Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/DCE0586CCCB311ECADC6F875C4F9AE02.roa
File: DCE0586CCCB311ECADC6F875C4F9AE02.roa (raw, json)
Hash identifier: oX9btQkQu7ut5ZbIYkkz2PlALYj4AVb6ZCxJmEV2x4M=
Subject key identifier: 9F:4F:E0:87:1C:6D:D1:B6:06:20:B5:7B:35:3A:13:23:B8:93:91:C5
Certificate issuer: /CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C
Certificate serial: 253D
Authority key identifier: BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/DCE0586CCCB311ECADC6F875C4F9AE02.roa
Signing time: Thu 05 May 2022 20:42:22 +0000
ROA not before: Thu 05 May 2022 20:42:22 +0000
ROA not after: Thu 02 Mar 2023 00:00:00 +0000
asID: 45430
IP address blocks: 49.0.64.0/18 maxlen: 18
49.229.0.0/16 maxlen: 16
49.229.0.0/20 maxlen: 20
49.229.8.0/24 maxlen: 24
49.229.31.0/24 maxlen: 24
49.229.33.0/24 maxlen: 24
49.229.68.0/24 maxlen: 24
49.229.94.0/24 maxlen: 24
49.229.112.0/21 maxlen: 21
49.229.128.0/17 maxlen: 17
49.229.160.0/19 maxlen: 19
49.229.192.0/19 maxlen: 19
49.229.224.0/19 maxlen: 19
49.230.0.0/16 maxlen: 16
49.230.40.0/24 maxlen: 24
49.230.41.0/24 maxlen: 24
49.230.42.0/24 maxlen: 24
49.230.43.0/24 maxlen: 24
49.231.0.0/16 maxlen: 16
49.231.32.0/21 maxlen: 21
49.231.44.0/22 maxlen: 24
49.231.48.0/20 maxlen: 24
49.231.64.0/21 maxlen: 21
49.231.70.0/24 maxlen: 24
49.231.71.0/24 maxlen: 24
49.231.80.0/20 maxlen: 20
49.231.96.0/19 maxlen: 24
58.64.0.0/17 maxlen: 17
58.64.11.0/24 maxlen: 24
58.136.0.0/16 maxlen: 16
103.3.64.0/22 maxlen: 22
103.3.64.0/24 maxlen: 24
110.49.113.0/24 maxlen: 24
115.178.56.0/22 maxlen: 22
115.178.57.0/24 maxlen: 24
115.178.59.0/24 maxlen: 24
119.31.0.0/17 maxlen: 17
182.232.0.0/16 maxlen: 16
202.80.224.0/19 maxlen: 19
2001:df2:400::/48 maxlen: 48
2001:44c8::/32 maxlen: 32
2405:9800::/32 maxlen: 32
2405:9800:8::/48 maxlen: 48
2405:9800:c::/48 maxlen: 48
2405:9800:d::/48 maxlen: 48
2405:9800:10::/48 maxlen: 48
2405:9800:12::/48 maxlen: 48
2405:9800:13::/48 maxlen: 48
2405:9800:14::/48 maxlen: 48
2405:9800:20::/48 maxlen: 48
2405:9800:21::/48 maxlen: 48
2405:9800:30::/44 maxlen: 48
2405:9800:40::/48 maxlen: 48
2405:9800:41::/48 maxlen: 48
2405:9800:42::/48 maxlen: 48
2405:9800:60::/44 maxlen: 44
2405:9800:9800::/48 maxlen: 48
2405:9800:9805::/48 maxlen: 48
2405:9800:9813::/48 maxlen: 48
2405:9800:b000::/36 maxlen: 36
2405:9800:c925::/48 maxlen: 48
2405:9800:c92e::/48 maxlen: 48
2405:9800:f00f::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9533 (0x253d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C
