Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/93C00940FBFE11ED86FEE571C4F9AE02.roa
File: 93C00940FBFE11ED86FEE571C4F9AE02.roa (raw, json)
Hash identifier: wR7gYBWCLmgS2+N0gkya4yakmG1nQG83OJmSTuGOn68=
Subject key identifier: 92:6E:2B:BD:DE:AA:3C:84:26:B0:DE:B3:92:3E:3C:A4:B3:6B:D0:89
Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Certificate serial: 3CDC
Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/93C00940FBFE11ED86FEE571C4F9AE02.roa
Signing time: Fri 26 May 2023 19:50:34 +0000
ROA not before: Fri 26 May 2023 19:50:34 +0000
ROA not after: Tue 31 Oct 2023 00:00:00 +0000
asID: 24086
IP address blocks: 103.84.77.0/24 maxlen: 24
103.84.78.0/23 maxlen: 24
125.214.16.0/20 maxlen: 24
125.214.32.0/23 maxlen: 24
125.214.34.0/24 maxlen: 24
125.214.36.0/22 maxlen: 24
125.214.40.0/23 maxlen: 24
125.214.42.0/24 maxlen: 24
125.214.44.0/23 maxlen: 24
125.214.46.0/24 maxlen: 24
125.214.48.0/20 maxlen: 24
203.190.166.0/23 maxlen: 24
203.190.168.0/23 maxlen: 24
203.190.174.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15580 (0x3cdc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Validity
Not Before: May 26 19:50:34 2023 GMT
Not After : Oct 31 00:00:00 2023 GMT
Subject: CN=64710d8a-4f41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:92:fe:b9:c0:41:eb:2f:93:ea:73:b7:f8:c3:
df:3c:3b:f1:58:b9:c3:fe:69:d1:f4:74:89:97:1a:
c7:00:13:ac:ac:91:eb:a1:af:10:72:16:02:ea:84:
21:ea:f1:ed:5f:54:c8:51:c4:29:1b:75:e8:b3:b6:
c0:b6:9d:26:40:80:67:a2:af:13:97:b1:8d:c3:01:
b4:b7:fb:c3:d5:49:3b:7b:dc:f1:b2:b6:66:6a:51:
7b:54:a1:dc:e1:41:93:c9:74:a1:3c:35:b2:57:2c:
48:1f:66:41:3f:33:c9:10:2b:18:ff:0a:8a:a8:01:
ad:ae:70:89:67:22:bf:9e:92:58:94:24:80:37:c7:
05:ba:d9:61:e1:cb:3a:80:1c:9b:40:61:2a:7a:87:
50:6d:73:75:08:6a:9d:ae:16:30:64:ee:29:11:37:
3e:38:ce:81:1f:a6:3f:70:55:0b:13:d1:41:a6:82:
0b:b3:7c:50:d2:c4:bd:b4:bc:ae:78:12:8e:a9:52:
a4:2d:80:f1:a1:05:3c:4a:3e:05:cb:60:01:d8:fe:
cc:10:4e:44:20:1b:fc:21:35:76:70:2e:3c:cb:fe:
ad:57:f2:7e:54:79:d7:a7:87:2e:a1:79:ca:81:8a:
49:02:cc:94:af:1f:ba:22:2c:64:98:3b:e8:4a:e3:
15:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:6E:2B:BD:DE:AA:3C:84:26:B0:DE:B3:92:3E:3C:A4:B3:6B:D0:89
X509v3 Authority Key Identifier:
keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/93C00940FBFE11ED86FEE571C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.84.77.0-103.84.79.255
125.214.16.0-125.214.34.255
125.214.36.0-125.214.42.255
125.214.44.0-125.214.46.255
125.214.48.0/20
203.190.166.0-203.190.169.255
203.190.174.0/24
Signature Algorithm: sha256WithRSAEncryption
22:6c:6a:7f:e1:7e:e9:f2:b0:3a:d5:89:94:c4:f3:23:a8:86:
80:2f:80:5b:80:88:1f:db:a0:b9:e3:75:ea:5b:32:b2:07:51:
b4:4c:5c:98:1b:db:17:dc:b1:99:b2:3b:e0:e0:08:a4:c4:0a:
63:e4:4e:52:7c:64:c4:51:89:66:4b:e4:c7:07:88:1d:fb:1d:
cc:09:e1:5a:c6:5a:ce:1e:f2:27:b8:38:15:b1:f9:4f:64:94:
0b:73:55:fe:c3:7f:bd:be:d2:08:bd:6b:cf:71:0f:2b:aa:32:
c5:68:25:43:ee:18:c4:67:aa:0c:4c:12:ad:d4:85:25:8d:80:
c0:45:ec:21:d3:9c:63:cc:da:8b:e8:37:8e:a9:c8:c1:4c:08:
86:65:28:04:44:86:eb:ab:bd:a1:5d:53:49:fc:99:0b:6e:b6:
b1:bc:08:d2:09:51:5e:bd:c5:00:f9:0b:1b:06:c5:a7:9b:42:
90:de:9a:23:45:9d:53:f9:32:8a:60:84:88:ab:5f:6d:66:e9:
8c:0b:c1:32:78:9c:0c:c6:ca:78:11:47:63:ef:e3:67:29:60:
5f:b6:5b:07:bd:a3:4d:d0:2b:11:e6:03:ce:fd:2a:e9:b2:7a:
d6:8a:01:24:bd:e6:3a:93:75:d3:db:83:1f:ce:98:50:17:17:
fc:7c:ed:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:36 2024 by rpki-client on console-fra.rpki-client.org