Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E85CF6F2B93A11EFA229C723C4F9AE02.roa
File: E85CF6F2B93A11EFA229C723C4F9AE02.roa (raw, json)
Hash identifier: sGxzAy54I/VRODDcC8r8AqKx9CLwsT3DriuuUx6/6JM=
Subject key identifier: 3E:6B:FD:90:48:67:82:8E:26:32:BF:0F:11:6B:3A:7A:77:7D:56:53
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: A16B
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E85CF6F2B93A11EFA229C723C4F9AE02.roa
Signing time: Thu 02 Jan 2025 15:41:16 +0000
ROA not before: Thu 02 Jan 2025 15:41:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 133661
IP address blocks: 45.248.156.0/22 maxlen: 24
45.248.160.0/22 maxlen: 24
101.0.32.0/22 maxlen: 24
101.0.37.0/24 maxlen: 24
101.0.38.0/24 maxlen: 24
101.0.41.0/24 maxlen: 24
101.0.42.0/24 maxlen: 24
101.0.45.0/24 maxlen: 24
101.0.49.0/24 maxlen: 24
101.0.50.0/24 maxlen: 24
101.0.53.0/24 maxlen: 24
101.0.54.0/23 maxlen: 24
101.0.57.0/24 maxlen: 24
103.40.196.0/22 maxlen: 24
103.41.20.0/22 maxlen: 24
103.41.24.0/22 maxlen: 24
103.41.36.0/22 maxlen: 24
103.66.204.0/22 maxlen: 24
103.66.208.0/22 maxlen: 24
103.72.168.0/22 maxlen: 24
103.72.220.0/22 maxlen: 24
103.73.148.0/24 maxlen: 24
103.73.149.0/24 maxlen: 24
103.73.150.0/24 maxlen: 24
103.110.248.0/24 maxlen: 24
103.110.249.0/24 maxlen: 24
103.110.250.0/24 maxlen: 24
103.110.251.0/24 maxlen: 24
103.114.64.0/24 maxlen: 24
103.114.65.0/24 maxlen: 24
103.114.66.0/24 maxlen: 24
103.114.67.0/24 maxlen: 24
103.142.198.0/24 maxlen: 24
103.165.72.0/23 maxlen: 24
103.165.76.0/23 maxlen: 23
103.165.76.0/24 maxlen: 24
103.166.214.0/23 maxlen: 23
103.166.215.0/24 maxlen: 24
103.167.154.0/23 maxlen: 24
103.167.182.0/23 maxlen: 24
103.167.212.0/23 maxlen: 24
103.168.0.0/23 maxlen: 24
103.168.32.0/23 maxlen: 23
103.168.33.0/24 maxlen: 24
103.169.242.0/23 maxlen: 24
103.170.36.0/23 maxlen: 24
103.174.92.0/23 maxlen: 24
103.178.64.0/23 maxlen: 24
103.178.202.0/23 maxlen: 23
103.178.203.0/24 maxlen: 24
103.179.10.0/23 maxlen: 24
103.179.100.0/23 maxlen: 24
103.179.102.0/23 maxlen: 24
103.179.120.0/23 maxlen: 23
103.179.120.0/24 maxlen: 24
103.179.224.0/23 maxlen: 23
103.179.224.0/24 maxlen: 24
103.179.226.0/23 maxlen: 23
103.179.226.0/24 maxlen: 24
103.180.168.0/23 maxlen: 23
103.180.168.0/24 maxlen: 24
103.180.174.0/23 maxlen: 23
103.180.174.0/24 maxlen: 24
103.180.212.0/23 maxlen: 24
103.180.214.0/23 maxlen: 24
103.180.238.0/23 maxlen: 24
103.181.56.0/23 maxlen: 24
103.181.110.0/23 maxlen: 24
103.181.150.0/23 maxlen: 23
103.181.151.0/24 maxlen: 24
103.181.152.0/23 maxlen: 24
103.181.154.0/23 maxlen: 24
