Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/A1899172DC7E11EC9D78B453C4F9AE02.roa
File: A1899172DC7E11EC9D78B453C4F9AE02.roa (raw, json)
Hash identifier: SPYZWv8/FDrx3MB5Yty1W1WprFfIf0oW8msjrjOIphI=
Subject key identifier: 3C:5E:68:B6:BA:9C:8D:93:59:2A:FD:E3:17:4C:32:CE:AF:AD:62:4B
Certificate issuer: /CN=A915C631/serialNumber=7BD3E43D134E5235E97603CE8BA9486B62A9B1E6
Certificate serial: E1
Authority key identifier: 7B:D3:E4:3D:13:4E:52:35:E9:76:03:CE:8B:A9:48:6B:62:A9:B1:E6
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e9PkPRNOUjXpdgPOi6lIa2KpseY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/A1899172DC7E11EC9D78B453C4F9AE02.roa
Signing time: Mon 05 Sep 2022 05:03:42 +0000
ROA not before: Mon 05 Sep 2022 05:03:42 +0000
ROA not after: Fri 30 Dec 2022 00:00:00 +0000
asID: 18390
IP address blocks: 27.96.192.0/19 maxlen: 24
115.69.0.0/18 maxlen: 24
202.172.96.0/19 maxlen: 24
203.23.236.0/22 maxlen: 24
203.29.65.0/24 maxlen: 24
203.29.124.0/23 maxlen: 24
203.31.202.0/23 maxlen: 24
203.56.244.0/22 maxlen: 24
203.57.48.0/23 maxlen: 24
210.1.192.0/19 maxlen: 24
2407:e400::/32 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 225 (0xe1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915C631/serialNumber=7BD3E43D134E5235E97603CE8BA9486B62A9B1E6
Validity
Not Before: Sep 5 05:03:42 2022 GMT
Not After : Dec 30 00:00:00 2022 GMT
Subject: CN=6315832e-e028
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:3f:4c:5e:8c:7f:01:15:b4:23:6a:f2:be:0c:
88:ba:69:78:3a:f6:2d:f7:0a:78:94:d2:4f:61:fe:
0b:03:17:84:1c:83:0c:31:18:cc:c8:66:d1:16:58:
36:e4:91:47:c2:89:77:3a:bb:8a:e5:1c:89:96:ef:
6f:1b:4e:13:25:de:c7:b1:ee:98:bb:77:fe:0a:f4:
79:cc:b6:96:d7:2e:d1:5e:d8:16:6a:21:7c:94:bb:
31:4e:97:57:88:71:c9:69:6b:e7:20:4c:6a:2b:ab:
a2:9d:d0:8d:bc:81:c5:3e:a6:e9:d8:9d:60:8e:c8:
06:4e:88:e7:3d:47:67:2d:37:a9:0b:e4:db:16:76:
6a:5a:eb:4a:0d:c3:94:4a:f0:8e:44:71:03:3e:f6:
58:ba:62:ef:0f:5d:08:ef:8d:e8:88:1a:cd:d6:ed:
27:27:6e:d3:88:7e:de:c5:23:13:e2:bd:ed:b6:77:
90:b7:ba:31:ba:18:49:5b:34:84:c2:86:e1:49:da:
09:7f:6a:b2:a2:64:1b:36:6b:f9:64:a5:a8:71:e0:
01:75:44:eb:29:1a:7f:1f:d3:6c:ce:15:58:f6:9a:
28:c3:0e:a5:fd:8c:1b:3a:d5:93:e2:27:86:95:08:
00:82:95:77:87:df:45:fb:64:ef:81:04:28:06:bc:
6e:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:5E:68:B6:BA:9C:8D:93:59:2A:FD:E3:17:4C:32:CE:AF:AD:62:4B
X509v3 Authority Key Identifier:
keyid:7B:D3:E4:3D:13:4E:52:35:E9:76:03:CE:8B:A9:48:6B:62:A9:B1:E6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/e9PkPRNOUjXpdgPOi6lIa2KpseY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e9PkPRNOUjXpdgPOi6lIa2KpseY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/A1899172DC7E11EC9D78B453C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
27.96.192.0/19
115.69.0.0/18
202.172.96.0/19