Validity
Not Before: May 5 20:42:22 2022 GMT
Not After : Mar 2 00:00:00 2023 GMT
Subject: CN=627436ae-c703
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ad:a1:b4:4f:ae:ef:c3:d2:d9:2c:43:79:88:
79:88:a7:81:f3:1c:57:29:28:b3:5d:14:a0:84:f9:
d9:41:d9:ae:b2:12:de:dd:00:bc:92:21:9b:3b:67:
a0:97:70:ab:db:02:28:ab:dc:45:a5:ce:c0:8f:f4:
73:1e:c7:5f:81:21:79:5e:49:5c:a1:c2:8d:79:39:
d6:1e:af:7d:93:f7:bd:0b:19:31:1c:f3:49:8e:6b:
ae:cb:af:17:51:3b:d3:4c:34:dc:9c:ed:ee:b5:67:
80:34:eb:74:e6:47:fd:d8:9d:1b:d9:95:a0:75:53:
0f:9a:c9:0a:19:b8:27:32:83:57:01:d2:91:c7:bd:
72:76:48:1e:b0:74:8a:3c:be:45:97:73:25:4a:7b:
44:58:83:a7:d7:51:be:7d:86:b5:c4:48:0d:d4:2e:
c0:b2:e1:3a:68:42:40:fc:e6:7f:e2:79:34:be:69:
82:d9:6c:7f:59:95:4d:fd:38:8f:80:f7:95:5c:00:
86:2c:8c:6c:da:79:86:05:22:fd:eb:2e:b1:5e:b6:
31:6a:ae:aa:07:b4:8f:2c:a2:5f:b8:e3:91:f5:48:
2f:36:47:b7:5f:78:9f:eb:3c:0e:2c:19:cb:a0:99:
9d:fe:82:cd:09:ff:ca:83:af:a9:c5:65:5c:67:ed:
b6:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:4F:E0:87:1C:6D:D1:B6:06:20:B5:7B:35:3A:13:23:B8:93:91:C5
X509v3 Authority Key Identifier:
keyid:BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/DCE0586CCCB311ECADC6F875C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.0.64.0/18
49.229.0.0-49.231.255.255
58.64.0.0/17
58.136.0.0/16
103.3.64.0/22
110.49.113.0/24
115.178.56.0/22
119.31.0.0/17
182.232.0.0/16
202.80.224.0/19
IPv6:
2001:df2:400::/48
2001:44c8::/32
2405:9800::/32
Signature Algorithm: sha256WithRSAEncryption
21:29:ab:ed:5a:1d:d9:9f:02:70:30:03:15:d2:52:bb:13:ce:
a0:4e:f6:7d:19:5d:c4:5c:5f:c8:a1:53:d7:d9:de:b7:d4:4f:
fd:7e:f2:29:f2:9b:13:3c:8a:ef:a2:ef:d0:d9:12:97:e8:09:
7e:bc:d8:15:88:b2:30:fd:3b:b9:93:74:2e:33:89:9a:88:04:
d8:a3:e1:b6:dd:67:a3:20:8a:45:7b:60:df:ed:e7:47:60:c5:
da:0e:a2:4e:bd:08:72:cc:6e:f0:29:ee:0e:f6:01:fd:11:5a:
2d:66:07:48:f4:d4:25:67:2a:95:94:43:64:a9:5e:6d:a3:4b:
a0:f9:e3:39:64:29:8c:ef:48:12:20:27:8c:cb:b0:95:42:12:
17:f6:44:a1:90:b5:8a:a7:d7:b1:39:3c:d1:f6:d8:dc:75:e9:
1e:a4:52:ad:c6:05:c5:cb:c3:a3:3b:f7:ef:92:87:be:9a:1c:
60:5d:e1:23:34:47:46:67:4c:72:22:89:5e:db:57:86:b2:88:
9c:f8:ab:c3:39:9f:3c:d0:11:10:44:ba:06:0a:70:78:de:00:
3b:14:2d:87:d1:7e:14:7e:a9:68:35:b9:cc:a7:49:49:89:a7:
c9:10:d1:dc:8c:43:91:7f:c5:cb:cb:c0:0e:50:fd:ea:c7:69:
5d:cb:62:97
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:36 2023 by rpki-client on console-fra.rpki-client.org