Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9139B49/0780B990C9F811E79EF12009C4F9AE02/189F8C0C636B11EE86F21D51C4F9AE02.roa
File: 189F8C0C636B11EE86F21D51C4F9AE02.roa (raw, json)
Hash identifier: v/KoPzIafK3k5iyQFGxw6Vi2juOnRUx9uDDAr7Exq84=
Subject key identifier: AC:36:24:E7:01:73:8A:8E:38:F1:AC:FA:14:10:1E:5A:E8:4F:10:38
Certificate issuer: /CN=A9139B49/serialNumber=4EE540A48AD973FBD831ABD02603B5FB0FB945BE
Certificate serial: 16E5
Authority key identifier: 4E:E5:40:A4:8A:D9:73:FB:D8:31:AB:D0:26:03:B5:FB:0F:B9:45:BE
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TuVApIrZc_vYMavQJgO1-w-5Rb4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9139B49/0780B990C9F811E79EF12009C4F9AE02/189F8C0C636B11EE86F21D51C4F9AE02.roa
Signing time: Sun 15 Oct 2023 19:36:02 +0000
ROA not before: Sun 15 Oct 2023 19:36:02 +0000
ROA not after: Sun 31 Mar 2024 00:00:00 +0000
asID: 17911
IP address blocks: 122.129.64.0/24 maxlen: 24
122.129.65.0/24 maxlen: 24
122.129.66.0/24 maxlen: 24
122.129.67.0/24 maxlen: 24
122.129.68.0/24 maxlen: 24
122.129.69.0/24 maxlen: 24
122.129.70.0/24 maxlen: 24
122.129.71.0/24 maxlen: 24
122.129.72.0/24 maxlen: 24
122.129.73.0/24 maxlen: 24
122.129.74.0/24 maxlen: 24
122.129.75.0/24 maxlen: 24
122.129.76.0/24 maxlen: 24
122.129.77.0/24 maxlen: 24
122.129.78.0/24 maxlen: 24
122.129.79.0/24 maxlen: 24
122.129.80.0/24 maxlen: 24
122.129.81.0/24 maxlen: 24
122.129.82.0/24 maxlen: 24
122.129.83.0/24 maxlen: 24
122.129.84.0/24 maxlen: 24
122.129.85.0/24 maxlen: 24
122.129.87.0/24 maxlen: 24
122.129.88.0/24 maxlen: 24
122.129.89.0/24 maxlen: 24
122.129.90.0/24 maxlen: 24
122.129.91.0/24 maxlen: 24
122.129.92.0/24 maxlen: 24
122.129.93.0/24 maxlen: 24
122.129.94.0/24 maxlen: 24
122.129.95.0/24 maxlen: 24
203.128.0.0/24 maxlen: 24
203.128.1.0/24 maxlen: 24
203.128.2.0/24 maxlen: 24
203.128.3.0/24 maxlen: 24
203.128.4.0/24 maxlen: 24
203.128.5.0/24 maxlen: 24
203.128.6.0/24 maxlen: 24
203.128.7.0/24 maxlen: 24
203.128.8.0/24 maxlen: 24
203.128.9.0/24 maxlen: 24
203.128.10.0/24 maxlen: 24
203.128.11.0/24 maxlen: 24
203.128.12.0/24 maxlen: 24
203.128.13.0/24 maxlen: 24
203.128.14.0/24 maxlen: 24
203.128.15.0/24 maxlen: 24
203.128.16.0/24 maxlen: 24
203.128.17.0/24 maxlen: 24
203.128.18.0/24 maxlen: 24
203.128.19.0/24 maxlen: 24
203.128.20.0/24 maxlen: 24
203.128.21.0/24 maxlen: 24
203.128.22.0/24 maxlen: 24
203.128.23.0/24 maxlen: 24
203.128.24.0/24 maxlen: 24
203.128.25.0/24 maxlen: 24
203.128.26.0/24 maxlen: 24
203.128.27.0/24 maxlen: 24
203.128.28.0/24 maxlen: 24
203.128.29.0/24 maxlen: 24
203.128.30.0/24 maxlen: 24
203.128.31.0/24 maxlen: 24
