Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/95ED18F0802711ED8A72793AC4F9AE02.roa
File: 95ED18F0802711ED8A72793AC4F9AE02.roa (raw, json)
Hash identifier: u+rStwYz3gWKSV5+2ue0diqK7N79LAvlFCC//pHdFI8=
Subject key identifier: EF:90:CE:35:AB:41:68:D5:A1:B5:C3:35:42:35:F4:1F:F4:79:0C:86
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 619A
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/95ED18F0802711ED8A72793AC4F9AE02.roa
Signing time: Tue 20 Dec 2022 05:31:43 +0000
ROA not before: Tue 20 Dec 2022 05:31:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 137163
IP address blocks: 103.81.24.0/23 maxlen: 24
103.81.26.0/23 maxlen: 24
103.189.124.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24986 (0x619a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Dec 20 05:31:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=63a148be-7afa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b4:8b:75:00:d6:67:f9:8a:12:cf:cb:e0:2f:
94:ac:8a:1d:48:8e:08:da:11:ed:70:2b:df:c1:b8:
b0:39:b0:f7:76:ca:db:22:86:4a:0b:e3:03:a9:78:
8e:b6:5e:b9:c0:ef:2d:32:43:2d:30:86:70:86:fe:
af:b6:20:69:eb:f0:8a:66:08:b5:d5:c7:12:06:02:
13:32:8a:4a:3d:3e:18:24:10:99:82:67:bc:bb:a3:
82:2e:de:6e:c5:39:a3:79:fa:3d:83:b7:80:99:33:
e6:7d:06:52:b6:ad:7c:63:15:50:0c:55:e9:f1:f5:
3c:91:4c:c4:64:8b:e0:c6:a0:8d:7e:fc:a9:9c:39:
ae:c0:62:f2:41:8f:bd:53:5f:a4:07:8f:c9:22:47:
64:4e:19:4d:93:e8:57:0c:c7:b5:42:e3:d3:a3:d3:
95:68:89:5e:a8:e1:e7:41:ea:a5:55:27:f6:5e:7c:
87:b7:c9:58:8f:d7:f9:21:87:fd:b1:f8:c1:79:67:
c8:08:55:a2:08:ed:b7:06:75:3a:d0:2e:81:50:39:
12:5d:03:ad:87:ef:cf:a1:95:bf:a0:e8:a2:b1:2b:
c9:7a:15:57:ec:94:b8:af:40:ab:41:e8:7f:b0:4c:
15:c2:08:c1:ee:db:0a:5c:0d:04:7a:2c:b0:f4:c7:
72:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:90:CE:35:AB:41:68:D5:A1:B5:C3:35:42:35:F4:1F:F4:79:0C:86
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/95ED18F0802711ED8A72793AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.81.24.0/22
103.189.124.0/23
Signature Algorithm: sha256WithRSAEncryption
2d:47:5a:d0:54:98:a9:88:13:8a:ee:67:48:ab:f6:ef:f0:4e:
74:0d:db:7f:5a:d6:a6:7e:a0:6b:65:7a:b7:27:9f:2e:ef:60:
87:01:69:ee:8c:3a:2d:59:96:f0:10:ad:d5:f6:d2:4c:ec:fd:
59:d0:3f:d2:9e:a7:4f:d3:8a:63:59:5e:3c:28:e4:96:8a:27:
f8:4c:ec:43:42:ac:00:7d:7f:5c:9b:b3:44:0c:80:c1:02:d2:
7a:c7:29:c3:72:07:6e:11:1c:01:40:a6:56:8d:e2:44:f9:cd:
f1:cb:21:16:d3:47:8d:41:3a:bd:67:85:d8:91:db:37:a0:ec:
ce:05:b2:61:57:fc:ca:2e:b0:fa:83:6a:f5:c3:cd:2d:c2:34:
76:4b:14:1d:2f:60:48:0c:a0:f0:ee:4d:94:2b:9b:67:46:b7:
76:d1:2b:2a:b9:3d:7e:31:64:37:f6:39:b2:be:5a:90:1d:92:
ed:d7:12:38:ce:77:9d:b6:6a:d3:0f:67:7b:aa:c7:b3:d1:a8:
32:9c:b1:ca:34:12:10:e0:a9:af:81:ac:7d:c8:11:0c:16:69:
9c:17:40:94:e9:52:9b:e3:15:15:93:42:4a:c5:66:4b:fd:66:
f2:d6:d3:8b:6c:4e:38:0b:da:cc:7e:e1:fe:f3:4d:fa:50:f1:
36:a2:9a:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:56 2023 by rpki-client on console-fra.rpki-client.org