Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/5A17B5F40EBC11EFAC01BD1DC4F9AE02.roa
File: 5A17B5F40EBC11EFAC01BD1DC4F9AE02.roa (raw, json)
Hash identifier: vMfXxbSqrocABzl+StlfNfBkl6+BWc5tkO4O7B4Zm0E=
Subject key identifier: 15:1C:99:5D:0C:C2:A3:B2:44:FE:24:89:23:37:2A:2C:81:F4:8C:76
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 119B
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/5A17B5F40EBC11EFAC01BD1DC4F9AE02.roa
Signing time: Fri 10 May 2024 10:59:20 +0000
ROA not before: Fri 10 May 2024 10:59:20 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 38547
IP address blocks: 115.167.72.0/22 maxlen: 24
202.92.16.0/24 maxlen: 24
202.92.17.0/24 maxlen: 24
202.92.23.0/24 maxlen: 24
202.92.24.0/24 maxlen: 24
202.92.24.32/27 maxlen: 27
202.92.25.0/24 maxlen: 24
202.92.26.0/24 maxlen: 24
202.92.27.0/24 maxlen: 24
202.92.28.0/24 maxlen: 24
202.92.29.0/24 maxlen: 24
202.92.30.0/24 maxlen: 24
202.92.31.0/24 maxlen: 24
2400:9560:1::/48 maxlen: 48
2400:9560:5::/48 maxlen: 48
2400:9560:9::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4507 (0x119b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: May 10 10:59:20 2024 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=663dfe08-22cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:53:1f:dc:dc:97:c0:02:a0:e9:15:13:2c:4d:
59:7c:e1:8d:5b:01:e6:59:3f:71:a1:23:b3:2e:53:
bd:7f:40:a6:3d:de:b4:81:a7:83:f5:cc:f6:9c:62:
9d:9a:80:38:63:3c:72:38:9e:36:b8:ec:cf:0d:ab:
4a:e5:52:67:82:06:95:c1:e6:77:02:1d:10:70:5b:
59:19:25:09:74:88:bc:a7:9f:00:9c:a8:17:5e:3f:
c4:51:42:2b:1b:5e:60:70:2f:9d:e0:f6:9f:b8:2c:
9e:f5:01:82:69:dc:86:19:54:ea:ba:7e:75:74:43:
1d:f4:ff:e5:df:fb:4a:84:65:11:4f:28:a6:a9:f7:
ba:9e:63:c5:8b:41:6e:c3:8c:d4:88:85:f2:c3:6d:
40:61:ad:44:c2:5e:52:e0:38:82:2a:ed:d3:f1:7b:
3b:7a:12:b6:80:2e:25:d9:e0:c0:ec:6d:1a:da:2a:
9a:ec:90:8b:c9:39:93:2b:8c:f4:00:2b:bb:64:43:
ed:bd:cb:9e:5b:33:2c:ff:ba:58:04:73:4e:2d:e4:
85:00:55:84:93:63:2d:40:24:c1:ff:1a:89:4b:55:
41:2a:ca:44:87:94:aa:60:6f:2f:2a:60:c4:18:1d:
f7:55:6e:89:8d:f4:e8:05:fe:e7:c4:f6:e5:30:0b:
95:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:1C:99:5D:0C:C2:A3:B2:44:FE:24:89:23:37:2A:2C:81:F4:8C:76
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/5A17B5F40EBC11EFAC01BD1DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
115.167.72.0/22
202.92.16.0/23
202.92.23.0-202.92.31.255
IPv6:
2400:9560:1::/48
2400:9560:5::/48
2400:9560:9::/48
Signature Algorithm: sha256WithRSAEncryption
50:03:fb:d3:fa:c4:d0:5e:9e:9e:03:00:57:15:c4:bc:4f:28:
27:17:e2:f3:8c:b1:80:2a:74:29:45:5c:20:3b:91:50:b2:eb:
d3:cc:a2:7f:68:ed:08:4b:3f:f2:c8:86:07:0c:7c:16:f5:40:
cf:21:9e:69:db:c3:c2:45:3b:a0:df:3a:3d:9d:85:43:4d:3d:
93:02:87:43:c9:a5:85:25:9b:cc:04:8a:99:95:df:99:90:de:
dc:16:89:b6:92:d3:0a:38:fd:3c:83:1e:86:e5:82:1b:8a:8c:
40:79:7f:11:d2:80:1d:50:bf:43:78:c4:f4:19:f0:a2:5b:9f:
a6:ad:ee:07:16:fc:bf:cb:97:f4:73:25:bf:8f:45:b9:79:35:
c7:41:36:77:ce:c3:57:bb:1f:56:7c:fd:b1:78:cd:85:7f:ec:
03:ac:a8:68:1a:0d:11:ed:91:88:56:84:58:bd:05:e4:ae:de:
4f:c6:1b:45:ac:54:5f:73:a6:5e:2f:51:77:7a:59:a1:6e:9c:
92:d1:9f:e9:73:c6:a3:50:2c:a0:b7:fd:78:ba:ca:0e:65:b7:
5d:39:af:53:c7:6b:0e:de:10:26:9d:09:90:88:d8:c3:20:80:
e2:f4:2f:28:ef:08:8d:9f:f9:bc:b9:e0:fd:75:ce:da:21:f9:
66:7d:f5:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 01:58:00 2025 by rpki-client