Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/02E4872603F811F080C2DC3FC4F9AE02.roa
File: 02E4872603F811F080C2DC3FC4F9AE02.roa (raw, json)
Hash identifier: LRdwHEWY39wo3yTvJkFSVqUsN41+pWfTOdzC7AUYRHo=
Subject key identifier: DF:60:A5:59:11:6C:B7:4E:31:34:43:4C:D2:A2:1A:A2:0A:E5:14:41
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: AB88
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/02E4872603F811F080C2DC3FC4F9AE02.roa
Signing time: Tue 18 Mar 2025 12:53:39 +0000
ROA not before: Tue 18 Mar 2025 12:53:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 43.229.200.0/22 maxlen: 24
43.231.116.0/22 maxlen: 24
43.239.112.0/22 maxlen: 24
43.239.152.0/22 maxlen: 24
45.114.156.0/22 maxlen: 24
45.251.32.0/22 maxlen: 24
103.14.196.0/22 maxlen: 24
103.16.140.0/22 maxlen: 24
103.26.169.0/24 maxlen: 24
103.27.168.0/24 maxlen: 24
103.27.170.0/23 maxlen: 23
103.41.40.0/22 maxlen: 24
103.44.104.0/22 maxlen: 24
103.47.152.0/24 maxlen: 24
103.51.92.0/22 maxlen: 24
103.51.152.0/22 maxlen: 24
103.52.48.0/22 maxlen: 24
103.54.96.0/22 maxlen: 24
103.55.84.0/22 maxlen: 24
103.70.40.0/22 maxlen: 24
103.82.144.0/22 maxlen: 24
103.86.20.0/22 maxlen: 24
103.88.124.0/22 maxlen: 24
103.98.79.0/24 maxlen: 24
103.99.48.0/23 maxlen: 24
103.108.76.0/22 maxlen: 24
103.111.128.0/22 maxlen: 24
103.118.8.0/22 maxlen: 24
103.132.203.0/24 maxlen: 24
103.133.116.0/24 maxlen: 24
103.135.60.0/22 maxlen: 24
103.139.88.0/23 maxlen: 24
103.142.64.0/23 maxlen: 24
103.143.180.0/23 maxlen: 24
103.143.215.0/24 maxlen: 24
103.144.112.0/23 maxlen: 24
103.154.26.0/24 maxlen: 24
103.155.170.0/23 maxlen: 24
103.155.194.0/23 maxlen: 24
103.157.50.0/23 maxlen: 24
103.157.69.0/24 maxlen: 24
103.158.111.0/24 maxlen: 24
103.158.180.0/24 maxlen: 24
103.158.216.0/23 maxlen: 24
103.159.137.0/24 maxlen: 24
103.162.80.0/23 maxlen: 24
103.165.26.0/23 maxlen: 24
103.166.220.0/23 maxlen: 24
103.169.58.0/23 maxlen: 24
103.171.8.0/23 maxlen: 24
103.171.54.0/23 maxlen: 24
103.171.60.0/23 maxlen: 24
103.171.236.0/23 maxlen: 24
103.173.41.0/24 maxlen: 24
103.174.26.0/23 maxlen: 24
103.174.42.0/23 maxlen: 24
103.175.12.0/23 maxlen: 24
103.175.58.0/23 maxlen: 24
103.175.106.0/23 maxlen: 24
103.176.142.0/24 maxlen: 24
103.180.216.0/23 maxlen: 24
103.190.12.0/23 maxlen: 24
103.191.86.0/23 maxlen: 24
103.192.64.0/22 maxlen: 24
103.192.72.0/22 maxlen: 24
103.199.92.0/22 maxlen: 24
103.199.144.0/22 maxlen: 24
103.200.48.0/22 maxlen: 24
103.206.64.0/22 maxlen: 24
103.212.132.0/22 maxlen: 24
103.224.50.0/23 maxlen: 24
103.226.224.0/22 maxlen: 24
103.228.172.0/24 maxlen: 24
103.228.173.0/24 maxlen: 24
103.228.174.0/24 maxlen: 24
103.228.175.0/24 maxlen: 24
103.228.184.0/22 maxlen: 24
103.234.64.0/22 maxlen: 24
103.236.112.0/22 maxlen: 24
103.245.170.0/23 maxlen: 24
103.254.96.0/22 maxlen: 24
103.254.200.0/22 maxlen: 24
115.166.132.0/22 maxlen: 24
137.59.204.0/22 maxlen: 24
139.5.96.0/22 maxlen: 24
202.9.55.0/24 maxlen: 24
203.191.56.0/22 maxlen: 24
2001:df7:8980::/48 maxlen: 48
2400:d180:66::/48 maxlen: 48
2400:d180:67::/48 maxlen: 48
2400:d180:68::/48 maxlen: 48
2400:d180:69::/48 maxlen: 48
2400:d180:70::/48 maxlen: 48
2400:d180:71::/48 maxlen: 48
2403:c680::/32 maxlen: 40
2407:1340::/32 maxlen: 32
2407:4540::/32 maxlen: 40
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43912 (0xab88)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2
Validity
Not Before: Mar 18 12:53:38 2025 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=67d96cd2-5656
