Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/069892EA11C811EFAE56105EC4F9AE02.roa
File: 069892EA11C811EFAE56105EC4F9AE02.roa (raw, json)
Hash identifier: 17qPSTxFxRgFGjwohCOHpvpCwTvXuCmpME0kxgY+Gsk=
Subject key identifier: 78:0E:7B:72:A2:3B:4A:80:91:1B:56:73:8C:03:51:1B:2D:C6:FD:E7
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 11D8
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/069892EA11C811EFAE56105EC4F9AE02.roa
Signing time: Tue 14 May 2024 08:00:27 +0000
ROA not before: Tue 14 May 2024 08:00:27 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 9387
IP address blocks: 103.11.60.0/24 maxlen: 24
113.203.234.0/24 maxlen: 24
113.203.235.0/24 maxlen: 24
113.203.236.0/24 maxlen: 24
113.203.237.0/24 maxlen: 24
113.203.238.0/24 maxlen: 24
113.203.239.0/24 maxlen: 24
113.203.240.0/24 maxlen: 24
113.203.245.0/24 maxlen: 24
113.203.253.0/24 maxlen: 24
180.178.128.0/24 maxlen: 24
180.178.129.0/24 maxlen: 24
180.178.132.0/24 maxlen: 24
180.178.133.0/24 maxlen: 24
180.178.134.0/24 maxlen: 24
180.178.135.0/24 maxlen: 24
180.178.136.0/24 maxlen: 24
180.178.137.0/24 maxlen: 24
180.178.138.0/24 maxlen: 24
180.178.139.0/24 maxlen: 24
180.178.147.0/24 maxlen: 24
180.178.172.0/24 maxlen: 24
180.178.174.0/24 maxlen: 24
180.178.175.0/24 maxlen: 24
180.178.184.0/24 maxlen: 24
223.29.226.0/24 maxlen: 24
223.29.228.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4568 (0x11d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: May 14 08:00:27 2024 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=66431a1b-6dd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:3a:5f:d5:f3:82:59:89:b4:ff:e1:52:f3:65:
c8:eb:b5:fb:2e:4b:51:14:9d:34:cb:f2:d7:a0:3f:
22:dc:ad:07:d5:9c:ac:fb:f6:d8:77:2e:62:18:f6:
14:b1:be:62:f7:78:a3:3f:77:67:a0:87:1a:90:9b:
89:b2:d1:a8:a0:ea:f5:ff:d1:29:b2:be:1d:09:61:
2c:be:3d:45:09:31:79:f8:73:f7:f7:56:8c:5f:e2:
09:f7:70:ab:87:a9:c3:e7:20:ba:f9:15:36:85:4b:
a3:df:a5:48:41:e1:1a:27:63:ab:e6:48:1d:83:32:
85:a6:ba:cb:4b:e5:5a:bf:af:91:67:4e:f3:7f:6a:
8d:7e:f3:2f:cb:b5:2f:d2:89:73:e9:af:4a:6b:5a:
b1:41:39:1b:48:02:ef:84:98:39:c8:00:a7:a2:aa:
0c:bd:b8:25:dd:00:f6:c7:e4:00:e7:c5:32:79:7b:
f7:52:3a:8b:da:53:1d:52:c2:e3:6f:bc:7e:b8:0c:
14:f2:7e:cc:19:4d:ac:08:a3:ed:22:96:47:28:e3:
80:b3:3f:14:f6:bd:8d:6b:7f:c2:78:57:63:26:05:
bf:89:b1:d5:5f:0c:15:48:02:07:67:b8:11:84:02:
f5:62:bc:be:ea:6c:70:f0:5d:2c:1f:60:7a:2e:28:
91:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:0E:7B:72:A2:3B:4A:80:91:1B:56:73:8C:03:51:1B:2D:C6:FD:E7
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/069892EA11C811EFAE56105EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.11.60.0/24
113.203.234.0-113.203.240.255
113.203.245.0/24
113.203.253.0/24
180.178.128.0/23
180.178.132.0-180.178.139.255
180.178.147.0/24
180.178.172.0/24
180.178.174.0/23
180.178.184.0/24
223.29.226.0/24
223.29.228.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:c1:7c:a4:4d:54:d4:ae:0b:26:29:67:46:08:ae:52:10:f8:
19:95:d4:75:5e:12:0f:57:82:bf:10:ec:cf:31:43:3f:98:9c:
29:3c:6d:34:8b:02:14:bc:dc:56:13:dd:0d:e7:26:26:d2:67:
54:7c:37:f1:2a:cb:fb:a6:aa:83:d2:81:f8:d3:cb:c2:41:d4:
cf:a1:9f:1c:aa:28:50:d5:d6:32:bd:e6:aa:32:d8:de:2b:fa:
64:fc:7c:a4:e4:e1:34:8c:db:25:db:98:95:b1:86:47:d4:91:
21:2b:99:e0:46:5a:94:07:14:98:35:2b:cc:87:1b:a0:b3:95:
b3:bb:8d:84:2f:da:6f:5f:59:f7:6b:60:85:a7:8e:ce:ab:38:
6b:71:45:1d:cb:a3:6d:a5:9c:71:a3:dd:89:bb:08:e3:11:ff:
b4:18:62:fb:fb:be:2a:ed:87:04:59:14:21:b1:5d:cb:54:35:
31:0d:ea:95:69:92:ed:4c:40:c1:10:a8:b9:e6:8c:5a:03:91:
eb:8f:d8:9a:ad:bb:fc:c8:13:e8:00:46:86:6f:e0:fa:47:4d:
a0:ed:cc:36:19:08:7b:42:52:13:32:7e:fd:90:49:ac:c8:f8:
49:52:a8:4a:ee:7c:de:44:96:3f:4b:d8:4d:a3:01:13:c6:fb:
3a:40:1f:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 01:55:41 2025 by rpki-client