Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913C627/C265C1A4D07D11EA8600986DC4F9AE02/3F0C43061FD411EEA1BD1A82C4F9AE02.roa
File: 3F0C43061FD411EEA1BD1A82C4F9AE02.roa (raw, json)
Hash identifier: 3Rz3Dpo6pOwC1s4LTy+4uipR8ewvCHNpOrRkEM7sVQc=
Subject key identifier: 1E:28:77:00:7D:62:9B:41:74:A1:47:38:F2:57:0C:37:C0:40:A1:99
Certificate issuer: /CN=A913C627/serialNumber=6FFA5DB159D40A3A172DBC74F5C32B55517979AF
Certificate serial: 06DF
Authority key identifier: 6F:FA:5D:B1:59:D4:0A:3A:17:2D:BC:74:F5:C3:2B:55:51:79:79:AF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_pdsVnUCjoXLbx09cMrVVF5ea8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913C627/C265C1A4D07D11EA8600986DC4F9AE02/3F0C43061FD411EEA1BD1A82C4F9AE02.roa
Signing time: Tue 11 Jul 2023 10:18:15 +0000
ROA not before: Tue 11 Jul 2023 10:18:15 +0000
ROA not after: Wed 29 May 2024 00:00:00 +0000
asID: 9738
IP address blocks: 61.14.96.0/19 maxlen: 19
61.14.104.0/24 maxlen: 24
61.14.105.0/24 maxlen: 24
61.14.106.0/24 maxlen: 24
61.14.107.0/24 maxlen: 24
61.14.116.0/24 maxlen: 24
61.14.117.0/24 maxlen: 24
61.14.121.0/24 maxlen: 24
61.14.123.0/24 maxlen: 24
103.28.196.0/23 maxlen: 23
103.28.198.0/23 maxlen: 23
202.148.224.0/21 maxlen: 21
202.148.232.0/24 maxlen: 24
202.148.233.0/24 maxlen: 24
202.148.234.0/23 maxlen: 23
202.148.236.0/22 maxlen: 22
202.148.238.0/24 maxlen: 24
202.148.239.0/24 maxlen: 24
203.19.157.0/24 maxlen: 24
210.18.192.0/22 maxlen: 24
210.18.196.0/24 maxlen: 24
210.18.197.0/24 maxlen: 24
210.18.198.0/24 maxlen: 24
210.18.199.0/24 maxlen: 24
210.18.200.0/24 maxlen: 24
210.18.201.0/24 maxlen: 24
210.18.202.0/23 maxlen: 23
210.18.202.0/24 maxlen: 24
210.18.203.0/24 maxlen: 24
210.18.204.0/22 maxlen: 22
210.18.208.0/20 maxlen: 20
210.18.211.0/24 maxlen: 24
210.18.224.0/20 maxlen: 20
210.18.224.0/21 maxlen: 21
210.18.232.0/24 maxlen: 24
210.18.233.0/24 maxlen: 24
210.18.234.0/23 maxlen: 23
210.18.236.0/22 maxlen: 22
210.18.240.0/24 maxlen: 24
210.18.241.0/24 maxlen: 24
210.18.242.0/24 maxlen: 24
210.18.243.0/24 maxlen: 24
210.18.244.0/22 maxlen: 22
210.18.248.0/23 maxlen: 23
210.18.250.0/23 maxlen: 23
210.18.251.0/24 maxlen: 24
210.18.252.0/24 maxlen: 24
210.18.253.0/24 maxlen: 24
210.18.254.0/24 maxlen: 24
210.18.255.0/24 maxlen: 24
2403:c800::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1759 (0x6df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913C627/serialNumber=6FFA5DB159D40A3A172DBC74F5C32B55517979AF
Validity
Not Before: Jul 11 10:18:15 2023 GMT