103.181.174.0/23 maxlen: 24
103.181.212.0/24 maxlen: 24
103.183.30.0/23 maxlen: 24
103.183.32.0/23 maxlen: 24
103.183.34.0/23 maxlen: 24
103.183.216.0/23 maxlen: 24
103.187.84.0/23 maxlen: 24
103.187.96.0/23 maxlen: 24
103.187.102.0/23 maxlen: 24
103.187.130.0/23 maxlen: 24
103.187.158.0/23 maxlen: 24
103.187.170.0/23 maxlen: 24
103.217.116.0/22 maxlen: 24
103.217.120.0/22 maxlen: 24
103.223.8.0/22 maxlen: 24
103.223.12.0/22 maxlen: 24
114.134.24.0/22 maxlen: 24
163.47.212.0/22 maxlen: 24
175.176.184.0/22 maxlen: 24
180.188.224.0/24 maxlen: 24
180.188.232.0/24 maxlen: 24
180.188.236.0/23 maxlen: 24
180.188.241.0/24 maxlen: 24
180.188.242.0/23 maxlen: 24
180.188.246.0/23 maxlen: 24
180.188.248.0/24 maxlen: 24
180.188.249.0/24 maxlen: 24
180.188.250.0/24 maxlen: 24
180.188.251.0/24 maxlen: 24
180.188.252.0/22 maxlen: 24
202.14.120.0/22 maxlen: 24
203.76.178.0/24 maxlen: 24
203.76.180.0/24 maxlen: 24
203.76.181.0/24 maxlen: 24
203.76.188.0/24 maxlen: 24
203.76.190.0/24 maxlen: 24
203.76.191.0/24 maxlen: 24
203.115.68.0/24 maxlen: 24
203.115.73.0/24 maxlen: 24
203.115.84.0/23 maxlen: 24
203.115.91.0/24 maxlen: 24
210.89.39.0/24 maxlen: 24
210.89.58.0/23 maxlen: 24
210.89.61.0/24 maxlen: 24
210.89.62.0/23 maxlen: 24
223.130.28.0/22 maxlen: 24
2001:df0:e400::/48 maxlen: 48
2001:df2:e200::/48 maxlen: 48
2001:df2:e600::/48 maxlen: 48
2400:7b20::/32 maxlen: 32
2401:a880::/32 maxlen: 48
2404:7c80::/32 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41323 (0xa16b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2
Validity
Not Before: Jan 2 15:41:16 2025 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6776b39c-d5cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:8a:63:1e:84:0d:da:9f:72:c0:d1:3f:e1:27:
e7:26:38:42:61:65:ad:ee:70:a0:ca:a9:e5:13:ec:
e9:1a:32:aa:4c:37:cc:66:e4:b9:d9:73:d5:dc:ab:
a3:a7:7b:a8:77:d2:e9:1e:79:e8:db:0e:50:7a:c0:
45:78:f0:2a:92:cf:57:7a:71:d2:3a:53:67:94:ea:
be:79:15:86:7b:a1:7c:ed:c1:a1:3d:97:0b:31:6c:
01:32:08:9b:df:e9:4c:b8:37:97:54:a1:95:7b:66:
c0:5c:06:a2:e4:b0:f7:e6:57:8f:83:8b:65:4c:f2:
04:a5:f7:33:12:c3:e9:76:53:7e:0a:37:4a:2d:ac:
e5:9e:b5:93:62:4f:a8:44:3c:90:a9:a1:08:84:9c:
18:ab:05:94:7c:d5:f8:8b:df:77:65:e8:df:ec:38:
43:13:51:c3:ed:ae:4d:d6:f1:3e:a3:9d:91:cb:66:
b2:5a:f2:0c:6e:49:94:a7:7b:d1:cd:5b:07:5a:0e:
39:f6:62:a6:88:86:2d:04:00:48:35:06:dd:62:cf:
a0:7f:cc:ba:ea:50:96:5a:ff:8e:bd:4f:bb:b1:17:
24:6e:c9:48:11:51:d7:d0:0d:d6:2f:e9:84:33:54:
b2:54:1c:55:dc:f4:86:cf:87:b3:70:5c:3a:6e:72:
28:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:6B:FD:90:48:67:82:8E:26:32:BF:0F:11:6B:3A:7A:77:7D:56:53
