:8F:13:50:CB:B6:C8:40
Certificate issuer: /CN=A9182FBC/serialNumber=98B23CBAB184DAB1AD00D1000B820C9B21A433EC
Certificate serial: 0B58
Authority key identifier: 98:B2:3C:BA:B1:84:DA:B1:AD:00:D1:00:0B:82:0C:9B:21:A4:33:EC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mLI8urGE2rGtANEAC4IMmyGkM-w.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9182FBC/A335B258FCE411E890FC1E37C4F9AE02/B2343BFA84C711EA9030D685C4F9AE02.roa
Signing time: Wed 31 Mar 2021 18:33:27 +0000
ROA not before: Wed 31 Mar 2021 18:33:27 +0000
ROA not after: Sun 01 May 2022 00:00:00 +0000
asID: 135023
IP address blocks: 103.206.32.0/22 maxlen: 23
103.206.32.0/24 maxlen: 24
103.206.33.0/24 maxlen: 24
103.206.35.0/24 maxlen: 24
182.161.56.0/22 maxlen: 24
2402:9740::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2904 (0xb58)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9182FBC/serialNumber=98B23CBAB184DAB1AD00D1000B820C9B21A433EC
Validity
Not Before: Mar 31 18:33:27 2021 GMT
Not After : May 1 00:00:00 2022 GMT
Subject: CN=6064c077-f5ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:0c:bc:e6:57:e9:c2:b4:df:23:bc:ab:66:0c:
f7:3d:7b:53:cd:ee:bd:84:ef:2f:50:d1:ef:48:54:
84:8a:15:35:e7:d5:d9:51:30:ca:42:85:6a:84:12:
4a:11:35:d6:77:0e:26:0e:89:c0:68:f7:58:00:6e:
48:b5:e4:8f:b1:61:4a:69:84:36:50:bc:b5:f2:15:
5b:2b:ce:79:72:cc:74:39:c7:f0:bd:11:2e:7f:b4:
a1:8f:c5:1e:5b:da:8a:2e:4c:b1:02:11:5a:33:ab:
b6:3c:f5:27:09:7e:5e:e0:03:ed:d5:8d:8a:6d:93:
a1:ad:71:c5:72:b7:11:76:6b:b9:12:59:d8:2b:25:
76:72:f2:c8:bc:0a:2d:03:31:01:c2:8f:bd:3c:38:
9d:4f:18:6e:6b:38:8e:a4:d3:ee:97:dd:dc:df:27:
08:19:a9:7f:4c:08:68:38:58:36:d3:81:2e:7b:0a:
7e:7f:ab:0a:a5:ad:b8:a7:79:e1:e0:98:c4:c9:a6:
a0:bf:cd:8a:34:d4:66:72:4b:94:9a:f6:a2:0a:bd:
74:2e:eb:e4:7a:c8:c0:44:de:f1:20:5c:23:cf:49:
02:a7:c1:37:1d:9e:f0:40:cc:76:0b:3d:c2:21:da:
43:5f:60:23:d7:e7:b2:33:36:1a:eb:34:2c:bd:96:
fc:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:A7:18:E4:62:CE:35:B1:B1:3B:80:99:A8:8F:13:50:CB:B6:C8:40
X509v3 Authority Key Identifier:
keyid:98:B2:3C:BA:B1:84:DA:B1:AD:00:D1:00:0B:82:0C:9B:21:A4:33:EC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9182FBC/A335B258FCE411E890FC1E37C4F9AE02/mLI8urGE2rGtANEAC4IMmyGkM-w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mLI8urGE2rGtANEAC4IMmyGkM-w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182FBC/A335B258FCE411E890FC1E37C4F9AE02/B2343BFA84C711EA9030D685C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.206.32.0/22
182.161.56.0/22
IPv6:
2402:9740::/32
Signature Algorithm: sha256WithRSAEncryption
bd:77:25:12:14:5b:b4:73:dc:ea:7a:eb:94:13:af:e7:9c:3a:
61:da:98:31:41:2e:c4:49:7b:48:bd:5b:11:fd:5e:81:fd:ec:
77:a7:86:99:1b:3b:f2:2a:6f:7f:c6:85:af:40:d2:48:36:c6:
ae:90:74:ff:97:d3:48:bb:d3:59:1d:25:09:18:df:1f:c7:a4:
10:52:c1:40:74:22:73:82:da:c9:80:29:4b:31:e3:08:68:b7:
36:4c:db:b2:11:73:f4:f0:a3:35:a0:08:01:24:82:bb:6a:92:
5b:33:cb:17:f4:1f:52:dd:a9:d8:9f:f5:27:85:d6:9d:40:9b:
9a:08:44:4e:cb:41:05:dc:80:55:7f:d8:ec:37:d5:cd:48:ef:
6a:22:75:25:3e:24:61:7c:de:9f:0c:81:a1:5a:12:fb:6c:f7:
1e:c0:a5:29:f4:5d:6b:06:2c:f9:5d:78:4a:c4:0f:89:d2:ff:
da:a5:a8:34:ae:b4:b1:b9:69:61:60:a4:26:51:f7:e8:34:3c:
1c:5b:f3:50:b5:23:e3:0d:e6:3a:32:dc:c4:3a:a4:81:b1:38:
95:13:4d:33:11:bd:89:c4:8b:96:ab:95:6d:13:05:08:d0:b8:
08:f7:dd:47:57:c5:9e:8a:a9:c8:d4:c0:62:8e:51:a4:ec:b7:
4d:c5:00:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:14 2024 by rpki-client on console-fra.rpki-client.org