Not After : May 29 00:00:00 2024 GMT
Subject: CN=64ad2c66-5d1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e7:da:54:e3:43:f5:41:80:49:fa:f2:f1:44:
f9:90:59:e0:95:49:ab:37:81:0e:40:55:0e:1d:ac:
d5:43:2a:7f:d9:20:67:64:7e:58:07:ac:f1:88:6c:
8b:e6:f1:81:b6:c5:87:d5:65:27:94:e9:9a:8e:91:
db:7c:da:37:76:1f:87:a3:f0:1a:6f:19:b1:c7:0d:
17:8a:54:8d:04:a8:66:73:32:57:5d:a7:ce:2b:55:
3b:fb:56:e3:a6:82:ea:3f:aa:54:8f:ea:dc:b3:fb:
7f:5e:ad:39:3c:51:9b:50:b2:4d:75:32:e7:57:7f:
bc:8c:3b:0f:6d:5a:1d:f3:a4:b8:2a:9a:9e:a9:87:
e9:23:dd:78:ad:e4:be:9e:2c:37:69:78:8d:0c:a9:
66:d8:7a:37:06:7d:34:d0:4a:a0:38:0c:ff:e1:d0:
ec:92:19:61:f8:67:d8:36:60:85:f9:64:28:4e:29:
05:ee:ab:61:24:88:64:b7:58:b1:eb:88:8f:ca:54:
9b:77:ed:ea:b3:aa:c4:22:f7:f7:b9:cc:b9:fc:89:
e3:ec:67:a6:cd:d6:c6:b9:8a:97:8a:47:05:e4:0d:
d1:fb:6b:76:6a:f9:70:d3:85:ee:4b:c4:1b:d3:c0:
ed:d7:e7:a4:16:2b:ce:88:1f:2c:3d:ff:5b:e0:a0:
0a:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:28:77:00:7D:62:9B:41:74:A1:47:38:F2:57:0C:37:C0:40:A1:99
X509v3 Authority Key Identifier:
keyid:6F:FA:5D:B1:59:D4:0A:3A:17:2D:BC:74:F5:C3:2B:55:51:79:79:AF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913C627/C265C1A4D07D11EA8600986DC4F9AE02/b_pdsVnUCjoXLbx09cMrVVF5ea8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_pdsVnUCjoXLbx09cMrVVF5ea8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C627/C265C1A4D07D11EA8600986DC4F9AE02/3F0C43061FD411EEA1BD1A82C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
61.14.96.0/19
103.28.196.0/22
202.148.224.0/20
203.19.157.0/24
210.18.192.0/18
IPv6:
2403:c800::/32
Signature Algorithm: sha256WithRSAEncryption
08:48:73:b6:7a:66:87:65:b0:d7:42:91:07:70:3e:de:1a:74:
20:bc:b2:33:4d:f8:bf:79:e2:60:41:44:a3:84:98:6e:c3:0c:
0b:2a:ea:ac:d0:c7:3f:90:15:fe:f3:4b:69:43:4c:81:bd:41:
64:97:d9:2a:5b:31:28:b1:e3:9c:c8:46:1b:a0:e3:08:ec:6e:
ab:b2:11:a1:fd:8e:67:04:fc:bf:18:4e:d9:05:dc:db:2d:78:
9c:96:e2:0f:a1:3d:0b:8b:83:05:57:c3:aa:26:4b:5b:37:4d:
f7:08:71:ce:4e:2d:56:20:d4:04:44:38:99:3b:c6:2f:fc:6d:
1a:82:95:69:c5:29:6e:e8:4c:ac:b0:5e:7a:14:d8:ab:a9:19:
16:e4:7f:57:27:fa:85:bc:72:78:cc:c9:c7:be:8a:ca:a2:c5:
04:76:55:bd:34:4f:2e:f5:06:62:06:74:e5:81:25:20:7d:23:
b6:d5:c8:30:ba:41:31:cb:59:5d:1e:e6:25:0a:25:46:32:e4:
0f:5a:04:fc:2f:15:4a:7a:10:6f:6b:fa:27:63:0b:83:2e:57:
8f:5b:c9:b2:cb:0f:99:24:97:cb:55:47:99:f5:33:3c:8d:4b:
88:91:ed:6d:77:fc:7e:c8:e0:72:1e:e1:e6:62:9f:bc:fd:e2:
9a:6d:e5:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:03 2024 by rpki-client on console-fra.rpki-client.org