Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/7C064494597B11ECB903AB67C4F9AE02.roa
File: 7C064494597B11ECB903AB67C4F9AE02.roa (raw, json)
Hash identifier: SpCOkgGqjNk4BpbcwxbTwnvIYfX2xHdOT3QMN9jbzxQ=
Subject key identifier: DE:25:4C:29:EE:F2:37:2B:ED:42:68:D9:58:A0:91:C7:34:B1:3A:47
Certificate issuer: /CN=A915E475/serialNumber=745FF4F063AB5D171E05251B31E294A4BC7973B1
Certificate serial: 050F
Authority key identifier: 74:5F:F4:F0:63:AB:5D:17:1E:05:25:1B:31:E2:94:A4:BC:79:73:B1
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dF_08GOrXRceBSUbMeKUpLx5c7E.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/7C064494597B11ECB903AB67C4F9AE02.roa
Signing time: Fri 10 Dec 2021 05:39:04 +0000
ROA not before: Fri 10 Dec 2021 05:39:04 +0000
ROA not after: Fri 30 Dec 2022 00:00:00 +0000
asID: 24093
IP address blocks: 125.63.0.0/19 maxlen: 19
125.63.8.0/24 maxlen: 24
125.63.9.0/24 maxlen: 24
125.63.12.0/24 maxlen: 24
125.63.13.0/24 maxlen: 24
125.63.14.0/24 maxlen: 24
125.63.15.0/24 maxlen: 24
125.63.19.0/24 maxlen: 24
125.253.0.0/18 maxlen: 18
125.253.8.0/24 maxlen: 24
125.253.11.0/24 maxlen: 24
125.253.14.0/24 maxlen: 24
125.253.16.0/24 maxlen: 24
125.253.17.0/24 maxlen: 24
125.253.24.0/24 maxlen: 24
125.253.25.0/24 maxlen: 24
125.253.28.0/23 maxlen: 23
125.253.28.0/24 maxlen: 24
125.253.29.0/24 maxlen: 24
125.253.32.0/24 maxlen: 24
125.253.33.0/24 maxlen: 24
125.253.34.0/24 maxlen: 24
125.253.35.0/24 maxlen: 24
125.253.41.0/24 maxlen: 24
125.253.42.0/24 maxlen: 24
125.253.43.0/24 maxlen: 24
125.253.44.0/24 maxlen: 24
125.253.45.0/24 maxlen: 24
125.253.46.0/24 maxlen: 24
125.253.47.0/24 maxlen: 24
125.253.48.0/24 maxlen: 24
125.253.50.0/23 maxlen: 23
125.253.50.0/24 maxlen: 24
125.253.51.0/24 maxlen: 24
125.253.60.0/24 maxlen: 24
125.253.61.0/24 maxlen: 24
125.253.96.0/20 maxlen: 20
125.253.96.0/24 maxlen: 24
125.253.97.0/24 maxlen: 24
125.253.98.0/24 maxlen: 24
125.253.99.0/24 maxlen: 24
125.253.100.0/24 maxlen: 24
125.253.101.0/24 maxlen: 24
125.253.102.0/24 maxlen: 24
125.253.103.0/24 maxlen: 24
125.253.106.0/24 maxlen: 24
125.253.107.0/24 maxlen: 24
125.253.109.0/24 maxlen: 24
125.253.110.0/24 maxlen: 24
202.171.160.0/19 maxlen: 19
202.171.160.0/24 maxlen: 24
202.171.161.0/24 maxlen: 24
202.171.162.0/24 maxlen: 24
202.171.163.0/24 maxlen: 24
202.171.164.0/24 maxlen: 24
202.171.165.0/24 maxlen: 24
202.171.167.0/24 maxlen: 24
202.171.168.0/24 maxlen: 24
202.171.169.0/24 maxlen: 24
202.171.170.0/24 maxlen: 24
202.171.171.0/24 maxlen: 24
202.171.172.0/23 maxlen: 23
202.171.175.0/24 maxlen: 24
202.171.176.0/24 maxlen: 24
202.171.177.0/24 maxlen: 24
202.171.178.0/24 maxlen: 24
202.171.179.0/24 maxlen: 24
202.171.180.0/23 maxlen: 23
202.171.184.0/23 maxlen: 23
202.171.186.0/23 maxlen: 23
202.171.189.0/24 maxlen: 24
