Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9139B49/0780B990C9F811E79EF12009C4F9AE02/C824136C2BA011EEB167496BC4F9AE02.roa
File: C824136C2BA011EEB167496BC4F9AE02.roa (raw, json)
Hash identifier: GitNAZ1ILWaxGedgmS5gS3JMv0eTyvCOTosYWP39suc=
Subject key identifier: 81:15:E3:CC:40:04:3A:08:46:DA:37:37:BC:EA:54:62:CE:8A:42:4F
Certificate issuer: /CN=A9139B49/serialNumber=4EE540A48AD973FBD831ABD02603B5FB0FB945BE
Certificate serial: 16D9
Authority key identifier: 4E:E5:40:A4:8A:D9:73:FB:D8:31:AB:D0:26:03:B5:FB:0F:B9:45:BE
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TuVApIrZc_vYMavQJgO1-w-5Rb4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9139B49/0780B990C9F811E79EF12009C4F9AE02/C824136C2BA011EEB167496BC4F9AE02.roa
Signing time: Thu 05 Oct 2023 10:00:59 +0000
ROA not before: Thu 05 Oct 2023 10:00:59 +0000
ROA not after: Sun 31 Mar 2024 00:00:00 +0000
asID: 17911
IP address blocks: 122.129.64.0/24 maxlen: 24
122.129.65.0/24 maxlen: 24
122.129.66.0/24 maxlen: 24
122.129.67.0/24 maxlen: 24
122.129.68.0/24 maxlen: 24
122.129.69.0/24 maxlen: 24
122.129.70.0/24 maxlen: 24
122.129.71.0/24 maxlen: 24
122.129.72.0/24 maxlen: 24
122.129.73.0/24 maxlen: 24
122.129.74.0/24 maxlen: 24
122.129.75.0/24 maxlen: 24
122.129.76.0/24 maxlen: 24
122.129.77.0/24 maxlen: 24
122.129.78.0/24 maxlen: 24
122.129.79.0/24 maxlen: 24
122.129.80.0/24 maxlen: 24
122.129.81.0/24 maxlen: 24
122.129.82.0/24 maxlen: 24
122.129.83.0/24 maxlen: 24
122.129.84.0/24 maxlen: 24
122.129.85.0/24 maxlen: 24
122.129.86.0/24 maxlen: 24
122.129.87.0/24 maxlen: 24
122.129.88.0/24 maxlen: 24
122.129.89.0/24 maxlen: 24
122.129.90.0/24 maxlen: 24
122.129.91.0/24 maxlen: 24
122.129.92.0/24 maxlen: 24
122.129.93.0/24 maxlen: 24
122.129.94.0/24 maxlen: 24
122.129.95.0/24 maxlen: 24
203.128.0.0/24 maxlen: 24
203.128.1.0/24 maxlen: 24
203.128.2.0/24 maxlen: 24
203.128.3.0/24 maxlen: 24
203.128.4.0/24 maxlen: 24
203.128.5.0/24 maxlen: 24
203.128.6.0/24 maxlen: 24
203.128.7.0/24 maxlen: 24
203.128.8.0/24 maxlen: 24
203.128.9.0/24 maxlen: 24
203.128.10.0/24 maxlen: 24
203.128.11.0/24 maxlen: 24
203.128.12.0/24 maxlen: 24
203.128.13.0/24 maxlen: 24
203.128.14.0/24 maxlen: 24
203.128.15.0/24 maxlen: 24
203.128.16.0/24 maxlen: 24
203.128.17.0/24 maxlen: 24
203.128.18.0/24 maxlen: 24
203.128.19.0/24 maxlen: 24
203.128.20.0/24 maxlen: 24
203.128.21.0/24 maxlen: 24
203.128.22.0/24 maxlen: 24
203.128.23.0/24 maxlen: 24
203.128.24.0/24 maxlen: 24
203.128.25.0/24 maxlen: 24
203.128.26.0/24 maxlen: 24
203.128.27.0/24 maxlen: 24
203.128.28.0/24 maxlen: 24
203.128.29.0/24 maxlen: 24
203.128.30.0/24 maxlen: 24
203.128.31.0/24 maxlen: 24
