Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/AF221B0EA8C311EC8F560C42C4F9AE02.roa
File: AF221B0EA8C311EC8F560C42C4F9AE02.roa (raw, json)
Hash identifier: y9qqZb4b7H9U6AWOHt8wZx50eIFoVvDS53ZPprBRaXc=
Subject key identifier: 8E:82:B4:72:9E:80:85:46:05:49:EE:DC:B2:B1:5B:EF:0C:D7:81:21
Certificate issuer: /CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C
Certificate serial: 25B0
Authority key identifier: BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/AF221B0EA8C311EC8F560C42C4F9AE02.roa
Signing time: Wed 22 Jun 2022 18:23:04 +0000
ROA not before: Wed 22 Jun 2022 18:23:04 +0000
ROA not after: Thu 02 Mar 2023 00:00:00 +0000
asID: 45458
IP address blocks: 27.100.40.0/21 maxlen: 24
27.100.41.0/29 maxlen: 29
49.0.112.0/20 maxlen: 20
49.0.112.0/21 maxlen: 24
49.0.120.0/21 maxlen: 24
49.229.16.0/20 maxlen: 24
49.229.32.0/19 maxlen: 19
49.229.32.0/20 maxlen: 24
49.229.48.0/24 maxlen: 24
49.229.49.0/24 maxlen: 24
49.229.50.0/24 maxlen: 24
49.229.53.0/24 maxlen: 24
49.229.54.0/24 maxlen: 24
49.229.55.0/24 maxlen: 24
49.229.56.0/24 maxlen: 24
49.229.57.0/24 maxlen: 24
49.229.58.0/24 maxlen: 24
49.229.59.0/24 maxlen: 24
49.229.60.0/24 maxlen: 24
49.229.61.0/24 maxlen: 24
49.229.62.0/24 maxlen: 24
49.229.63.0/24 maxlen: 24
49.229.64.0/19 maxlen: 19
49.229.64.0/24 maxlen: 24
49.229.65.0/24 maxlen: 24
49.229.66.0/24 maxlen: 24
49.229.67.0/24 maxlen: 24
49.229.69.0/24 maxlen: 24
49.229.70.0/24 maxlen: 24
49.229.71.0/24 maxlen: 24
49.229.72.0/24 maxlen: 24
49.229.73.0/24 maxlen: 24
49.229.74.0/24 maxlen: 24
49.229.76.0/24 maxlen: 24
49.229.77.0/24 maxlen: 24
49.229.78.0/24 maxlen: 24
49.229.79.0/24 maxlen: 24
49.229.80.0/24 maxlen: 24
49.229.81.0/24 maxlen: 24
49.229.82.0/24 maxlen: 24
49.229.83.0/24 maxlen: 24
49.229.84.0/24 maxlen: 24
49.229.85.0/24 maxlen: 24
49.229.86.0/24 maxlen: 24
49.229.87.0/24 maxlen: 24
49.229.96.0/20 maxlen: 20
49.229.96.0/24 maxlen: 24
49.229.97.0/24 maxlen: 24
49.229.98.0/24 maxlen: 24
49.229.99.0/24 maxlen: 24
49.229.102.0/24 maxlen: 24
49.229.103.0/24 maxlen: 24
49.229.104.0/24 maxlen: 24
49.229.105.0/24 maxlen: 24
49.229.106.0/24 maxlen: 24
49.229.107.0/24 maxlen: 24
49.229.108.0/24 maxlen: 24
49.229.109.0/24 maxlen: 24
49.229.110.0/24 maxlen: 24
49.229.152.0/21 maxlen: 21
49.229.152.0/23 maxlen: 23
49.229.154.0/24 maxlen: 24
49.229.155.0/24 maxlen: 24
49.229.156.0/24 maxlen: 24
49.229.157.0/24 maxlen: 24
49.229.158.0/24 maxlen: 24
49.229.159.0/24 maxlen: 24
49.231.0.0/19 maxlen: 24
49.231.32.0/22 maxlen: 24
49.231.36.0/22 maxlen: 24
49.231.40.0/22 maxlen: 24
49.231.64.0/20 maxlen: 24
49.231.80.0/21 maxlen: 24
49.231.88.0/21 maxlen: 24
49.231.128.0/21 maxlen: 21
49.231.131.0/24 maxlen: 24
49.231.135.0/24 maxlen: 24
49.231.136.0/21 maxlen: 24
49.231.144.0/20 maxlen: 24
49.231.160.0/19 maxlen: 24
49.231.192.0/18 maxlen: 24
58.64.0.0/19 maxlen: 23
58.64.0.0/20 maxlen: 24
58.64.16.0/21 maxlen: 24
58.64.25.0/24 maxlen: 24
58.64.26.0/23 maxlen: 24
58.64.28.0/22 maxlen: 24
58.64.32.0/20 maxlen: 24
103.3.65.0/24 maxlen: 24
103.3.66.0/23 maxlen: 24
103.48.12.0/24 maxlen: 24
110.49.0.0/17 maxlen: 23
110.49.0.0/18 maxlen: 24
110.49.64.0/20 maxlen: 24
110.49.80.0/21 maxlen: 24
110.49.88.0/24 maxlen: 24
110.49.90.0/23 maxlen: 24
110.49.92.0/22 maxlen: 24
110.49.96.0/19 maxlen: 24
