Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F32BF170FE8D11EB815E6260C4F9AE02.roa
File: F32BF170FE8D11EB815E6260C4F9AE02.roa (raw, json)
Hash identifier: 5EpPPOTIAzANomCj9kDv7+G2wTgFHup+cc/IvMzlK8s=
Subject key identifier: C0:30:8A:08:F0:BF:2E:1B:B6:1B:EE:C5:F7:4B:EA:37:F6:D1:FE:E3
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 59B4
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F32BF170FE8D11EB815E6260C4F9AE02.roa
Signing time: Tue 19 Jul 2022 06:41:36 +0000
ROA not before: Tue 19 Jul 2022 06:41:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 132754
IP address blocks: 103.43.36.0/24 maxlen: 24
103.49.206.0/24 maxlen: 24
103.110.20.0/22 maxlen: 24
103.158.105.0/24 maxlen: 24
103.165.12.0/23 maxlen: 24
103.184.170.0/23 maxlen: 24
103.248.32.0/24 maxlen: 24
103.248.33.0/24 maxlen: 24
103.248.35.0/24 maxlen: 24
202.3.72.0/24 maxlen: 24
202.3.73.0/24 maxlen: 24
2401:f4c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22964 (0x59b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Jul 19 06:41:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=62d6521f-a851
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:b3:8f:9b:6a:05:0c:55:90:8d:0c:db:b3:8f:
84:6c:4a:42:3f:90:bf:86:e2:b3:1e:ef:4f:ef:43:
a9:21:77:48:20:79:8f:43:de:ee:2b:b9:e9:e3:96:
58:5b:a1:22:f4:6a:43:db:1c:73:e2:3a:24:26:1f:
f6:30:69:94:f6:37:70:01:9a:98:8b:33:6e:9a:52:
41:03:26:f8:93:7b:61:e4:bc:10:59:fc:c0:2e:1f:
98:0c:48:57:da:a2:85:4a:9c:54:3b:30:4b:28:d8:
b0:af:54:ae:f2:dd:34:77:98:3d:e9:82:e3:71:e7:
ef:76:9d:a1:b2:d3:e9:2d:33:7a:0d:ca:ae:cc:13:
bd:0f:9b:f8:20:55:95:7e:66:d9:2b:4d:59:8e:1c:
d1:95:52:e7:6d:20:f7:1c:2f:a9:7a:49:7c:7f:ab:
96:a0:7f:70:f8:84:32:84:b5:70:b5:15:04:95:0a:
db:7c:f7:3e:86:ef:34:b1:94:8e:83:db:3c:a6:7e:
64:b9:c8:36:81:42:03:f6:b3:45:56:1d:a6:70:ba:
9c:29:c3:96:3c:bf:af:0e:13:f6:a2:dc:a2:49:87:
1f:a9:0e:41:b0:ee:a0:a0:24:4a:8c:90:95:71:55:
4a:bf:be:a2:2c:2d:77:d3:e8:ca:f6:da:99:2d:8e:
41:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:30:8A:08:F0:BF:2E:1B:B6:1B:EE:C5:F7:4B:EA:37:F6:D1:FE:E3
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F32BF170FE8D11EB815E6260C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.43.36.0/24
103.49.206.0/24
103.110.20.0/22
103.158.105.0/24
103.165.12.0/23
103.184.170.0/23
103.248.32.0/23
103.248.35.0/24
202.3.72.0/23
IPv6:
2401:f4c0::/32
Signature Algorithm: sha256WithRSAEncryption
17:4f:c0:36:71:1c:9b:8e:c1:8f:09:e3:78:b9:ad:4b:2f:49:
bf:f7:8e:b0:51:09:3a:2d:8d:1e:0d:93:f3:22:be:78:b0:82:
d4:28:9a:58:af:22:8f:cc:0f:7e:22:45:be:f3:a7:38:40:e7:
86:00:65:c7:4b:b0:d2:2a:f4:73:90:0f:2c:81:07:c3:bd:3e:
f0:e7:f7:78:06:c1:6a:e8:58:82:a5:fc:8b:06:02:fb:f5:a2:
c1:eb:b6:c1:5d:f9:b9:ec:18:ea:b3:40:57:ff:51:c4:6b:00:
25:ae:7c:c6:d3:4b:8e:9d:d6:c7:39:e7:f5:74:ea:ec:ed:5b:
a5:5d:ea:5a:e0:72:a1:3b:d1:16:89:a2:3e:46:b1:99:1c:c5:
93:2e:0e:4c:d4:98:79:78:3e:66:01:9a:4d:f8:9a:28:c0:f1:
64:11:20:8e:02:81:ef:67:c4:77:ea:fe:40:d2:c4:b1:2a:c9:
f5:ee:c5:dd:74:1d:47:04:45:f8:ed:cd:b9:34:9e:88:b2:42:
4b:9d:1d:f6:0c:75:1e:54:cf:28:f7:9a:1a:13:4a:61:66:a7:
4a:50:c3:40:02:35:ef:73:fa:da:cd:b1:73:af:aa:3d:12:be:
29:50:69:fd:02:1c:af:5d:db:8b:ef:ef:55:96:d0:0e:4f:70:
40:83:d6:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:55 2023 by rpki-client on console-ams.rpki-client.org