Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADE0A/30D80126C11311E5B01A7269C4F9AE02/C05FC536310611ECBFFF5E62C4F9AE02.roa
File: C05FC536310611ECBFFF5E62C4F9AE02.roa (raw, json)
Hash identifier: 0nwHXdbf2CqoANS4OiLQ9aX/0hIDoj5A+w6x3fQlm9M=
Subject key identifier: E5:CA:E5:BB:E1:36:0F:A0:DD:41:17:9E:FD:83:C1:16:09:B5:F8:1C
Certificate issuer: /CN=A91ADE0A/serialNumber=BE488B4E60AC6A73A656EFDBC5FA67A1A8DE812A
Certificate serial: 1E6E
Authority key identifier: BE:48:8B:4E:60:AC:6A:73:A6:56:EF:DB:C5:FA:67:A1:A8:DE:81:2A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vkiLTmCsanOmVu_bxfpnoajegSo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91ADE0A/30D80126C11311E5B01A7269C4F9AE02/C05FC536310611ECBFFF5E62C4F9AE02.roa
Signing time: Wed 02 Feb 2022 16:42:41 +0000
ROA not before: Wed 02 Feb 2022 16:42:41 +0000
ROA not after: Mon 01 May 2023 00:00:00 +0000
asID: 133334
IP address blocks: 45.124.56.0/22 maxlen: 24
103.200.32.0/22 maxlen: 24
103.203.52.0/22 maxlen: 24
103.225.136.0/22 maxlen: 24
2401:b80::/32 maxlen: 32
2401:b80::/36 maxlen: 36
2401:b80:1000::/36 maxlen: 36
2401:b80:2000::/36 maxlen: 36
2401:b80:2000:2017::/64 maxlen: 64
2401:b80:3000::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7790 (0x1e6e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91ADE0A/serialNumber=BE488B4E60AC6A73A656EFDBC5FA67A1A8DE812A
Validity
Not Before: Feb 2 16:42:41 2022 GMT
Not After : May 1 00:00:00 2023 GMT
Subject: CN=61fab480-ab67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:b9:36:84:71:22:9b:78:35:4a:8d:50:fa:ed:
79:bd:a7:c1:80:a4:58:9f:51:31:be:f6:68:63:75:
3d:83:20:f9:97:d0:e4:b1:92:24:fc:4a:e3:88:53:
3d:80:8c:ed:94:e4:fd:4c:57:9e:0b:e6:4e:30:ab:
ee:3b:66:fc:71:7d:38:44:39:e9:59:55:f3:3d:48:
2e:04:25:dd:89:1f:5a:24:92:df:31:ee:51:e4:cf:
54:f5:b8:ec:3a:89:b9:f6:8e:55:62:08:0f:24:98:
e8:ee:80:2a:80:ee:ab:39:a3:e7:7c:1f:ba:48:4f:
b8:8d:85:e4:d9:80:27:36:ba:d0:89:f5:4f:a8:a4:
1b:7f:17:ac:28:35:7d:ae:b5:42:ce:9c:05:f6:85:
d9:ef:42:16:83:25:eb:48:cb:21:d9:e0:52:79:e5:
8f:2b:20:98:d7:80:ca:b2:b9:59:df:66:03:0c:a0:
2a:28:4d:a1:e5:6a:0d:8d:c3:77:30:78:e9:dd:54:
dd:94:9e:c5:a8:73:62:fc:f7:8b:01:8b:20:4b:30:
ea:5b:d3:11:26:e8:46:5c:95:27:7e:39:fb:0f:17:
2b:02:aa:d3:9e:30:74:ad:a0:5d:ba:aa:57:26:49:
4d:58:95:df:68:db:2a:d1:d2:5d:8b:14:dc:9b:73:
40:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:CA:E5:BB:E1:36:0F:A0:DD:41:17:9E:FD:83:C1:16:09:B5:F8:1C
X509v3 Authority Key Identifier:
keyid:BE:48:8B:4E:60:AC:6A:73:A6:56:EF:DB:C5:FA:67:A1:A8:DE:81:2A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91ADE0A/30D80126C11311E5B01A7269C4F9AE02/vkiLTmCsanOmVu_bxfpnoajegSo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vkiLTmCsanOmVu_bxfpnoajegSo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADE0A/30D80126C11311E5B01A7269C4F9AE02/C05FC536310611ECBFFF5E62C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.124.56.0/22
103.200.32.0/22
103.203.52.0/22
103.225.136.0/22
IPv6:
2401:b80::/32
Signature Algorithm: sha256WithRSAEncryption
3d:c3:f2:b1:de:09:6d:2d:1c:64:9c:50:41:a4:73:52:7e:ce:
5d:6e:97:a6:d1:61:b8:05:44:81:ca:3b:2d:7d:77:67:df:fa:
d0:4a:33:bf:ae:c3:16:19:3b:01:59:7a:98:51:a8:af:31:bb:
fb:af:5f:71:82:63:1d:2d:0b:37:49:84:65:ca:18:00:b2:d5:
84:0d:83:fd:80:34:c8:8b:06:f2:95:5f:14:c2:63:5a:f0:16:
25:a0:8a:8c:59:d9:29:30:71:51:f0:6a:7b:87:f0:fe:4e:d9:
eb:2b:50:fd:34:20:7d:c7:32:c6:94:e5:5b:6d:f6:cd:b3:9d:
41:00:31:dd:30:51:9a:07:b7:34:4c:49:6b:53:5d:9a:a1:14:
55:7b:b6:b9:f9:fc:01:47:fc:fc:79:67:84:9c:67:02:55:fc:
f3:13:c9:ba:a7:3f:09:70:f0:4d:9e:74:88:c7:1c:69:17:e8:
34:8d:07:14:bc:e9:cf:dd:94:c8:4f:6e:e1:27:e8:1e:6c:b8:
b8:55:06:e3:2b:23:67:10:15:1e:eb:a0:65:05:5c:d9:31:7a:
3f:30:29:47:69:14:d4:7a:80:4c:30:51:ac:9c:b9:c8:70:64:
6c:c5:f0:be:bb:3e:14:22:56:a7:c8:68:7a:18:3d:81:b4:32:
1e:90:30:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:03 2023 by rpki-client on console-fra.rpki-client.org