Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/12BBA58A890B11EEA4485F4EC4F9AE02.roa
File: 12BBA58A890B11EEA4485F4EC4F9AE02.roa (raw, json)
Hash identifier: GbULjhquUVYL+TyDT0bf/mpl6Nh81hzSPp1141zE1a8=
Subject key identifier: 72:7E:63:72:89:E9:7D:80:98:6D:C5:7E:FF:6E:AC:0B:0D:47:6F:FF
Certificate issuer: /CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34
Certificate serial: 342F
Authority key identifier: 4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/12BBA58A890B11EEA4485F4EC4F9AE02.roa
Signing time: Wed 22 Nov 2023 14:35:50 +0000
ROA not before: Wed 22 Nov 2023 14:35:50 +0000
ROA not after: Fri 01 Mar 2024 00:00:00 +0000
asID: 23750
IP address blocks: 103.207.84.0/24 maxlen: 24
103.207.86.0/24 maxlen: 24
103.207.87.0/24 maxlen: 24
116.90.96.0/23 maxlen: 23
116.90.98.0/24 maxlen: 24
116.90.99.0/24 maxlen: 24
116.90.106.0/24 maxlen: 24
116.90.107.0/24 maxlen: 24
116.90.108.0/24 maxlen: 24
116.90.109.0/24 maxlen: 24
116.90.110.0/24 maxlen: 24
116.90.111.0/24 maxlen: 24
116.90.117.0/24 maxlen: 24
116.90.119.0/24 maxlen: 24
116.90.120.0/24 maxlen: 24
116.90.123.0/24 maxlen: 24
116.90.124.0/24 maxlen: 24
116.90.125.0/24 maxlen: 24
116.90.126.0/24 maxlen: 24
116.90.127.0/24 maxlen: 24
121.46.64.0/24 maxlen: 24
121.46.66.0/24 maxlen: 24
202.69.32.0/24 maxlen: 24
202.69.33.0/24 maxlen: 24
202.69.34.0/24 maxlen: 24
202.69.35.0/24 maxlen: 24
202.69.36.0/24 maxlen: 24
202.69.37.0/24 maxlen: 24
202.69.38.0/24 maxlen: 24
202.69.39.0/24 maxlen: 24
202.69.40.0/24 maxlen: 24
202.69.41.0/24 maxlen: 24
202.69.42.0/24 maxlen: 24
202.69.43.0/24 maxlen: 24
202.69.44.0/24 maxlen: 24
202.69.45.0/24 maxlen: 24
202.69.46.0/24 maxlen: 24
202.69.47.0/24 maxlen: 24
202.69.48.0/24 maxlen: 24
202.69.49.0/24 maxlen: 24
202.69.50.0/24 maxlen: 24
202.69.51.0/24 maxlen: 24
202.69.52.0/24 maxlen: 24
202.69.53.0/24 maxlen: 24
202.69.54.0/24 maxlen: 24
202.69.55.0/24 maxlen: 24
202.69.56.0/24 maxlen: 24
202.69.57.0/24 maxlen: 24
202.69.58.0/24 maxlen: 24
202.69.59.0/24 maxlen: 24
202.69.60.0/24 maxlen: 24
202.69.61.0/24 maxlen: 24
202.69.62.0/24 maxlen: 24
202.69.63.0/24 maxlen: 24
202.142.144.0/24 maxlen: 24
202.142.145.0/24 maxlen: 24
202.142.146.0/24 maxlen: 24
202.142.147.0/24 maxlen: 24
202.142.148.0/24 maxlen: 24
202.142.149.0/24 maxlen: 24
202.142.150.0/24 maxlen: 24
202.142.152.0/24 maxlen: 24
202.142.153.0/24 maxlen: 24
202.142.154.0/24 maxlen: 24
202.142.155.0/24 maxlen: 24
202.142.156.0/24 maxlen: 24
202.142.157.0/24 maxlen: 24
202.142.158.0/24 maxlen: 24
202.142.159.0/24 maxlen: 24
2406:ac00:1::/48 maxlen: 48
2406:ac00:2::/48 maxlen: 48
