Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/EA00557606FC11EF94ED4949C4F9AE02.roa
File: EA00557606FC11EF94ED4949C4F9AE02.roa (raw, json)
Hash identifier: dnux0vLcQMoO1lY55BhgNjjperJx2S+4T+WsNvvdwLU=
Subject key identifier: 04:85:7C:E2:FC:18:A8:3E:D9:89:19:CD:85:05:C7:EF:92:96:FC:32
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 1159
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/EA00557606FC11EF94ED4949C4F9AE02.roa
Signing time: Tue 30 Apr 2024 14:21:20 +0000
ROA not before: Tue 30 Apr 2024 14:21:20 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 138241
IP address blocks: 103.151.27.0/24 maxlen: 24
113.203.208.0/24 maxlen: 24
113.203.216.0/24 maxlen: 24
113.203.217.0/24 maxlen: 24
113.203.231.0/24 maxlen: 24
113.203.250.0/24 maxlen: 24
115.167.49.0/24 maxlen: 24
115.167.78.0/24 maxlen: 24
175.110.68.0/22 maxlen: 24
175.110.80.0/22 maxlen: 24
175.110.97.0/24 maxlen: 24
175.110.109.0/24 maxlen: 24
180.178.142.0/24 maxlen: 24
180.178.152.0/21 maxlen: 21
202.92.18.0/24 maxlen: 24
202.92.20.0/24 maxlen: 24
223.29.225.0/24 maxlen: 24
223.29.227.0/24 maxlen: 24
223.29.234.0/24 maxlen: 24
223.29.235.0/24 maxlen: 24
223.29.236.0/24 maxlen: 24
223.29.238.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4441 (0x1159)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Apr 30 14:21:20 2024 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=6630fe60-dad3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:a0:a6:b6:ee:96:1b:3b:55:f8:1e:e7:77:1a:
0d:26:92:9e:31:2a:7b:9b:33:99:18:e7:41:64:de:
de:b8:cc:19:0b:3c:63:1d:f2:96:f7:eb:13:a4:95:
8d:94:29:48:58:1f:79:55:c6:4e:d5:0c:ac:3a:9c:
57:a9:32:62:38:09:95:e5:25:62:f9:cb:5a:ba:88:
65:f9:45:58:38:bc:4b:00:ec:9f:27:a3:cb:84:3c:
6b:95:cb:5f:77:d9:c2:47:23:f3:f0:28:c2:cf:83:
d0:66:32:7a:99:e6:43:68:54:74:dc:ef:f8:4c:2c:
f7:46:c2:c1:60:9d:44:68:f5:51:5e:9d:be:00:d5:
1d:ab:c1:e9:1b:dc:4c:7f:56:45:2c:6b:7c:08:9a:
0c:e6:1d:4d:41:75:b9:03:42:45:86:b0:9e:1f:f9:
38:97:39:09:f3:22:00:87:95:f2:72:b2:c1:8e:94:
4a:51:b7:28:8b:e6:9d:61:39:f2:88:20:0d:ab:5d:
e2:91:e0:5d:5b:60:00:83:6c:02:75:c7:11:81:ed:
be:4b:d2:82:ff:8e:a9:60:e0:27:61:6f:33:b9:fb:
0a:e4:61:c1:ab:89:4d:c5:eb:e8:f5:a6:80:fd:43:
4d:61:d5:cc:e5:c4:f7:e7:71:34:71:6d:0c:df:f7:
0f:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:85:7C:E2:FC:18:A8:3E:D9:89:19:CD:85:05:C7:EF:92:96:FC:32
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/EA00557606FC11EF94ED4949C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.151.27.0/24
113.203.208.0/24
113.203.216.0/23
113.203.231.0/24
113.203.250.0/24
115.167.49.0/24
115.167.78.0/24
175.110.68.0/22
175.110.80.0/22
175.110.97.0/24
175.110.109.0/24
180.178.142.0/24
180.178.152.0/21
202.92.18.0/24
202.92.20.0/24
223.29.225.0/24
223.29.227.0/24
