Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5308/A81914E2F4D511E9B917F349C4F9AE02/C776B718AD1011EC9181277BC4F9AE02.roa
File: C776B718AD1011EC9181277BC4F9AE02.roa (raw, json)
Hash identifier: /ZabMmEt4mgzATJc9xjTVlPLEKmt86Wq7x/1JJfY7zk=
Subject key identifier: D3:5A:62:9E:EE:C4:EB:94:34:95:BF:90:66:06:BE:64:BC:73:F7:86
Certificate issuer: /CN=A91A5308/serialNumber=7B59055212849105AD6F39E5881D842E707439AF
Certificate serial: 0962
Authority key identifier: 7B:59:05:52:12:84:91:05:AD:6F:39:E5:88:1D:84:2E:70:74:39:AF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e1kFUhKEkQWtbznliB2ELnB0Oa8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A5308/A81914E2F4D511E9B917F349C4F9AE02/C776B718AD1011EC9181277BC4F9AE02.roa
Signing time: Mon 04 Apr 2022 08:06:27 +0000
ROA not before: Mon 04 Apr 2022 08:06:27 +0000
ROA not after: Sun 28 May 2023 00:00:00 +0000
asID: 138638
IP address blocks: 103.135.88.0/22 maxlen: 23
103.135.88.0/23 maxlen: 24
103.135.90.0/24 maxlen: 24
2404:7840::/32 maxlen: 32
2404:7840::/48 maxlen: 48
2404:7840:1::/48 maxlen: 48
2404:7840:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2402 (0x962)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A5308/serialNumber=7B59055212849105AD6F39E5881D842E707439AF
Validity
Not Before: Apr 4 08:06:27 2022 GMT
Not After : May 28 00:00:00 2023 GMT
Subject: CN=624aa702-af93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:db:84:cc:11:ab:88:cd:86:d6:95:f9:1b:b7:
1c:6d:4c:2b:ba:a5:30:33:97:19:49:98:58:6c:31:
cd:e1:73:38:5a:f2:48:dd:0a:50:bc:00:af:ec:f4:
70:3d:0f:c4:35:23:df:01:43:88:ee:66:1b:c3:bb:
a5:48:56:cd:b6:42:94:df:80:6e:08:dc:03:66:38:
f5:35:ec:61:01:ad:f6:47:be:62:b3:a1:1e:f5:3b:
87:0b:bc:b0:0b:e2:fd:a6:3f:90:10:24:a2:a7:5a:
cf:f7:6d:a1:e1:a3:29:ee:0d:7d:79:4c:80:7a:38:
0e:93:80:a1:a5:a6:cd:8d:0a:9d:3b:5f:2b:3c:1b:
59:51:ed:9e:92:db:76:80:f3:6e:d7:55:76:32:be:
31:c8:3a:0c:03:ad:d9:c6:d8:57:d2:96:14:7d:2b:
04:08:94:5d:fc:c5:7b:5e:ca:f6:ad:fb:55:f0:e6:
3a:44:db:9a:6c:61:a7:9a:36:b6:ed:17:27:90:9c:
3b:48:09:12:44:75:f3:d4:1f:d0:e5:93:a7:00:fa:
1f:7b:c9:b6:ef:00:e0:87:45:0d:c2:df:1a:07:86:
9e:4c:50:d1:be:0f:79:9a:69:61:56:a0:c2:3a:49:
e6:59:f9:42:fb:8b:7f:4c:b9:ae:ed:80:5f:e3:51:
c3:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:5A:62:9E:EE:C4:EB:94:34:95:BF:90:66:06:BE:64:BC:73:F7:86
X509v3 Authority Key Identifier:
keyid:7B:59:05:52:12:84:91:05:AD:6F:39:E5:88:1D:84:2E:70:74:39:AF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A5308/A81914E2F4D511E9B917F349C4F9AE02/e1kFUhKEkQWtbznliB2ELnB0Oa8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e1kFUhKEkQWtbznliB2ELnB0Oa8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5308/A81914E2F4D511E9B917F349C4F9AE02/C776B718AD1011EC9181277BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.135.88.0/22
IPv6:
2404:7840::/32
Signature Algorithm: sha256WithRSAEncryption
6e:f0:bb:e7:d0:83:6b:cd:a7:f0:7b:fb:84:bc:46:40:a8:20:
a9:4a:81:01:42:34:80:ab:d3:92:0b:ed:e5:fa:08:bd:ee:2b:
f8:24:90:5e:48:c8:b7:65:97:54:83:46:4f:2a:79:88:6a:f7:
2d:db:85:43:d0:84:c6:e1:77:e9:7e:dc:45:50:01:07:e9:e3:
bd:89:d6:c4:0e:f6:cb:c9:64:1c:cb:f9:7f:c3:fd:97:66:9e:
fa:52:e9:b1:a1:75:56:35:51:79:c1:a7:e7:79:ed:7a:29:e2:
e5:02:ef:6f:5f:35:db:50:38:b1:4d:b1:ea:30:c6:1a:29:53:
c3:e8:db:71:b5:15:a2:d3:39:30:0a:a2:15:d0:5b:06:b1:88:
97:fa:7a:0c:9c:10:74:db:57:c0:96:a0:88:c4:a4:7f:8c:cb:
74:76:d2:7e:fd:f4:c0:cf:2c:76:71:80:70:9a:f6:9a:4f:da:
04:a9:3a:4e:1d:8a:65:ff:b0:09:3b:64:fa:6f:d7:ee:7f:4f:
92:78:26:03:af:36:64:20:f4:f6:c0:d2:3f:99:76:84:6f:a2:
0e:8b:31:74:d0:ab:23:d1:5a:e0:66:84:3f:1b:4d:e3:1d:eb:
7b:b3:d4:e4:e5:4c:5c:14:fc:b0:9c:77:6b:2e:8e:1b:52:0a:
07:87:26:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:02 2023 by rpki-client on console-fra.rpki-client.org