Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3FD3/21DE5B9AD49511E9A27DC92FC4F9AE02/C9FE84B2D49511E9937D6E30C4F9AE02.roa
File: C9FE84B2D49511E9937D6E30C4F9AE02.roa (raw, json)
Hash identifier: PadHrxW8NgHap1sbMRyX4RFBzz35nVx8mkRxC/xPOuk=
Subject key identifier: D1:FF:23:17:5E:0C:29:46:4B:63:C1:A9:37:C0:50:42:AE:33:A7:E0
Certificate issuer: /CN=A91E3FD3/serialNumber=2C7333DBCD3FCA0787803837B6CBAE31AC0C4B65
Certificate serial: 08B1
Authority key identifier: 2C:73:33:DB:CD:3F:CA:07:87:80:38:37:B6:CB:AE:31:AC:0C:4B:65
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LHMz280_ygeHgDg3tsuuMawMS2U.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E3FD3/21DE5B9AD49511E9A27DC92FC4F9AE02/C9FE84B2D49511E9937D6E30C4F9AE02.roa
Signing time: Tue 02 Nov 2021 07:45:11 +0000
ROA not before: Tue 02 Nov 2021 07:45:11 +0000
ROA not after: Fri 30 Dec 2022 00:00:00 +0000
asID: 138338
IP address blocks: 103.130.168.0/22 maxlen: 22
103.130.168.0/24 maxlen: 24
103.130.169.0/24 maxlen: 24
103.130.170.0/24 maxlen: 24
103.130.171.0/24 maxlen: 24
2403:bdc0::/32 maxlen: 32
2403:bdc0::/36 maxlen: 36
2403:bdc0:1000::/36 maxlen: 36
2403:bdc0:2000::/36 maxlen: 36
2403:bdc0:3000::/36 maxlen: 36
2403:bdc0:4000::/36 maxlen: 36
2403:bdc0:5000::/36 maxlen: 36
2403:bdc0:6000::/36 maxlen: 36
2403:bdc0:7000::/36 maxlen: 36
2403:bdc0:8000::/36 maxlen: 36
2403:bdc0:9000::/36 maxlen: 36
2403:bdc0:a000::/36 maxlen: 36
2403:bdc0:b000::/36 maxlen: 36
2403:bdc0:c000::/36 maxlen: 36
2403:bdc0:d000::/36 maxlen: 36
2403:bdc0:e000::/36 maxlen: 36
2403:bdc0:f000::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2225 (0x8b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E3FD3/serialNumber=2C7333DBCD3FCA0787803837B6CBAE31AC0C4B65
Validity
Not Before: Nov 2 07:45:11 2021 GMT
Not After : Dec 30 00:00:00 2022 GMT
Subject: CN=6180ec86-66d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:5b:14:6e:a7:83:c1:68:fa:bc:11:83:8e:16:
50:6b:07:c2:cd:9f:c5:6d:6b:7e:57:a9:0e:3f:ae:
fd:58:8e:5b:1b:8b:0f:bc:be:2e:0a:a9:67:b9:82:
f8:7a:5b:25:ca:33:47:af:03:bd:ff:05:2a:e9:0b:
da:53:46:33:6d:61:19:ac:3f:5b:19:55:89:ca:c7:
72:80:be:9c:21:69:63:83:cc:c7:05:b8:e5:e9:fd:
7c:17:94:64:fc:d7:01:dd:e5:5e:87:3e:51:d0:19:
f1:dc:2e:eb:90:d2:45:c3:28:6e:0d:87:fe:c9:a3:
89:3b:4e:38:88:4e:7a:fc:59:4b:27:45:af:7f:f9:
15:20:0e:41:e1:76:42:71:f5:e1:ab:0a:74:e6:f3:
99:9c:a8:11:9a:70:9a:ae:ab:75:e0:e0:d6:ff:b8:
2e:6c:97:96:98:6b:11:0c:73:a6:46:9e:9f:61:4c:
ed:35:91:82:c8:4b:7a:02:54:ed:48:e6:eb:c1:4c:
aa:c5:e6:39:88:47:e6:92:95:48:0b:bc:a1:44:6e:
26:d9:30:a8:e1:0c:87:68:9a:b7:e1:b6:e8:79:20:
c5:d0:06:20:f2:55:23:9d:59:29:9d:7e:e2:2b:cf:
ab:82:77:1b:af:2a:49:2b:38:66:ec:ad:87:11:92:
31:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:FF:23:17:5E:0C:29:46:4B:63:C1:A9:37:C0:50:42:AE:33:A7:E0
X509v3 Authority Key Identifier:
keyid:2C:73:33:DB:CD:3F:CA:07:87:80:38:37:B6:CB:AE:31:AC:0C:4B:65
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E3FD3/21DE5B9AD49511E9A27DC92FC4F9AE02/LHMz280_ygeHgDg3tsuuMawMS2U.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LHMz280_ygeHgDg3tsuuMawMS2U.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3FD3/21DE5B9AD49511E9A27DC92FC4F9AE02/C9FE84B2D49511E9937D6E30C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.168.0/22
IPv6:
2403:bdc0::/32
Signature Algorithm: sha256WithRSAEncryption
42:1f:c4:9b:b1:6f:07:96:3c:eb:99:33:be:6b:cd:95:a3:00:
cb:85:51:d6:a8:99:c5:b3:40:fa:df:27:c6:74:f6:c7:c9:a7:
8f:09:82:92:3a:d2:a6:45:a7:2e:84:7f:3f:68:c3:f2:8d:ef:
e1:de:9b:5c:a0:b4:71:77:5e:2c:d7:19:aa:a2:cb:cd:0f:1d:
b1:db:4d:a0:ea:03:68:b6:0f:27:f1:cc:cf:80:0e:0b:0d:e6:
b0:3b:2e:a2:ab:fa:0a:2c:fd:c1:d6:12:4a:f5:56:c3:ff:7f:
bd:e5:22:e4:91:b9:28:45:e7:00:d6:0c:84:c5:d3:1e:aa:f2:
7c:83:d8:27:ea:f0:ba:56:f8:85:f5:8f:6d:9f:a3:1a:67:d5:
d9:ec:f8:db:74:bf:75:03:af:6e:78:a1:c2:78:0f:bd:fb:1a:
ca:a7:60:c7:67:ca:c5:e0:22:65:3c:d2:39:64:53:94:7f:e7:
7b:5f:53:c7:4c:51:aa:54:24:15:85:da:66:d3:cc:fc:99:0b:
78:2a:ac:e9:13:d3:d8:da:a2:fb:65:a9:cd:3c:e5:0d:01:c4:
aa:40:05:33:24:ae:53:0a:8d:22:e5:82:72:81:b2:0b:74:c2:
b7:b2:b0:ab:a0:96:1a:92:4b:99:db:12:ca:39:5b:03:fa:10:
c9:9b:28:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:32 2024 by rpki-client on console-ams.rpki-client.org