Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9136DD6/D162E03A3D3A11ECBEF77C76C4F9AE02/7115BA62279A11EEBD5FCF7DC4F9AE02.roa
File: 7115BA62279A11EEBD5FCF7DC4F9AE02.roa (raw, json)
Hash identifier: DaOm+BurfyJGfjIWpgOnQwP36Dax9WG2eDmWEiM7jPo=
Subject key identifier: 2E:F7:4C:86:F2:E2:8F:AF:8D:8F:3D:CF:2B:13:6F:11:87:FB:D6:C8
Certificate issuer: /CN=A9136DD6/serialNumber=F7F9D8A4355D673B9D4E7F155D3A78E5E660FEA5
Certificate serial: 0332
Authority key identifier: F7:F9:D8:A4:35:5D:67:3B:9D:4E:7F:15:5D:3A:78:E5:E6:60:FE:A5
Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9_nYpDVdZzudTn8VXTp45eZg_qU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9136DD6/D162E03A3D3A11ECBEF77C76C4F9AE02/7115BA62279A11EEBD5FCF7DC4F9AE02.roa
Signing time: Fri 21 Jul 2023 11:54:55 +0000
ROA not before: Fri 21 Jul 2023 11:54:54 +0000
ROA not after: Wed 31 Jan 2024 00:00:00 +0000
asID: 17547
IP address blocks: 178.160.128.0/18 maxlen: 19
178.160.128.0/24 maxlen: 24
178.160.129.0/24 maxlen: 24
178.160.130.0/24 maxlen: 24
178.160.131.0/24 maxlen: 24
178.160.132.0/24 maxlen: 24
178.160.133.0/24 maxlen: 24
178.160.135.0/24 maxlen: 24
178.160.137.0/24 maxlen: 24
178.160.138.0/24 maxlen: 24
178.160.139.0/24 maxlen: 24
178.160.140.0/24 maxlen: 24
178.160.141.0/24 maxlen: 24
178.160.142.0/24 maxlen: 24
178.160.143.0/24 maxlen: 24
178.160.144.0/24 maxlen: 24
178.160.145.0/24 maxlen: 24
178.160.146.0/24 maxlen: 24
178.160.147.0/24 maxlen: 24
178.160.148.0/24 maxlen: 24
178.160.149.0/24 maxlen: 24
178.160.150.0/24 maxlen: 24
178.160.151.0/24 maxlen: 24
178.160.152.0/24 maxlen: 24
178.160.153.0/24 maxlen: 24
178.160.154.0/24 maxlen: 24
178.160.155.0/24 maxlen: 24
178.160.156.0/24 maxlen: 24
178.160.157.0/24 maxlen: 24
178.160.158.0/24 maxlen: 24
178.160.159.0/24 maxlen: 24
178.160.160.0/24 maxlen: 24
178.160.161.0/24 maxlen: 24
178.160.162.0/24 maxlen: 24
178.160.163.0/24 maxlen: 24
178.160.164.0/24 maxlen: 24
178.160.165.0/24 maxlen: 24
178.160.166.0/24 maxlen: 24
178.160.167.0/24 maxlen: 24
178.160.168.0/24 maxlen: 24
178.160.169.0/24 maxlen: 24
178.160.170.0/24 maxlen: 24
178.160.171.0/24 maxlen: 24
178.160.172.0/24 maxlen: 24
178.160.173.0/24 maxlen: 24
178.160.174.0/24 maxlen: 24
178.160.175.0/24 maxlen: 24
178.160.176.0/24 maxlen: 24
178.160.177.0/24 maxlen: 24
178.160.178.0/24 maxlen: 24
178.160.179.0/24 maxlen: 24
178.160.180.0/24 maxlen: 24
178.160.181.0/24 maxlen: 24
178.160.182.0/24 maxlen: 24
178.160.183.0/24 maxlen: 24
178.160.184.0/24 maxlen: 24
178.160.185.0/24 maxlen: 24
178.160.186.0/24 maxlen: 24
178.160.187.0/24 maxlen: 24
178.160.188.0/24 maxlen: 24
178.160.189.0/24 maxlen: 24
178.160.190.0/24 maxlen: 24
