Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1492735EDBE211EAB58C386AC4F9AE02.roa
File: 1492735EDBE211EAB58C386AC4F9AE02.roa (raw, json)
Hash identifier: tlGp2MejkpRcx5j4q+GDYw0yyuAfuTj7zg+94EyutS8=
Subject key identifier: 96:15:4A:03:4D:42:FB:B3:91:F4:CE:8D:13:CA:16:0F:18:F8:28:03
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 3990
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1492735EDBE211EAB58C386AC4F9AE02.roa
Signing time: Fri 06 Aug 2021 12:11:40 +0000
ROA not before: Fri 06 Aug 2021 12:11:40 +0000
ROA not after: Fri 01 Jul 2022 00:00:00 +0000
asID: 140133
IP address blocks: 103.80.154.0/23 maxlen: 24
103.148.65.0/24 maxlen: 24
103.154.2.0/23 maxlen: 24
103.170.90.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14736 (0x3990)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Aug 6 12:11:40 2021 GMT
Not After : Jul 1 00:00:00 2022 GMT
Subject: CN=610d26fc-b71a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:8b:b4:9a:8c:e3:2c:0a:8c:ca:c9:2e:63:0f:
56:6a:70:74:93:cc:53:21:00:4b:4b:48:3d:c9:6d:
b6:99:48:b7:ff:ca:96:dc:6d:76:1c:7b:31:2f:18:
6c:f8:ab:53:a2:ca:a6:46:04:71:63:31:eb:e2:96:
14:84:87:97:06:c5:a2:ec:36:7d:3b:d9:30:2d:c7:
26:b8:de:ab:e2:6f:1e:f0:6b:9f:a8:08:66:e7:7c:
f3:00:94:a0:65:cb:47:5b:5d:24:ef:d5:04:36:98:
37:f1:de:85:55:83:3f:d6:d3:70:6b:55:53:09:0d:
7a:de:b0:74:6a:b6:03:b3:61:11:44:b1:95:ab:ad:
db:6e:e1:fb:0a:19:76:cb:af:0f:b0:9d:e8:01:7a:
a7:5a:e1:d2:97:71:c0:4b:fc:b1:8a:71:38:b1:ec:
e0:3e:56:3b:79:e5:23:d8:7c:f3:e8:e9:cf:55:e9:
22:ae:27:b4:a9:17:d5:8e:df:60:e7:47:a2:d5:21:
35:20:19:ff:66:77:63:13:f9:18:71:26:4c:cb:6a:
f0:f6:6d:a6:37:da:99:09:02:f7:9b:66:23:a7:3c:
8a:5e:c0:77:f3:57:4d:ec:23:08:b5:31:13:64:ea:
78:95:b2:e2:a1:bc:29:52:3a:bb:0f:ea:1a:4f:cc:
36:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:15:4A:03:4D:42:FB:B3:91:F4:CE:8D:13:CA:16:0F:18:F8:28:03
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1492735EDBE211EAB58C386AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.80.154.0/23
103.148.65.0/24
103.154.2.0/23
103.170.90.0/23
Signature Algorithm: sha256WithRSAEncryption
0f:f3:04:d2:38:76:6a:01:02:11:61:d9:f4:c4:8b:77:75:b1:
4f:97:c9:2a:4a:f2:56:50:58:1d:52:0e:51:01:09:cb:53:9f:
8d:3f:a2:f1:a5:3d:c8:b0:2a:32:30:2f:b2:f6:77:ae:0f:f1:
27:b6:fd:17:20:ae:2d:bf:ab:a9:15:af:db:23:fa:be:4a:ca:
37:1d:19:33:45:bd:3b:2c:60:1d:e2:84:ed:61:70:5b:04:18:
5c:ea:76:c8:3f:38:81:65:4f:48:4a:c1:ec:78:44:7a:f1:b5:
92:ad:b7:cf:e8:67:5c:a1:5b:e8:31:17:56:46:2f:22:81:dc:
4a:4e:c4:06:d0:91:a6:59:c2:95:20:66:e1:5a:90:02:81:f4:
36:e0:64:f2:0d:d4:6c:6c:a2:cf:da:aa:c2:d4:7c:eb:4f:3b:
0b:3c:52:63:1d:43:7e:1d:d0:51:96:92:e4:de:89:03:91:da:
ab:77:f2:67:dd:27:86:8a:69:dd:f1:74:bb:46:63:44:ab:b9:
d6:9a:83:4d:8b:65:35:4e:55:fc:a9:d1:79:34:90:2f:7c:13:
b1:b0:a6:a3:0d:75:7f:45:56:6c:d8:65:3f:5d:37:b8:70:d2:
3f:f5:9a:cc:90:e9:68:e2:d2:8e:77:00:bf:a8:66:1b:45:e6:
6c:7a:49:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:51 2023 by rpki-client on console-fra.rpki-client.org