Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6CCC04E84A2811EDB427CC63C4F9AE02.roa
File: 6CCC04E84A2811EDB427CC63C4F9AE02.roa (raw, json)
Hash identifier: L1WdkTwRPiUh5FGEMrw/6qCd3diSmFD/enN/qHCFxJg=
Subject key identifier: 31:02:95:51:63:75:60:2F:17:2A:7C:2A:81:F6:2E:B6:F2:B2:4D:FD
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 5E88
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6CCC04E84A2811EDB427CC63C4F9AE02.roa
Signing time: Wed 12 Oct 2022 12:21:40 +0000
ROA not before: Wed 12 Oct 2022 12:21:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 132972
IP address blocks: 103.137.218.0/24 maxlen: 24
103.139.232.0/24 maxlen: 24
103.163.126.0/23 maxlen: 24
103.175.10.0/24 maxlen: 24
103.175.11.0/24 maxlen: 24
2001:df0:9980::/48 maxlen: 48
2001:df6:1780::/48 maxlen: 48
2001:df7:e280::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24200 (0x5e88)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Oct 12 12:21:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6346b154-d388
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:9a:1d:a2:6c:4c:7e:f1:52:09:d2:c3:1e:ff:
3f:dd:fb:7e:52:ea:c6:d1:b8:6e:4c:f6:a5:64:c5:
a6:7c:4f:c9:e1:c0:de:6d:ce:26:6a:27:d7:61:90:
86:2f:a9:70:9e:40:47:be:dd:fa:5f:31:b2:0d:ec:
8a:c5:a2:45:79:88:7f:b6:4c:b2:a1:e6:14:ab:af:
76:e5:3e:be:4f:2f:06:12:97:a1:da:41:cf:aa:5c:
2c:e0:8a:44:e8:19:e4:72:30:43:fb:e5:7d:1b:d5:
af:94:bd:be:3b:0f:24:6e:07:02:00:8b:a0:63:26:
10:3e:20:75:ed:43:f1:5a:de:8b:a5:c2:81:e4:34:
7d:e3:94:f2:37:61:5c:8c:7c:43:bb:06:b7:3f:e9:
7f:f8:9e:62:71:4e:eb:e8:41:b2:24:48:62:0e:f3:
9b:b4:b3:8b:b2:5f:c7:6a:fa:2f:9b:81:c7:df:1b:
04:27:b6:df:3a:40:20:5f:71:dd:c5:d1:a5:19:6c:
e3:c3:3d:49:6e:1c:50:e7:72:a3:68:90:06:90:49:
49:b6:75:6a:3d:62:33:2f:05:52:be:ba:84:c7:f5:
82:bc:0f:f3:3c:6e:ab:47:4c:1e:cb:f4:6d:c4:a9:
6f:92:fd:8e:cd:5b:bf:17:68:e9:b3:f9:7c:86:bf:
08:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:02:95:51:63:75:60:2F:17:2A:7C:2A:81:F6:2E:B6:F2:B2:4D:FD
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6CCC04E84A2811EDB427CC63C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.137.218.0/24
103.139.232.0/24
103.163.126.0/23
103.175.10.0/23
IPv6:
2001:df0:9980::/48
2001:df6:1780::/48
2001:df7:e280::/48
Signature Algorithm: sha256WithRSAEncryption
8f:13:26:6a:c2:78:5e:44:b5:e3:91:a9:44:65:46:6d:68:81:
74:22:24:dd:89:a4:30:c4:59:ad:c9:a3:57:84:f8:0f:78:47:
a8:e3:8e:7c:e2:34:56:9b:39:1e:3b:5a:a6:40:fb:fa:fb:d6:
8c:09:d6:b8:f4:7a:35:04:4a:63:1f:6c:68:ff:a8:02:6d:de:
aa:ac:7e:48:db:5a:89:45:28:51:af:fd:16:11:b2:d6:38:d6:
4c:82:51:5e:ff:a8:fa:47:45:ab:98:3c:30:f5:eb:17:d0:ca:
83:6d:f7:aa:af:fb:f0:d4:81:dd:68:94:b9:bd:23:97:e5:db:
43:35:79:ed:17:b5:79:fd:28:05:39:2c:ba:1a:90:19:98:70:
39:1c:c4:e1:65:77:99:e6:48:9f:ce:ec:74:e6:de:b7:ee:98:
8e:34:de:97:b8:fd:59:c4:43:f9:33:77:0a:d4:04:1b:b2:4f:
c1:a0:57:67:24:10:49:9c:9e:91:e0:0f:32:a4:69:ef:9d:bf:
82:c8:7d:cb:a5:da:d6:44:db:4d:1c:92:8b:b3:3e:b2:c6:28:
3d:df:d5:41:23:78:fd:fd:70:8c:75:78:8a:ff:dc:05:d5:ce:
e3:b2:d1:a9:48:81:d2:a6:ab:01:06:4d:f7:09:dd:15:1d:a9:
38:cd:49:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:56 2023 by rpki-client on console-fra.rpki-client.org