178.160.191.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 818 (0x332)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9136DD6/serialNumber=F7F9D8A4355D673B9D4E7F155D3A78E5E660FEA5
Validity
Not Before: Jul 21 11:54:54 2023 GMT
Not After : Jan 31 00:00:00 2024 GMT
Subject: CN=64ba720e-268e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:ef:4f:0e:75:19:97:f8:02:66:49:0e:4b:36:
6c:81:b7:22:fd:c1:82:7a:f9:c2:6d:2e:12:80:07:
a8:bc:33:42:2f:35:9e:3d:2f:97:fd:56:04:1b:92:
52:f6:c7:32:80:34:70:d8:04:d8:c9:c1:7b:7c:33:
09:44:ea:72:40:f7:9b:0d:b9:1f:4a:19:0d:42:f0:
17:81:d0:68:89:b5:ce:de:71:d3:50:f1:c8:fe:68:
ea:01:c4:b4:ad:83:c6:a5:e5:bb:7e:a9:8b:97:2f:
9e:7d:80:2d:64:41:fd:53:90:53:ff:01:8c:28:f0:
58:5b:5f:3a:71:b3:6d:c3:e4:e8:a9:b9:51:2a:b4:
06:f5:dd:9a:e9:bf:18:3f:70:9e:16:3f:52:63:9b:
60:4c:76:c2:91:0b:19:b0:88:a4:2c:bd:c8:bf:34:
7a:c1:de:9e:0c:6b:cd:ee:f5:a1:bc:78:3e:1f:53:
0c:c7:63:31:b5:73:33:2f:49:fd:6b:dd:e9:8c:95:
f4:ea:e3:08:84:5b:d9:38:19:a3:ad:ec:6c:11:e3:
93:71:5f:51:b9:af:a2:5e:26:fe:bc:9d:9d:b4:ba:
23:34:28:4d:41:19:26:20:0b:3c:97:32:15:84:e8:
da:a6:5d:fd:f6:aa:b8:80:fd:ef:8d:72:d9:59:5c:
21:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:F7:4C:86:F2:E2:8F:AF:8D:8F:3D:CF:2B:13:6F:11:87:FB:D6:C8
X509v3 Authority Key Identifier:
keyid:F7:F9:D8:A4:35:5D:67:3B:9D:4E:7F:15:5D:3A:78:E5:E6:60:FE:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9136DD6/D162E03A3D3A11ECBEF77C76C4F9AE02/9_nYpDVdZzudTn8VXTp45eZg_qU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9_nYpDVdZzudTn8VXTp45eZg_qU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136DD6/D162E03A3D3A11ECBEF77C76C4F9AE02/7115BA62279A11EEBD5FCF7DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
178.160.128.0/18
Signature Algorithm: sha256WithRSAEncryption
3f:d7:c6:7b:8c:80:2c:74:1b:42:2b:f3:62:39:d8:a2:00:04:
a1:db:0f:d9:d2:61:30:a7:50:0c:9a:69:dd:87:10:27:62:cd:
87:20:1b:0e:cc:00:60:52:19:03:9a:eb:c5:ce:ef:ab:5b:6a:
d1:39:f2:78:09:f4:2c:b8:ed:f7:38:71:56:bc:57:3f:25:73:
34:1e:9e:45:99:66:37:b2:b7:a0:d5:1e:e8:c1:e1:5f:2c:0f:
ff:62:7c:5b:04:f5:69:e3:d0:8e:4b:e5:a4:54:d8:f9:b6:c1:
82:9b:89:c6:40:f4:47:cf:f0:51:c7:8c:cd:29:d9:b6:c2:12:
72:41:6c:0e:1f:8a:35:4a:ec:de:87:c8:b4:d1:51:8e:16:fe:
e8:8c:05:06:99:cf:de:9f:dd:4c:65:87:3c:8d:6d:66:62:28:
0b:ab:27:5c:76:7a:79:06:14:67:67:0f:37:50:fa:88:f7:5e:
9a:38:03:0c:c9:81:12:a2:e9:52:10:7d:a6:6c:b5:e4:dc:90:
59:d7:d6:17:71:ba:74:7e:14:82:e4:cc:e9:98:bc:ea:74:4a:
6c:46:3a:b9:42:8a:60:42:9c:69:d8:a6:4b:a4:7d:e8:68:89:
1f:01:95:b3:df:bd:7f:0a:21:3d:63:c9:cc:b6:4c:c8:76:27:
8f:3a:e8:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:02 2024 by rpki-client on console-fra.rpki-client.org