2400:4f00::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5861 (0x16e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9139B49/serialNumber=4EE540A48AD973FBD831ABD02603B5FB0FB945BE
Validity
Not Before: Oct 15 19:36:02 2023 GMT
Not After : Mar 31 00:00:00 2024 GMT
Subject: CN=652c3f21-153e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:e1:3f:0d:70:77:fe:75:a5:a6:a1:c0:4e:aa:
46:17:75:5e:91:9e:0e:ba:70:16:6e:0c:7b:ec:c2:
e5:1c:39:aa:d1:94:65:e8:2c:c0:41:3f:c3:5c:aa:
40:f7:69:98:23:58:69:0b:06:e4:07:1a:13:75:e4:
3b:b2:8d:ba:71:a7:ba:1c:8d:81:6d:23:e0:99:a1:
5d:5e:4a:dd:0b:55:a9:4a:1c:5d:e1:c6:a2:5e:81:
6f:ae:cb:7d:74:35:66:2b:a9:22:c7:51:73:fb:61:
a8:b2:75:9c:b2:ed:cb:53:51:d7:dc:97:04:0c:3d:
9d:51:78:29:2e:a2:75:60:70:cc:50:99:dd:5d:29:
3b:2e:f1:f3:1f:9e:7d:f3:f5:27:0d:0e:75:b1:ca:
b8:21:4d:5d:c0:cb:07:3c:06:57:4f:aa:02:ba:5e:
e2:ca:bb:38:1e:da:d8:07:83:75:1b:d0:06:8f:14:
cf:a3:43:a5:17:a0:d2:55:31:da:5c:90:66:75:b6:
03:fc:80:63:c8:85:a9:e8:e8:fe:9c:91:b5:ca:0c:
be:b3:e5:37:90:7e:86:60:74:b1:19:03:6f:9a:8b:
93:75:a2:05:8e:62:95:b7:0a:92:00:35:7f:05:80:
c6:c9:6b:0a:15:53:f2:3e:2b:38:c1:00:1b:01:04:
e0:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:36:24:E7:01:73:8A:8E:38:F1:AC:FA:14:10:1E:5A:E8:4F:10:38
X509v3 Authority Key Identifier:
keyid:4E:E5:40:A4:8A:D9:73:FB:D8:31:AB:D0:26:03:B5:FB:0F:B9:45:BE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9139B49/0780B990C9F811E79EF12009C4F9AE02/TuVApIrZc_vYMavQJgO1-w-5Rb4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TuVApIrZc_vYMavQJgO1-w-5Rb4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139B49/0780B990C9F811E79EF12009C4F9AE02/189F8C0C636B11EE86F21D51C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
122.129.64.0-122.129.85.255
122.129.87.0-122.129.95.255
203.128.0.0/19
IPv6:
2400:4f00::/36
Signature Algorithm: sha256WithRSAEncryption
1b:2e:4e:6d:fd:ef:e7:b0:40:03:cc:bb:99:7d:20:c8:f4:03:
be:01:cd:8b:71:cf:7d:b2:3e:61:39:50:cb:4c:5a:2d:35:30:
6d:67:fb:66:68:7d:94:50:d6:c8:0b:67:5b:c4:22:0b:d9:23:
92:2b:36:ca:c4:08:b6:a2:cf:3a:74:3a:d8:03:c9:1c:42:65:
6b:5b:da:ce:d2:f5:25:21:3e:d4:2d:2f:76:4b:8a:c8:be:0a:
a0:11:32:ce:14:80:c7:c6:ee:da:40:b4:9a:fd:59:56:6d:3f:
fd:04:e7:8f:35:e3:6c:6c:73:64:1c:41:ac:f4:d3:fb:cb:bb:
92:0d:87:32:cf:f3:d1:90:9d:05:fb:09:90:25:c1:f8:42:5c:
f1:71:9f:28:6c:d2:95:36:75:d1:02:9a:5b:e7:70:c9:d3:c0:
62:fd:fb:68:b5:fe:23:71:0a:24:32:fd:4d:61:ab:8c:e4:fb:
a3:65:a1:75:65:f6:2e:19:81:6e:5a:f1:07:27:03:cc:d3:cc:
62:c4:c6:f9:24:ac:82:b5:4e:5b:03:b4:f1:30:5f:0f:43:ac:
c9:fc:8d:7f:4c:9b:36:a1:ee:fc:72:6c:9e:e7:ac:e1:2d:30:
11:ea:b0:3d:37:da:d4:a8:85:e8:e2:0f:15:aa:cc:bb:44:41:
e8:60:d5:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:54 2024 by rpki-client on console-ams.rpki-client.org