Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/43769B26113911EDA2ECDE16C4F9AE02.roa
File: 43769B26113911EDA2ECDE16C4F9AE02.roa (raw, json)
Hash identifier: F5p34DiMdbyhyFoEYAZkcAvW/u4CgNwtx+uCn6IF4Nk=
Subject key identifier: 18:59:0F:28:A0:0E:CC:E6:D3:DB:93:1B:CE:63:A6:71:75:7F:8E:16
Certificate issuer: /CN=A915E475/serialNumber=745FF4F063AB5D171E05251B31E294A4BC7973B1
Certificate serial: 07AA
Authority key identifier: 74:5F:F4:F0:63:AB:5D:17:1E:05:25:1B:31:E2:94:A4:BC:79:73:B1
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dF_08GOrXRceBSUbMeKUpLx5c7E.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/43769B26113911EDA2ECDE16C4F9AE02.roa
Signing time: Fri 04 Nov 2022 23:08:54 +0000
ROA not before: Fri 04 Nov 2022 23:08:54 +0000
ROA not after: Sat 30 Dec 2023 00:00:00 +0000
asID: 24093
IP address blocks: 125.63.0.0/19 maxlen: 19
125.63.8.0/24 maxlen: 24
125.63.9.0/24 maxlen: 24
125.63.12.0/24 maxlen: 24
125.63.15.0/24 maxlen: 24
125.63.19.0/24 maxlen: 24
125.253.0.0/18 maxlen: 18
125.253.8.0/24 maxlen: 24
125.253.11.0/24 maxlen: 24
125.253.16.0/24 maxlen: 24
125.253.25.0/24 maxlen: 24
125.253.28.0/23 maxlen: 23
125.253.28.0/24 maxlen: 24
125.253.29.0/24 maxlen: 24
125.253.32.0/24 maxlen: 24
125.253.33.0/24 maxlen: 24
125.253.34.0/24 maxlen: 24
125.253.35.0/24 maxlen: 24
125.253.41.0/24 maxlen: 24
125.253.43.0/24 maxlen: 24
125.253.44.0/24 maxlen: 24
125.253.45.0/24 maxlen: 24
125.253.46.0/24 maxlen: 24
125.253.47.0/24 maxlen: 24
125.253.48.0/24 maxlen: 24
125.253.50.0/23 maxlen: 23
125.253.50.0/24 maxlen: 24
125.253.51.0/24 maxlen: 24
125.253.60.0/24 maxlen: 24
125.253.61.0/24 maxlen: 24
125.253.96.0/20 maxlen: 20
125.253.97.0/24 maxlen: 24
125.253.98.0/24 maxlen: 24
125.253.99.0/24 maxlen: 24
125.253.100.0/24 maxlen: 24
125.253.101.0/24 maxlen: 24
125.253.102.0/24 maxlen: 24
125.253.103.0/24 maxlen: 24
125.253.106.0/24 maxlen: 24
125.253.107.0/24 maxlen: 24
125.253.109.0/24 maxlen: 24
125.253.110.0/24 maxlen: 24
202.171.160.0/19 maxlen: 19
202.171.160.0/24 maxlen: 24
202.171.164.0/24 maxlen: 24
202.171.165.0/24 maxlen: 24
202.171.169.0/24 maxlen: 24
202.171.170.0/24 maxlen: 24
202.171.175.0/24 maxlen: 24
202.171.177.0/24 maxlen: 24
202.171.178.0/24 maxlen: 24
202.171.179.0/24 maxlen: 24
202.171.184.0/23 maxlen: 23
202.171.186.0/23 maxlen: 23
202.171.189.0/24 maxlen: 24
202.171.190.0/24 maxlen: 24
202.171.191.0/24 maxlen: 24
203.25.102.0/24 maxlen: 24
223.27.66.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1962 (0x7aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915E475/serialNumber=745FF4F063AB5D171E05251B31E294A4BC7973B1
