Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FE00AA1A122211ED94447374C4F9AE02.roa
File: FE00AA1A122211ED94447374C4F9AE02.roa (raw, json)
Hash identifier: 85Lj38Fx7nlIeHR9rDJRbfJC0GpEgM7pWxceUeH6Tl4=
Subject key identifier: 89:54:CC:65:48:0A:C4:11:14:19:11:57:86:A5:C2:96:48:42:C7:31
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 5A9A
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FE00AA1A122211ED94447374C4F9AE02.roa
Signing time: Tue 02 Aug 2022 05:21:42 +0000
ROA not before: Tue 02 Aug 2022 05:21:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 141875
IP address blocks: 45.125.252.0/22 maxlen: 22
45.125.252.0/24 maxlen: 24
45.125.253.0/24 maxlen: 24
45.125.254.0/24 maxlen: 24
45.125.255.0/24 maxlen: 24
103.18.156.0/22 maxlen: 22
103.18.156.0/23 maxlen: 24
103.165.72.0/23 maxlen: 24
103.165.88.0/23 maxlen: 24
103.169.242.0/23 maxlen: 24
103.241.132.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23194 (0x5a9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Aug 2 05:21:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=62e8b466-2c3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:0e:b4:c3:d0:a0:e3:d8:91:ec:d0:e3:66:f5:
d6:9c:dc:89:9b:aa:82:f3:93:cf:e4:1c:0e:81:ed:
95:74:ca:f8:73:b7:35:d9:d3:ff:ff:8d:e7:7b:7b:
06:cb:85:b0:d6:67:74:2d:ea:86:72:cf:ab:17:06:
e7:fb:f8:e3:9d:db:28:e2:bf:82:6b:f0:8a:d4:75:
f1:f6:ce:59:e6:ad:c4:26:61:41:98:00:ac:80:2c:
74:7f:6d:ae:cc:2f:8f:a9:3f:2e:d9:29:db:50:e1:
1f:26:7a:df:96:ac:cd:7c:25:19:0b:65:8e:08:f3:
23:45:01:dc:07:b8:48:c8:3e:4d:bf:69:69:9e:12:
7b:50:c2:72:4c:5c:b3:1d:3c:89:3d:47:f2:cc:5b:
44:88:46:c6:2b:df:21:1c:e1:80:9d:70:5a:a0:af:
93:f7:87:3f:5e:8d:75:eb:96:04:85:57:86:52:dd:
bf:ef:9f:85:24:24:d2:7d:44:62:85:47:ab:4a:25:
cc:c2:e3:65:64:01:7b:44:21:ae:e2:4b:1d:c7:df:
88:d2:8d:ca:e9:4d:4d:09:24:c9:7e:09:84:64:75:
44:35:f4:7e:16:6a:39:72:be:2c:22:59:d8:a3:f3:
5d:07:02:80:7b:44:0d:43:41:3f:7a:75:7c:23:7a:
27:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:54:CC:65:48:0A:C4:11:14:19:11:57:86:A5:C2:96:48:42:C7:31
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FE00AA1A122211ED94447374C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.125.252.0/22
103.18.156.0/22
103.165.72.0/23
103.165.88.0/23
103.169.242.0/23
103.241.132.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:ab:0a:0a:3b:4a:33:a9:08:4a:20:bf:0e:ff:e5:83:0a:e7:
a1:77:13:47:23:2e:07:3a:01:60:91:05:43:ea:c1:0f:10:e1:
89:74:9b:54:14:4c:8a:f7:4e:64:18:68:aa:12:ea:8e:82:07:
7e:fb:df:e1:7b:1b:62:90:07:c6:cd:84:7d:a7:2a:0d:5f:5a:
77:77:1f:2c:58:50:38:1d:29:c7:16:ef:18:1d:b2:bf:c5:78:
60:5b:d5:fb:1f:18:c2:db:9b:91:b4:fb:1c:2b:8b:15:97:4f:
33:e4:96:10:1c:9f:fe:8a:c6:64:d7:ed:08:a8:2a:7a:be:b7:
23:d9:b1:9c:5e:9a:8b:79:00:72:4b:72:d2:45:86:ec:4a:d7:
75:ff:8d:16:e8:21:66:c0:a6:cb:47:98:be:1a:b4:7d:53:b9:
d9:58:20:c4:dc:0b:24:6b:8f:6c:b3:54:60:d1:ad:13:5a:27:
f8:aa:63:ca:d5:71:c1:98:4f:7e:49:09:3e:dd:15:e7:55:ee:
86:b3:52:2f:9f:4b:b9:40:4e:5c:c3:4e:ac:f9:b4:c5:79:4b:
6e:b6:08:1f:42:8b:63:23:38:73:41:ec:38:e6:0c:d6:a9:62:
1e:eb:ac:9d:61:76:9a:8a:92:ed:0e:26:e7:a1:26:e2:82:64:
cc:c7:c5:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:58 2023 by rpki-client on console-fra.rpki-client.org