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E85CF6F2B93A11EFA229C723C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.248.156.0-45.248.163.255
101.0.32.0/22
101.0.37.0-101.0.38.255
101.0.41.0-101.0.42.255
101.0.45.0/24
101.0.49.0-101.0.50.255
101.0.53.0-101.0.55.255
101.0.57.0/24
103.40.196.0/22
103.41.20.0-103.41.27.255
103.41.36.0/22
103.66.204.0-103.66.211.255
103.72.168.0/22
103.72.220.0/22
103.73.148.0-103.73.150.255
103.110.248.0/22
103.114.64.0/22
103.142.198.0/24
103.165.72.0/23
103.165.76.0/23
103.166.214.0/23
103.167.154.0/23
103.167.182.0/23
103.167.212.0/23
103.168.0.0/23
103.168.32.0/23
103.169.242.0/23
103.170.36.0/23
103.174.92.0/23
103.178.64.0/23
103.178.202.0/23
103.179.10.0/23
103.179.100.0/22
103.179.120.0/23
103.179.224.0/22
103.180.168.0/23
103.180.174.0/23
103.180.212.0/22
103.180.238.0/23
103.181.56.0/23
103.181.110.0/23
103.181.150.0-103.181.155.255
103.181.174.0/23
103.181.212.0/24
103.183.30.0-103.183.35.255
103.183.216.0/23
103.187.84.0/23
103.187.96.0/23
103.187.102.0/23
103.187.130.0/23
103.187.158.0/23
103.187.170.0/23
103.217.116.0-103.217.123.255
103.223.8.0/21
114.134.24.0/22
163.47.212.0/22
175.176.184.0/22
180.188.224.0/24
180.188.232.0/24
180.188.236.0/23
180.188.241.0-180.188.243.255
180.188.246.0-180.188.255.255
202.14.120.0/22
203.76.178.0/24
203.76.180.0/23
203.76.188.0/24
203.76.190.0/23
203.115.68.0/24
203.115.73.0/24
203.115.84.0/23
203.115.91.0/24
210.89.39.0/24
210.89.58.0/23
210.89.61.0-210.89.63.255
223.130.28.0/22
IPv6:
2001:df0:e400::/48
2001:df2:e200::/48
2001:df2:e600::/48
2400:7b20::/32
2401:a880::/32
2404:7c80::/32
Signature Algorithm: sha256WithRSAEncryption
22:ce:d9:31:2b:7e:84:41:93:36:47:f5:a6:4c:fd:28:77:c4:
96:16:fc:be:e5:43:39:cc:6c:b5:ec:ad:a8:17:9c:34:df:08:
14:aa:2e:ef:b8:68:9f:8a:c0:16:3c:03:b7:77:43:ae:73:ab:
e0:0e:56:83:6b:16:d9:8d:c1:ea:e0:97:6c:62:31:2b:c5:3a:
2a:c0:bd:35:5a:a4:aa:5b:03:b3:c6:69:65:37:77:a6:30:9b:
d9:47:24:8f:78:bf:58:aa:2f:07:1b:a9:e6:ff:04:85:2a:1c:
60:3c:ab:e6:b6:f8:d8:d2:19:7c:ad:be:9e:cc:0a:02:31:56:
13:e2:b7:da:54:fc:fa:3f:76:35:7f:17:1e:1d:df:5e:81:c2:
cf:1f:2b:51:22:14:21:4a:27:35:96:93:42:5e:cc:43:3b:c6:
66:66:2f:dc:34:3c:66:38:2d:82:a6:9d:c8:f1:cc:d6:c1:f7:
d6:64:33:40:c2:62:b9:64:80:95:8b:e2:fb:81:54:2e:7f:b5:
02:8a:23:5a:d7:91:2d:40:30:31:5e:30:47:e4:d2:13:90:e0:
43:86:67:11:ad:9b:f2:2c:1d:65:91:59:79:b7:34:f4:ac:c8:
ce:e2:1c:75:d9:cf:98:84:9f:3b:bb:16:49:e6:51:81:bd:05:
26:9b:10:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 21:29:59 2025 by rpki-client