Validity
Not Before: Nov 4 23:08:54 2022 GMT
Not After : Dec 30 00:00:00 2023 GMT
Subject: CN=63659b86-192c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:9f:ae:f4:14:e6:67:26:ed:fe:5b:a3:a7:50:
59:d4:2a:7a:fd:df:35:ce:36:84:d4:06:5c:e8:32:
8a:d8:2d:ca:47:17:93:da:1d:87:68:d9:8c:62:ac:
38:59:fd:b9:7f:db:ab:17:bb:60:0e:57:f6:d6:27:
7f:60:8d:5f:67:47:03:cf:7a:84:b4:10:7f:7c:2f:
6e:2a:f2:a5:96:4e:e4:3e:32:6a:45:06:93:55:61:
10:0d:24:74:f8:c4:fc:70:d5:92:f2:6d:92:f8:72:
9d:d4:f5:72:11:11:2b:26:88:52:8b:7b:3e:3b:a7:
05:8a:5c:21:7f:f0:0a:08:79:37:90:80:8d:6f:23:
e7:eb:e7:52:d8:c9:47:aa:79:e1:b6:a9:d7:22:06:
23:b8:23:07:42:20:c0:93:72:09:e7:ee:8d:94:72:
f9:69:e8:f8:11:d0:0d:69:56:b0:1c:af:4c:ef:25:
2d:4d:b3:eb:c0:46:bf:7f:3f:16:5b:df:04:c6:e6:
7a:b4:1d:bc:b4:2b:3b:a3:33:41:42:1f:66:5d:c4:
01:73:1d:54:e7:fe:c2:be:0a:c5:89:50:54:d5:40:
49:80:b7:ce:e4:35:79:ab:7f:5d:ff:db:a4:96:32:
d4:d4:61:89:45:83:4f:b3:49:bd:a5:ff:5c:24:cc:
67:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:59:0F:28:A0:0E:CC:E6:D3:DB:93:1B:CE:63:A6:71:75:7F:8E:16
X509v3 Authority Key Identifier:
keyid:74:5F:F4:F0:63:AB:5D:17:1E:05:25:1B:31:E2:94:A4:BC:79:73:B1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/dF_08GOrXRceBSUbMeKUpLx5c7E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dF_08GOrXRceBSUbMeKUpLx5c7E.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/43769B26113911EDA2ECDE16C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
125.63.0.0/19
125.253.0.0/18
125.253.96.0/20
202.171.160.0/19
203.25.102.0/24
223.27.66.0/23
Signature Algorithm: sha256WithRSAEncryption
40:54:67:4d:ff:ec:02:30:6a:55:53:a9:94:d4:e6:e6:55:9a:
59:65:d6:b5:b5:ba:29:54:00:5e:df:b6:ab:dc:ca:e2:77:99:
36:49:1f:1f:7c:7c:dc:66:5d:bd:63:4d:6e:a5:4c:21:6f:be:
10:db:a9:de:f4:70:13:84:d0:6c:1f:18:ef:93:d9:50:dd:52:
2f:c3:cd:b0:9e:37:54:51:4b:ad:1c:f6:12:1d:c6:c7:5b:e4:
86:79:a1:a9:95:21:4f:9c:55:84:88:a2:a5:5b:c7:fb:34:77:
11:67:91:e3:90:dd:f1:01:85:c0:d0:04:33:57:6e:1b:c7:0c:
a7:2c:02:f4:05:38:87:41:aa:90:27:2d:b8:24:5e:e0:eb:c5:
db:a6:b9:ad:c8:14:a3:d1:01:27:6b:e0:30:95:ad:e0:95:86:
6a:33:d2:7b:b1:6d:a6:00:37:07:e1:d8:59:5f:8a:bf:f4:e1:
d0:35:2d:9f:bd:8f:43:71:a1:0a:23:0c:9c:9d:be:d4:7c:19:
87:24:2d:f8:33:63:f8:4a:cf:c1:d5:16:88:e8:26:48:86:d5:
4b:de:cf:a9:f8:e5:9e:2f:dc:f0:42:db:66:1c:43:db:0a:24:
74:6a:bb:44:59:61:0c:5e:d4:fa:91:7a:a2:66:6e:4b:5a:e0:
29:c0:47:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:08 2024 by rpki-client on console-ams.rpki-client.org