203.23.236.0/22
203.29.65.0/24
203.29.124.0/23
203.31.202.0/23
203.56.244.0/22
203.57.48.0/23
210.1.192.0/19
IPv6:
2407:e400::/32
Signature Algorithm: sha256WithRSAEncryption
03:11:9f:04:58:9c:1b:9e:41:08:52:cc:71:8b:79:48:08:aa:
5f:8b:72:29:6c:57:f4:d6:1a:17:9a:7e:c9:db:ef:30:e8:ca:
00:65:44:19:bd:a4:9e:63:cc:f6:74:d2:8d:29:63:e8:f3:5d:
9f:21:58:08:27:8a:a0:41:1f:0c:ab:69:68:b9:16:fc:36:de:
12:1f:b6:58:a7:b8:bf:07:d7:56:f7:5a:6f:f6:29:9e:4b:09:
1b:fe:a1:84:79:c3:0e:1b:85:40:bd:de:74:37:89:19:6b:32:
64:12:60:b8:92:d3:6a:60:d0:45:f5:78:63:12:17:e0:33:3b:
05:83:cb:b3:6f:cf:48:5e:e8:7e:aa:b8:fa:95:ef:01:e0:7a:
cb:87:0f:98:1f:b0:d6:c5:2c:5e:91:c7:3c:a0:ae:9b:a1:94:
49:8a:72:28:7a:bb:a4:e0:bf:4b:36:fc:1e:45:cc:b8:60:fb:
78:3a:f2:6c:e8:cd:c3:48:3e:4c:83:e5:06:ef:79:e9:5f:e8:
8f:c2:a1:36:d0:c2:eb:32:7d:61:4a:22:1d:5d:52:b0:e7:ea:
73:42:3d:63:c7:88:48:92:24:10:80:5e:8b:2d:17:5d:b8:56:
25:be:94:ec:c1:53:07:cc:e8:d9:d8:bf:c7:e5:1b:15:b0:4d:
72:3b:8f:c6
-----BEGIN CERTIFICATE-----
MIIFtjCCBJ6gAwIBAgICAOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NUM2MzExMTAvBgNVBAUTKDdCRDNFNDNEMTM0RTUyMzVFOTc2MDNDRThCQTk0ODZC
NjJBOUIxRTYwHhcNMjIwOTA1MDUwMzQyWhcNMjIxMjMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02MzE1ODMyZS1lMDI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAtj9MXox/ARW0I2ryvgyIuml4OvYt9wp4lNJPYf4LAxeEHIMMMRjMyGbRFlg2
5JFHwol3OruK5RyJlu9vG04TJd7Hse6Yu3f+CvR5zLaW1y7RXtgWaiF8lLsxTpdX
iHHJaWvnIExqK6uindCNvIHFPqbp2J1gjsgGTojnPUdnLTepC+TbFnZqWutKDcOU
SvCORHEDPvZYumLvD10I743oiBrN1u0nJ27TiH7exSMT4r3ttneQt7oxuhhJWzSE
wobhSdoJf2qyomQbNmv5ZKWoceABdUTrKRp/H9NszhVY9pooww6l/YwbOtWT4ieG
lQgAgpV3h99F+2TvgQQoBrxuiwIDAQABo4IC2jCCAtYwHQYDVR0OBBYEFDxeaLa6
nI2TWSr94xdMMs6vrWJLMB8GA1UdIwQYMBaAFHvT5D0TTlI16XYDzoupSGtiqbHm
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzYzMS8zOUU0RDdBOERD
NzgxMUVDQTRFMzA2MTdDNEY5QUUwMi9lOVBrUFJOT1VqWHBkZ1BPaTZsSWEyS3Bz
ZVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2U5UGtQUk5PVWpYcGRnUE9pNmxJYTJLcHNlWS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NUM2MzEvMzlFNEQ3QThEQzc4MTFFQ0E0RTMwNjE3QzRGOUFFMDIvQTE4OTkxNzJE
QzdFMTFFQzlENzhCNDUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwZAYIKwYBBQUHAQcBAf8E
VTBTMEIEAgABMDwDBAUbYMADBAZzRQADBAXKrGADBALLF+wDBADLHUEDBAHLHXwD
BAHLH8oDBALLOPQDBAHLOTADBAXSAcAwDQQCAAIwBwMFACQH5AAwDQYJKoZIhvcN
AQELBQADggEBAAMRnwRYnBueQQhSzHGLeUgIql+LcilsV/TWGheafsnb7zDoygBl
RBm9pJ5jzPZ00o0pY+jzXZ8hWAgniqBBHwyraWi5Fvw23hIftlinuL8H11b3Wm/2
KZ5LCRv+oYR5ww4bhUC93nQ3iRlrMmQSYLiS02pg0EX1eGMSF+AzOwWDy7Nvz0he
6H6quPqV7wHgesuHD5gfsNbFLF6RxzygrpuhlEmKcih6u6Tgv0s2/B5FzLhg+3g6
8mzozcNIPkyD5Qbveelf6I/CoTbQwusyfWFKIh1dUrDn6nNCPWPHiEiSJBCAXost
F124ViW+lOzBUwfM6NnYv8flGxWwTXI7j8Y=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:43 2023 by rpki-client on console-fra.rpki-client.org