2400:4f00::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5849 (0x16d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9139B49/serialNumber=4EE540A48AD973FBD831ABD02603B5FB0FB945BE
Validity
Not Before: Oct 5 10:00:59 2023 GMT
Not After : Mar 31 00:00:00 2024 GMT
Subject: CN=651e895b-c0fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:5d:9e:34:f1:70:de:8c:c2:da:05:34:30:f8:
d0:06:a0:21:eb:6b:81:e1:66:b1:dd:1c:99:5d:e3:
f1:a7:4b:fb:a0:fd:67:2b:a3:a2:62:f4:93:24:92:
78:e2:ec:d3:0d:d5:c0:e4:db:d5:db:d2:78:47:27:
35:11:6a:85:1b:94:f8:a7:56:8b:ed:94:9b:df:28:
c6:4e:6c:1c:59:ac:e2:12:9f:97:00:27:97:78:a5:
72:93:07:df:12:f9:08:51:2d:a1:0a:10:f3:9d:8e:
b7:be:0f:4e:93:cb:91:ae:1c:7b:96:64:0f:12:18:
b5:b4:b1:cb:92:95:fb:ce:a0:80:b6:4a:8b:a2:cd:
0f:ea:08:9e:6d:d8:43:ce:62:66:ef:d7:6b:75:32:
53:96:96:57:6d:4b:24:86:03:ed:0d:13:f7:3f:28:
0a:63:1c:4c:66:70:1c:c4:90:26:24:f0:44:16:d5:
a5:47:99:7f:87:82:3f:34:98:ca:93:b7:ff:16:7d:
b1:d1:ff:07:f9:dc:17:ec:9a:26:af:30:64:b2:ea:
98:34:b1:14:9a:72:6d:9e:84:de:41:a2:b5:f0:95:
9b:8f:8b:8f:b7:b5:10:9e:8b:b5:f3:04:d2:3e:a7:
90:71:d9:e2:75:28:fa:75:c8:8b:51:dc:ef:5c:6f:
ab:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:15:E3:CC:40:04:3A:08:46:DA:37:37:BC:EA:54:62:CE:8A:42:4F
X509v3 Authority Key Identifier:
keyid:4E:E5:40:A4:8A:D9:73:FB:D8:31:AB:D0:26:03:B5:FB:0F:B9:45:BE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9139B49/0780B990C9F811E79EF12009C4F9AE02/TuVApIrZc_vYMavQJgO1-w-5Rb4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TuVApIrZc_vYMavQJgO1-w-5Rb4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139B49/0780B990C9F811E79EF12009C4F9AE02/C824136C2BA011EEB167496BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
122.129.64.0/19
203.128.0.0/19
IPv6:
2400:4f00::/36
Signature Algorithm: sha256WithRSAEncryption
55:54:73:e1:56:e0:ab:8d:9f:af:8f:40:83:e2:39:e8:fe:29:
43:54:1a:c5:fa:8a:78:e5:9c:37:08:9b:8d:eb:cc:9d:f7:77:
12:46:f5:ce:db:7d:a6:53:6a:44:59:59:95:6c:e5:53:3e:74:
b0:71:00:e0:e5:6d:f6:db:4c:e8:70:b0:1e:bc:0b:ff:96:c2:
a3:25:13:ff:6c:6a:67:d5:1d:84:01:bf:3f:71:98:fe:ed:92:
89:b3:96:47:49:2d:63:ed:fb:15:82:dd:79:b7:87:08:a4:a6:
cd:7a:06:3f:9d:83:9f:81:81:aa:c0:24:aa:c8:e9:4c:d9:16:
d9:65:88:f8:44:1c:28:aa:cf:18:2e:53:a5:e1:fb:69:1b:a3:
ec:a3:a1:67:0b:d0:29:03:76:fa:67:80:14:25:33:67:5d:eb:
da:45:22:f4:46:12:00:3b:b4:70:dc:63:93:85:0b:88:21:6c:
b9:98:d2:b9:d5:f6:d2:3f:e5:f2:fe:0f:e9:02:be:1f:38:d3:
63:b8:19:43:b3:80:9b:53:d8:15:b0:91:f3:67:5a:cd:82:99:
a0:9c:91:9b:16:51:0d:15:82:ef:c7:8d:62:34:70:f0:f1:70:
4f:ec:1d:05:fd:27:50:69:66:ce:e6:f6:5e:21:0c:92:dc:d9:
b7:31:9f:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:03 2024 by rpki-client on console-fra.rpki-client.org