Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/ABD6C4A2CD3C11ECA4C3EE49C4F9AE02.roa
File: ABD6C4A2CD3C11ECA4C3EE49C4F9AE02.roa (raw, json)
Hash identifier: RKbfH0bvFIKGAdos4iQVjfWfD5hqVCvm8t1OyVwMZyw=
Subject key identifier: 8B:DA:F8:81:96:91:15:8B:BF:5E:F2:D9:14:85:77:B4:81:EE:7C:B2
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 51F7
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/ABD6C4A2CD3C11ECA4C3EE49C4F9AE02.roa
Signing time: Mon 16 May 2022 04:18:22 +0000
ROA not before: Mon 16 May 2022 04:18:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 138735
IP address blocks: 103.138.136.0/22 maxlen: 22
103.138.136.0/24 maxlen: 24
103.138.137.0/24 maxlen: 24
103.138.138.0/24 maxlen: 24
103.138.139.0/24 maxlen: 24
103.184.242.0/24 maxlen: 24
103.184.243.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20983 (0x51f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: May 16 04:18:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6281d08e-9d85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:99:81:1e:b0:1c:cb:8f:af:26:dd:dc:f6:ae:
d0:f0:9e:eb:d4:80:5b:14:9c:29:7c:b5:80:6c:8c:
16:92:1f:1c:bd:f0:9d:3e:51:43:0c:9e:5b:b5:cf:
73:b8:56:4e:f7:4d:89:57:68:e0:27:a1:01:38:46:
68:06:89:d7:09:9a:67:40:ec:9e:37:b4:ec:d0:40:
77:0a:fe:ee:04:5b:05:41:75:39:38:c6:bd:d6:2e:
d3:9f:a8:13:10:ce:b3:40:4d:bc:c1:cd:a0:0a:47:
8f:15:0c:8d:0e:91:c6:7d:c5:14:64:b4:07:00:e1:
64:04:01:ba:0b:81:37:8d:9a:27:4e:3e:a3:7c:04:
62:73:67:0a:93:c6:78:44:2f:aa:e6:05:bd:73:6c:
69:0e:35:00:25:b9:d8:96:66:61:4d:d6:34:45:d9:
34:8d:5a:d2:8b:46:d0:e8:94:54:c7:b7:51:84:ea:
f8:54:38:e7:be:d1:fa:d0:99:7f:6e:1a:b3:9f:8e:
ee:29:5e:a5:33:54:1e:60:8b:b9:45:15:77:50:33:
e6:c6:1d:9f:22:09:b7:2c:78:81:87:ae:b5:c7:13:
af:06:5f:32:64:cc:3b:35:b6:14:fa:76:a9:ce:2b:
1e:16:a1:b2:9f:b0:ca:07:7a:ce:cd:01:8b:e7:a1:
61:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:DA:F8:81:96:91:15:8B:BF:5E:F2:D9:14:85:77:B4:81:EE:7C:B2
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/ABD6C4A2CD3C11ECA4C3EE49C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.138.136.0/22
103.184.242.0/23
Signature Algorithm: sha256WithRSAEncryption
35:96:53:2e:1d:7b:ae:bd:99:b8:1d:4a:19:6b:5e:76:62:3e:
30:b7:c2:ce:00:fc:ce:33:0c:04:1f:eb:3d:ea:93:89:5c:3f:
c0:19:40:e9:a8:bd:3f:c3:d1:f0:49:33:11:02:75:c9:7d:36:
c7:18:66:ee:f8:b0:4c:fc:d5:dd:3d:01:02:dd:d2:7a:5d:c6:
85:b5:2f:a5:02:2f:49:ef:4c:c6:ac:16:c2:74:32:18:73:26:
0c:e4:71:12:e0:05:2d:1a:a6:8d:3c:a4:d6:eb:a4:88:00:62:
84:da:64:fd:d9:0c:ef:c5:e5:58:8a:cb:da:5e:cb:8f:3d:33:
8c:8d:99:4e:4c:4e:c2:f6:9a:ae:bd:7a:b9:8c:45:fc:69:ff:
36:1d:12:56:0f:24:c4:d9:cc:e0:20:01:b9:90:e8:ef:7c:14:
ed:f1:7a:dc:b0:6b:f1:a0:9d:59:e8:10:29:dd:2d:76:b3:d2:
9c:b6:36:fb:bf:04:b2:a5:6c:6e:54:8d:c7:4f:ac:f8:b7:96:
c1:db:17:89:22:d2:c5:5f:14:57:34:57:43:1e:b3:dc:8c:e9:
dd:e6:08:21:4a:bb:9f:2e:97:67:44:1c:0d:ab:5a:46:f4:ef:
01:51:90:3b:1f:43:6a:c1:78:b1:ae:c1:7b:0a:56:9f:26:81:
c1:64:4b:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:54 2023 by rpki-client on console-ams.rpki-client.org