202.171.190.0/24 maxlen: 24
202.171.191.0/24 maxlen: 24
203.25.102.0/24 maxlen: 24
223.27.66.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1295 (0x50f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915E475/serialNumber=745FF4F063AB5D171E05251B31E294A4BC7973B1
Validity
Not Before: Dec 10 05:39:04 2021 GMT
Not After : Dec 30 00:00:00 2022 GMT
Subject: CN=61b2e7f8-00b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:08:3b:29:3d:6b:ba:23:51:b7:a8:94:38:8a:
17:be:84:20:0e:b9:ff:d1:68:8a:26:00:fc:58:1c:
45:3c:c7:d9:87:77:c1:56:08:90:79:41:f1:a8:a2:
98:02:cc:3b:09:96:8e:fe:44:ae:5c:3d:29:ca:e7:
18:d7:1a:3f:bc:2f:4f:54:f0:e7:0a:cc:5d:af:fa:
71:a1:31:47:34:9d:71:87:1b:cf:29:04:3c:79:25:
31:91:5c:0c:82:14:5d:72:1b:10:c0:ec:e9:a7:ce:
4b:4a:ec:03:61:be:59:f7:09:6e:44:10:69:b6:89:
a3:80:52:46:fe:53:fa:ab:b6:59:fb:21:1a:ed:d5:
5e:9f:b6:1f:fe:6a:0a:e9:47:ee:46:32:d9:ec:59:
94:d7:0a:63:49:8f:c6:79:93:74:98:b3:f6:0c:30:
2a:ee:9c:4e:70:4a:c7:4f:dd:a9:6b:45:fe:17:cd:
d4:45:f0:86:77:6c:2b:90:b5:03:b9:e1:89:3d:da:
a7:d9:79:84:f8:f6:4a:f3:79:b4:aa:21:38:14:3f:
a1:22:5b:0e:8e:41:02:82:99:70:ac:f3:a9:bf:e4:
6c:7b:ec:a0:81:cd:34:d4:20:33:b6:42:1d:8e:75:
b7:43:62:a5:44:8e:85:bb:3c:ac:a2:5c:93:2b:52:
9d:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:25:4C:29:EE:F2:37:2B:ED:42:68:D9:58:A0:91:C7:34:B1:3A:47
X509v3 Authority Key Identifier:
keyid:74:5F:F4:F0:63:AB:5D:17:1E:05:25:1B:31:E2:94:A4:BC:79:73:B1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/dF_08GOrXRceBSUbMeKUpLx5c7E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dF_08GOrXRceBSUbMeKUpLx5c7E.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/7C064494597B11ECB903AB67C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
125.63.0.0/19
125.253.0.0/18
125.253.96.0/20
202.171.160.0/19
203.25.102.0/24
223.27.66.0/23
Signature Algorithm: sha256WithRSAEncryption
2a:6a:fa:16:55:03:9b:e7:9f:fb:f9:2b:f0:ee:e8:8d:31:23:
33:93:4e:a2:8d:b9:bf:08:49:b8:42:27:b8:6d:8d:6c:0b:07:
d7:2b:cc:b4:ae:ff:b0:75:39:e1:d0:ee:69:b3:a7:75:56:fe:
43:cb:fe:53:e0:56:71:90:1b:07:f9:4b:c4:a8:19:74:9a:da:
c0:ba:cb:96:5d:9c:b3:39:26:e9:fa:6e:68:1c:0d:9a:55:2c:
99:bc:ce:88:66:df:47:2d:14:36:fe:a6:b6:65:e6:74:67:90:
0a:62:ab:d9:41:a5:ba:1b:d0:24:d9:2f:29:f3:ef:63:4f:91:
e2:9b:8f:49:47:30:29:3b:c2:c4:17:ee:4a:39:00:40:33:01:
10:4e:71:8e:ce:05:99:d7:7f:eb:87:79:40:54:bf:42:bf:2e:
67:00:12:5e:e3:8b:76:c4:29:87:59:99:ec:e6:91:ba:92:15:
10:4d:e9:9a:14:a4:11:2c:d2:e7:ad:d3:e9:0c:f6:ce:30:48:
71:f9:8e:f5:a3:d2:90:e0:19:2f:b8:ad:d7:5c:93:a3:64:0e:
f7:b2:f4:d0:0e:8f:a7:b3:f4:66:6d:49:fd:0a:e3:00:53:8c:
8b:ce:0b:47:5d:a3:45:f4:4e:41:fa:3f:19:13:9a:26:c0:5f:
3a:e2:06:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:08 2024 by rpki-client on console-ams.rpki-client.org