Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/E0E998EA5EA611ECB7A8FE42C4F9AE02.roa
File: E0E998EA5EA611ECB7A8FE42C4F9AE02.roa (raw, json)
Hash identifier: mwwb0q5tU80MlOkNyAq4PTlQUNir5NEVKV2kjfJ2xHU=
Subject key identifier: 29:31:2A:9B:4F:DD:D3:B7:01:15:E6:AE:33:4E:88:DF:72:8A:FF:5C
Certificate issuer: /CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C
Certificate serial: 2516
Authority key identifier: BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/E0E998EA5EA611ECB7A8FE42C4F9AE02.roa
Signing time: Fri 22 Apr 2022 05:24:55 +0000
ROA not before: Fri 22 Apr 2022 05:24:54 +0000
ROA not after: Thu 02 Mar 2023 00:00:00 +0000
asID: 45430
IP address blocks: 49.0.64.0/18 maxlen: 18
49.229.0.0/16 maxlen: 16
49.229.0.0/20 maxlen: 20
49.229.8.0/24 maxlen: 24
49.229.31.0/24 maxlen: 24
49.229.33.0/24 maxlen: 24
49.229.68.0/24 maxlen: 24
49.229.94.0/24 maxlen: 24
49.229.112.0/21 maxlen: 21
49.229.128.0/17 maxlen: 17
49.229.160.0/19 maxlen: 19
49.229.192.0/19 maxlen: 19
49.229.224.0/19 maxlen: 19
49.230.0.0/16 maxlen: 16
49.230.40.0/24 maxlen: 24
49.230.41.0/24 maxlen: 24
49.230.42.0/24 maxlen: 24
49.230.43.0/24 maxlen: 24
49.231.0.0/16 maxlen: 16
49.231.32.0/21 maxlen: 21
49.231.44.0/22 maxlen: 24
49.231.48.0/20 maxlen: 24
49.231.64.0/21 maxlen: 21
49.231.70.0/24 maxlen: 24
49.231.71.0/24 maxlen: 24
49.231.80.0/20 maxlen: 20
49.231.96.0/19 maxlen: 24
58.64.0.0/17 maxlen: 17
58.64.0.0/24 maxlen: 24
58.64.11.0/24 maxlen: 24
58.136.0.0/16 maxlen: 16
103.3.64.0/22 maxlen: 22
103.3.64.0/24 maxlen: 24
110.49.113.0/24 maxlen: 24
115.178.56.0/22 maxlen: 22
115.178.57.0/24 maxlen: 24
115.178.59.0/24 maxlen: 24
119.31.0.0/17 maxlen: 17
182.232.0.0/16 maxlen: 16
202.80.224.0/19 maxlen: 19
2001:df2:400::/48 maxlen: 48
2001:44c8::/32 maxlen: 32
2405:9800::/32 maxlen: 32
2405:9800:8::/48 maxlen: 48
2405:9800:c::/48 maxlen: 48
2405:9800:d::/48 maxlen: 48
2405:9800:10::/48 maxlen: 48
2405:9800:12::/48 maxlen: 48
2405:9800:13::/48 maxlen: 48
2405:9800:14::/48 maxlen: 48
2405:9800:20::/48 maxlen: 48
2405:9800:21::/48 maxlen: 48
2405:9800:30::/44 maxlen: 48
2405:9800:40::/48 maxlen: 48
2405:9800:41::/48 maxlen: 48
2405:9800:42::/48 maxlen: 48
2405:9800:60::/44 maxlen: 44
2405:9800:9800::/48 maxlen: 48
2405:9800:9805::/48 maxlen: 48
2405:9800:9813::/48 maxlen: 48
2405:9800:b000::/36 maxlen: 36
2405:9800:c922::/48 maxlen: 48
2405:9800:c925::/48 maxlen: 48
2405:9800:c92e::/48 maxlen: 48