223.29.234.0-223.29.236.255
223.29.238.0/24
Signature Algorithm: sha256WithRSAEncryption
90:aa:bb:9a:76:f0:4d:c2:35:86:b7:e2:68:ba:a0:61:78:e4:
c7:1b:40:6c:fe:8d:47:59:2b:5d:ff:71:fe:07:67:d6:a8:1a:
c5:a3:3e:d7:92:a3:75:b9:d6:fb:74:f6:35:01:40:5a:e8:a9:
d3:11:14:88:f0:a4:7f:db:78:b6:db:76:b7:4a:27:1e:43:99:
b8:04:7f:5e:8f:49:47:09:e6:6a:89:2d:96:27:c8:8f:09:37:
11:9a:7e:fe:fb:d2:46:db:74:af:80:91:1d:fc:e9:bd:70:6e:
66:8a:4d:29:f4:11:fa:d0:cd:06:e6:d3:ab:00:98:95:25:04:
b9:d1:cb:25:21:49:95:46:0c:c1:11:3e:dd:04:39:1a:48:7f:
0a:e8:2c:73:af:6e:00:ff:ab:d8:0f:66:22:ce:37:02:a0:e8:
fa:78:a0:66:af:30:65:03:2a:18:31:08:e6:dc:f1:cd:f1:f2:
35:7d:a9:41:71:8d:7e:49:4c:f9:e0:d6:29:44:22:32:b6:3c:
4a:9e:ed:7c:76:e8:c1:e8:21:b6:3e:7b:ba:bd:4f:7c:58:60:
18:a4:a2:8a:34:9d:5d:a0:75:62:fd:30:6e:0e:4f:6c:c6:2f:
c1:ad:59:05:d7:7d:9a:4a:27:ac:69:62:2b:5d:5f:50:f8:e4:
65:6d:3f:13
-----BEGIN CERTIFICATE-----
MIIF6TCCBNGgAwIBAgICEVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTYxMzQxMTAvBgNVBAUTKDgzMDgwODc5MTFFQTQ5RTIxNURDNDkyNkIwMjI2QTUy
MUU1QjM5QzQwHhcNMjQwNDMwMTQyMTIwWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NjMwZmU2MC1kYWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEApaCmtu6WGztV+B7ndxoNJpKeMSp7mzOZGOdBZN7euMwZCzxjHfKW9+sTpJWN
lClIWB95VcZO1QysOpxXqTJiOAmV5SVi+ctauohl+UVYOLxLAOyfJ6PLhDxrlctf
d9nCRyPz8CjCz4PQZjJ6meZDaFR03O/4TCz3RsLBYJ1EaPVRXp2+ANUdq8HpG9xM
f1ZFLGt8CJoM5h1NQXW5A0JFhrCeH/k4lzkJ8yIAh5XycrLBjpRKUbcoi+adYTny
iCANq13ikeBdW2AAg2wCdccRge2+S9KC/46pYOAnYW8zufsK5GHBq4lNxevo9aaA
/UNNYdXM5cT353E0cW0M3/cPiwIDAQABo4IDDTCCAwkwHQYDVR0OBBYEFASFfOL8
GKg+2YkZzYUFx++SlvwyMB8GA1UdIwQYMBaAFIMICHkR6kniFdxJJrAialIeWznE
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81RjlBQTRCRUMy
QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9nd2dJZVJIcVNlSVYzRWttc0NKcVVoNWJP
Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2d3Z0llUkhxU2VJVjNFa21zQ0pxVWg1Yk9jUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RTYxMzQvNUY5QUE0QkVDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvRUEwMDU1NzYw
NkZDMTFFRjk0RUQ0OTQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwgZYGCCsGAQUFBwEHAQH/
BIGGMIGDMIGABAIAATB6AwQAZ5cbAwQAccvQAwQBccvYAwQAccvnAwQAccv6AwQA
c6cxAwQAc6dOAwQCr25EAwQCr25QAwQAr25hAwQAr25tAwQAtLKOAwQDtLKYAwQA
ylwSAwQAylwUAwQA3x3hAwQA3x3jMAwDBAHfHeoDBADfHewDBADfHe4wDQYJKoZI
hvcNAQELBQADggEBAJCqu5p28E3CNYa34mi6oGF45McbQGz+jUdZK13/cf4HZ9ao
GsWjPteSo3W51vt09jUBQFroqdMRFIjwpH/beLbbdrdKJx5DmbgEf16PSUcJ5mqJ
LZYnyI8JNxGafv770kbbdK+AkR386b1wbmaKTSn0EfrQzQbm06sAmJUlBLnRyyUh
SZVGDMERPt0EORpIfwroLHOvbgD/q9gPZiLONwKg6Pp4oGavMGUDKhgxCObc8c3x
8jV9qUFxjX5JTPng1ilEIjK2PEqe7Xx26MHoIbY+e7q9T3xYYBikooo0nV2gdWL9
MG4OT2zGL8GtWQXXfZpKJ6xpYitdX1D45GVtPxM=
-----END CERTIFICATE-----
Generated at Sun Apr 13 02:23:58 2025 by rpki-client