110.49.144.0/24 maxlen: 24
110.49.150.0/24 maxlen: 24
110.49.169.0/24 maxlen: 24
115.178.56.0/24 maxlen: 24
115.178.58.0/24 maxlen: 24
119.31.4.0/22 maxlen: 22
119.31.64.0/24 maxlen: 24
202.80.224.0/19 maxlen: 24
2405:9800:7::/48 maxlen: 48
2405:9800:9::/48 maxlen: 48
2405:9800:a::/48 maxlen: 48
2405:9800:9802::/48 maxlen: 48
2405:9800:9803::/48 maxlen: 48
2405:9800:9811::/48 maxlen: 48
2405:9800:c000::/36 maxlen: 48
2405:9800:d000::/36 maxlen: 48
2405:9800:f000::/36 maxlen: 36
2405:9800:f000::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9648 (0x25b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C
Validity
Not Before: Jun 22 18:23:04 2022 GMT
Not After : Mar 2 00:00:00 2023 GMT
Subject: CN=62b35e08-9e46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:f9:cd:32:03:41:26:94:f4:79:f4:05:8d:84:
34:7b:4e:92:f7:e0:7b:da:fe:1d:ae:9e:5d:ca:0f:
13:35:a5:9c:39:19:8b:55:1b:b4:6c:b1:ef:cc:97:
ba:04:c9:da:78:8c:63:a4:ca:13:1b:b7:d8:91:55:
e8:b0:fe:34:a2:0a:f9:71:8b:3c:df:a0:8f:98:b7:
63:a9:20:48:43:be:15:ca:91:53:08:93:2d:ab:c2:
29:cc:a9:cb:cd:cf:fe:09:a7:a1:f6:e6:e6:15:a1:
d0:f5:d6:e9:1c:54:30:86:85:e4:8b:a6:60:d2:02:
05:cb:fa:02:16:12:78:8f:11:ca:cd:e4:49:fe:29:
fe:e1:9a:76:6b:9e:d7:98:c5:29:98:93:da:d9:45:
e4:6d:af:ba:b6:d9:12:69:6a:d3:4f:e2:54:a6:b1:
11:fb:af:79:5b:ec:0d:54:8e:56:89:8e:d3:ce:17:
ec:9a:7c:36:33:66:ef:91:d1:31:11:bc:55:f9:2c:
85:c3:2d:89:f1:63:f4:5b:35:38:af:a0:ba:21:fd:
43:b2:db:0e:f7:a2:cc:76:76:30:ec:6b:9c:f1:05:
c4:6c:f7:dd:cc:8c:2a:9b:e0:63:ac:02:f0:8c:34:
2e:40:a5:2d:2b:5c:05:cb:e2:40:0f:34:4f:5e:4c:
63:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:82:B4:72:9E:80:85:46:05:49:EE:DC:B2:B1:5B:EF:0C:D7:81:21
X509v3 Authority Key Identifier:
keyid:BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/AF221B0EA8C311EC8F560C42C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
27.100.40.0/21
49.0.112.0/20
49.229.16.0-49.229.111.255
49.229.152.0/21
49.231.0.0-49.231.43.255
49.231.64.0/19
49.231.128.0/17
58.64.0.0-58.64.47.255
103.3.65.0-103.3.67.255
103.48.12.0/24
110.49.0.0/17
110.49.144.0/24
110.49.150.0/24
110.49.169.0/24
115.178.56.0/24
115.178.58.0/24
119.31.4.0/22
119.31.64.0/24
202.80.224.0/19
IPv6:
2405:9800:7::/48
2405:9800:9::-2405:9800:a:ffff:ffff:ffff:ffff:ffff
2405:9800:9802::/47
2405:9800:9811::/48
2405:9800:c000::/35
2405:9800:f000::/36
Signature Algorithm: sha256WithRSAEncryption
72:53:ed:66:70:96:62:8c:98:05:c3:e4:5e:c3:8d:4e:93:43:
75:c5:77:8e:ac:06:dd:e2:39:4a:09:5f:88:7d:de:c3:ad:bd:
4f:2c:7a:8c:e5:7e:9a:b3:f0:ee:0f:e8:9d:d5:53:94:ed:cd:
b0:e9:b8:69:7b:ae:75:ec:f8:3f:ea:14:d1:7e:13:db:2b:b2:
0f:c2:71:55:3d:82:24:8a:44:78:6f:0d:b7:22:89:db:3f:3d:
d3:b4:df:a5:76:35:01:c2:6e:80:6c:b7:66:ea:98:da:ca:05:
5a:e7:cb:d0:8f:0d:89:f8:79:04:72:03:2e:1b:69:ca:fa:77:
5c:63:75:ec:bb:b1:bb:3c:3f:01:47:ff:c6:67:14:87:bb:bc:
94:1d:f1:c5:96:67:73:a9:69:57:d7:f7:9d:19:a9:bc:06:4e:
19:05:eb:4c:61:e0:e6:9f:34:4b:d0:d1:58:5a:e3:b7:3d:34:
43:85:bf:8f:37:f0:c7:28:15:c6:48:b4:c9:a5:4b:8a:b9:7c:
f7:11:cc:53:19:7b:63:6c:cb:f3:ee:8f:c3:05:41:1e:e0:99:
87:80:55:e2:2d:69:89:a2:3d:6f:52:c0:f2:f5:7e:8a:d1:19:
65:d9:81:65:d1:1d:e0:b5:23:a3:98:d7:b0:1e:b5:f8:01:a0:
79:f0:ff:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:47 2024 by rpki-client on console-ams.rpki-client.org