2405:9800:f00f::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9494 (0x2516)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C
Validity
Not Before: Apr 22 05:24:54 2022 GMT
Not After : Mar 2 00:00:00 2023 GMT
Subject: CN=62623c26-ab80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:84:e2:c6:f0:b2:85:bc:36:f9:93:d0:bc:d5:
ca:be:b4:db:18:f8:a8:52:cc:74:22:92:17:39:a3:
92:25:24:08:c1:44:d3:68:bf:5e:62:b6:c6:e6:6b:
87:12:7d:8e:ed:ff:f7:a2:0e:dd:b1:d9:a1:6d:a7:
d2:91:d0:7c:df:9c:de:a3:a5:ae:0b:c3:c8:ed:bc:
a9:42:f3:5f:b4:e3:98:5a:7b:62:47:6a:83:7c:d2:
a6:b0:8d:33:0d:72:37:50:f3:24:68:98:10:ba:9c:
a7:c0:79:d8:b2:59:46:bb:75:62:97:b6:7d:fe:69:
67:5a:eb:d9:8b:bf:03:5a:72:11:b6:a6:72:47:6a:
63:9f:b0:c5:c0:9b:bd:d6:5c:52:0d:69:27:4f:6b:
4b:bf:e8:17:1e:14:84:c3:07:89:0a:15:6b:44:fc:
74:a8:6c:75:72:e1:d2:81:76:22:e7:d1:f5:47:05:
c8:31:7a:38:e2:11:fa:96:87:a6:ce:b9:70:3f:20:
87:0c:9b:26:c8:87:3b:bc:86:48:43:16:1a:ab:9e:
67:61:0e:e1:a2:47:b8:7e:f4:09:26:03:00:ef:5c:
96:12:88:04:c7:a8:33:4f:fc:04:bb:f3:e3:a9:a4:
2b:9a:66:1b:27:f9:a4:ab:e3:f2:61:8e:10:31:9d:
43:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:31:2A:9B:4F:DD:D3:B7:01:15:E6:AE:33:4E:88:DF:72:8A:FF:5C
X509v3 Authority Key Identifier:
keyid:BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/E0E998EA5EA611ECB7A8FE42C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.0.64.0/18
49.229.0.0-49.231.255.255
58.64.0.0/17
58.136.0.0/16
103.3.64.0/22
110.49.113.0/24
115.178.56.0/22
119.31.0.0/17
182.232.0.0/16
202.80.224.0/19
IPv6:
2001:df2:400::/48
2001:44c8::/32
2405:9800::/32
Signature Algorithm: sha256WithRSAEncryption
9f:81:a5:77:9f:68:a2:5f:e7:cd:33:1a:c0:e1:14:d1:2d:d3:
d1:f9:cd:27:78:43:1c:63:36:f1:76:0b:5c:a3:55:74:09:60:
09:46:89:be:f4:e4:90:c3:0c:7c:a6:87:78:e9:e8:2c:b8:9c:
e0:b4:8b:e4:c9:1a:d5:9d:e2:b8:42:af:0a:93:09:cc:cf:c1:
85:73:33:20:fd:2f:0d:dd:9b:d4:2f:d8:e4:b4:d9:80:71:7e:
6d:8b:41:eb:b3:7d:27:56:35:85:d4:f8:8f:b8:bc:7e:fd:4a:
2c:45:ca:9f:51:6a:aa:ec:4e:fc:15:b6:45:2a:fc:1a:d9:95:
a1:e8:91:c4:ac:9f:64:d3:8e:85:5a:a3:da:c3:07:85:2d:8c:
f7:c8:69:cf:54:44:be:b4:c5:9d:b0:ee:99:cb:6f:c2:c7:29:
3c:ad:30:49:fa:b1:4c:68:8e:d5:be:9a:67:59:34:d5:e9:cb:
13:35:bc:4a:f5:0b:03:c3:62:ad:1b:8b:37:e4:25:39:fa:fd:
64:b9:bc:92:64:d9:e0:e3:34:af:d8:b4:8a:78:91:f7:2e:79:
df:80:3b:12:49:a5:5e:69:94:4b:b8:39:79:a6:a5:55:55:cb:
a9:0d:eb:d0:18:04:a9:1d:c7:c0:5c:09:d2:f1:71:a3:c7:e8:
49:b9:59:fe
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:34 2023 by rpki-client on console-ams.rpki-client.org