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:bd:6f:73:40:8e:2a:a7:c3:09:96:94:0e:27:
a9:ae:d8:50:8b:ce:03:82:1c:e5:d0:45:de:d0:dd:
6b:f9:ee:99:52:96:9e:e2:46:c0:3a:5a:ba:9d:32:
f1:59:b5:c1:7e:89:55:a3:3f:18:b6:61:6e:77:e9:
48:9f:0a:35:24:8a:79:dc:96:16:3b:fb:5e:c4:93:
79:6d:8d:d8:dc:c9:83:57:f2:94:c4:e5:42:c0:6b:
f3:d0:53:6e:24:0c:db:a9:49:09:d5:5b:b4:70:2b:
fd:9c:c4:69:b3:fa:61:e6:37:1e:bf:7d:f5:81:d3:
f6:66:a2:67:cd:58:8f:8b:4a:4b:13:5a:05:5f:71:
13:28:0f:05:2f:99:a6:af:bb:76:e2:20:21:29:d3:
61:ba:88:33:0f:60:21:e3:d4:f5:3e:61:cf:36:49:
a9:4e:d0:96:6b:29:a7:b7:20:df:d8:db:a2:db:07:
fc:45:ad:14:95:3e:3d:3e:31:a3:49:33:fb:31:cd:
80:02:11:e1:fb:bd:85:ae:77:7f:48:13:ba:95:39:
1c:35:57:13:d1:c0:60:4d:47:7a:76:93:8a:c2:1b:
3f:eb:3e:2c:b9:ab:1d:37:ad:69:85:32:b1:a9:ae:
35:10:72:e9:66:7b:34:a8:ac:50:ee:fe:65:63:2f:
60:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:60:A5:59:11:6C:B7:4E:31:34:43:4C:D2:A2:1A:A2:0A:E5:14:41
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/02E4872603F811F080C2DC3FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.229.200.0/22
43.231.116.0/22
43.239.112.0/22
43.239.152.0/22
45.114.156.0/22
45.251.32.0/22
103.14.196.0/22
103.16.140.0/22
103.26.169.0/24
103.27.168.0/24
103.27.170.0/23
103.41.40.0/22
103.44.104.0/22
103.47.152.0/24
103.51.92.0/22
103.51.152.0/22
103.52.48.0/22
103.54.96.0/22
103.55.84.0/22
103.70.40.0/22
103.82.144.0/22
103.86.20.0/22
103.88.124.0/22
103.98.79.0/24
103.99.48.0/23
103.108.76.0/22
103.111.128.0/22
103.118.8.0/22
103.132.203.0/24
103.133.116.0/24
103.135.60.0/22
103.139.88.0/23
103.142.64.0/23
103.143.180.0/23
103.143.215.0/24
103.144.112.0/23
103.154.26.0/24
103.155.170.0/23
103.155.194.0/23
103.157.50.0/23
103.157.69.0/24
103.158.111.0/24
103.158.180.0/24
103.158.216.0/23
103.159.137.0/24
103.162.80.0/23
103.165.26.0/23
103.166.220.0/23
103.169.58.0/23
103.171.8.0/23
103.171.54.0/23
103.171.60.0/23
103.171.236.0/23
103.173.41.0/24
103.174.26.0/23
103.174.42.0/23
103.175.12.0/23
103.175.58.0/23
103.175.106.0/23
103.176.142.0/24
103.180.216.0/23
103.190.12.0/23
103.191.86.0/23
103.192.64.0/22
103.192.72.0/22
103.199.92.0/22
103.199.144.0/22
103.200.48.0/22
103.206.64.0/22
103.212.132.0/22
103.224.50.0/23
103.226.224.0/22
103.228.172.0/22
103.228.184.0/22
103.234.64.0/22
103.236.112.0/22
103.245.170.0/23
103.254.96.0/22
103.254.200.0/22
115.166.132.0/22
137.59.204.0/22
139.5.96.0/22
202.9.55.0/24
203.191.56.0/22
IPv6:
2001:df7:8980::/48
2400:d180:66::-2400:d180:69:ffff:ffff:ffff:ffff:ffff
2400:d180:70::/47
2403:c680::/32
2407:1340::/32
2407:4540::/32
Signature Algorithm: sha256WithRSAEncryption
73:3b:e9:f7:3f:50:90:5b:00:4c:a0:26:e1:a1:e0:d6:fe:ba:
4f:53:27:06:6d:b8:4b:35:f3:e8:a5:eb:bb:b9:4c:b6:4a:36:
61:b3:ac:47:a4:7e:1c:45:06:ca:eb:1f:48:e7:f3:e9:67:da:
dc:71:68:43:b5:06:e1:17:10:88:29:a3:69:37:bf:78:3f:09:
d4:a3:97:42:45:f1:c3:97:66:78:06:9d:08:68:c9:00:6c:1f:
64:79:3f:8a:85:14:60:81:df:59:5f:70:fe:3f:be:23:8c:ce:
61:c6:69:84:58:da:72:b3:1c:52:e8:a2:1d:36:a1:06:69:fd:
d3:85:19:50:74:02:fe:78:dd:7b:c8:77:2a:c3:38:a0:4d:1f:
5f:a2:10:84:f7:be:d5:47:99:10:ed:4a:27:d2:70:03:18:57:
32:09:bf:ba:6e:98:ea:3f:a1:91:0f:69:47:ca:9d:f5:2d:31:
c1:7a:57:fc:9d:a6:e7:6d:17:1f:f4:0b:9e:0a:de:26:41:50:
ae:61:25:81:87:cd:76:73:38:1c:16:c1:52:00:de:58:c4:00:
5f:34:d6:b0:85:f2:a1:e8:c7:40:36:e6:e9:ea:00:37:63:46:
26:18:da:20:31:8e:9c:3c:e0:2a:7c:20:1a:ba:f8:87:0e:07:
eb:22:ba:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 21:23:01 2025 by rpki-client