2406:ac00:203::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13359 (0x342f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34
Validity
Not Before: Nov 22 14:35:50 2023 GMT
Not After : Mar 1 00:00:00 2024 GMT
Subject: CN=655e11c6-2a05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:d4:a8:16:60:4d:db:d5:eb:62:40:47:75:1d:
8e:14:90:de:84:97:01:e7:8e:52:8b:83:98:9f:e2:
27:02:c9:f7:7c:46:59:ec:d5:0e:96:26:7c:0d:95:
28:7f:e2:35:97:80:45:af:2d:9e:74:34:09:c2:ac:
18:35:84:8a:65:fe:3a:ee:8f:b9:25:0b:00:34:0b:
bc:8a:a9:f7:64:c2:a0:e6:75:c3:1f:28:c1:cd:c1:
d9:b8:35:d9:49:fe:77:9c:48:67:f1:c6:d8:9f:03:
50:6e:8d:5d:44:c2:71:d7:28:58:39:01:9c:da:2e:
3a:3b:76:e7:ff:fe:1d:7e:e9:59:14:ad:8c:8c:c3:
88:6d:ac:32:34:81:e9:b5:eb:36:f7:2d:0f:a8:df:
86:18:86:6e:1a:40:0e:a6:1d:79:a6:9b:37:26:e3:
da:25:79:41:6a:22:0d:d3:84:2c:44:22:8e:71:91:
fa:23:b2:cc:d2:e9:c6:d9:0d:c8:26:ba:d2:94:c2:
ba:bf:bf:40:a7:ee:88:75:8e:14:10:0b:ef:ba:21:
38:58:e6:89:7a:4f:97:49:d7:f9:42:76:66:ea:95:
df:aa:d8:69:5c:87:08:c8:63:c5:61:98:e9:33:6d:
aa:89:92:b8:f4:74:d5:32:d3:ce:7f:08:e7:b3:98:
a3:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:7E:63:72:89:E9:7D:80:98:6D:C5:7E:FF:6E:AC:0B:0D:47:6F:FF
X509v3 Authority Key Identifier:
keyid:4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/12BBA58A890B11EEA4485F4EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.207.84.0/24
103.207.86.0/23
116.90.96.0/22
116.90.106.0-116.90.111.255
116.90.117.0/24
116.90.119.0-116.90.120.255
116.90.123.0-116.90.127.255
121.46.64.0/24
121.46.66.0/24
202.69.32.0/19
202.142.144.0-202.142.150.255
202.142.152.0/21
IPv6:
2406:ac00:1::-2406:ac00:2:ffff:ffff:ffff:ffff:ffff
2406:ac00:203::/48
Signature Algorithm: sha256WithRSAEncryption
a7:a5:d0:91:99:e2:35:30:77:bc:cd:bc:9b:92:75:b8:e4:79:
71:fb:89:4c:04:39:11:34:a6:85:47:b6:80:4e:59:f8:ce:b5:
c3:01:d6:9f:1e:2a:74:5e:7a:54:d7:fe:91:67:56:af:c6:af:
35:7b:32:58:99:00:69:7a:61:5b:08:bc:1e:90:74:39:28:ef:
17:ab:c9:db:32:d8:75:be:cc:c0:2b:b6:62:5e:1c:43:b8:9e:
ed:bf:29:b7:49:45:31:0e:4b:6f:9e:4f:4f:65:5c:83:66:27:
c0:82:49:e6:a2:98:e1:90:00:a6:1b:63:b1:6e:47:72:fb:58:
1e:c8:69:a1:dd:3f:f9:e8:a3:fc:b3:ae:0a:75:58:5e:a5:a3:
14:79:6d:12:66:73:d3:c1:a0:5f:32:e0:9b:7f:a2:ec:89:0e:
ca:48:fa:9b:9e:f2:6c:e4:00:ca:2c:e2:e2:4e:73:29:24:56:
68:e6:88:18:56:c3:82:7a:c1:59:e8:53:03:2b:36:a0:90:17:
de:95:99:b1:b3:0a:e1:34:22:9a:b9:cf:f0:c0:4c:e8:ef:9d:
e8:f2:3d:52:16:69:4d:d3:94:6a:be:0a:2a:bf:ce:bd:9d:c1:
41:8e:c3:41:47:cb:56:48:4d:b3:85:f2:5b:6e:c3:72:57:bc:
60:3b:8a:53
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:38 2024 by rpki-client on console-fra.rpki-client.org