Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/1272A1BE370511EC8309D965C4F9AE02.roa
File: 1272A1BE370511EC8309D965C4F9AE02.roa (raw, json)
Hash identifier: GQZzMLmnHw+ZXMwx4WiU2oKZzZgtSnV9HMhnh/riswo=
Subject key identifier: 06:D9:B7:6A:C2:73:AB:06:C7:C7:6C:F0:87:3E:0B:3B:94:D9:FF:1C
Certificate issuer: /CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00
Certificate serial: 13D5
Authority key identifier: C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/1272A1BE370511EC8309D965C4F9AE02.roa
Signing time: Fri 18 Feb 2022 06:24:31 +0000
ROA not before: Fri 18 Feb 2022 06:24:31 +0000
ROA not after: Mon 01 May 2023 00:00:00 +0000
asID: 136994
IP address blocks: 112.213.192.0/20 maxlen: 20
112.213.192.0/24 maxlen: 24
112.213.193.0/24 maxlen: 24
112.213.194.0/24 maxlen: 24
112.213.195.0/24 maxlen: 24
112.213.196.0/24 maxlen: 24
112.213.197.0/24 maxlen: 24
112.213.198.0/24 maxlen: 24
112.213.199.0/24 maxlen: 24
112.213.200.0/24 maxlen: 24
112.213.201.0/24 maxlen: 24
112.213.202.0/24 maxlen: 24
112.213.203.0/24 maxlen: 24
112.213.204.0/24 maxlen: 24
112.213.205.0/24 maxlen: 24
112.213.206.0/24 maxlen: 24
112.213.207.0/24 maxlen: 24
112.213.208.0/20 maxlen: 20
112.213.208.0/24 maxlen: 24
112.213.209.0/24 maxlen: 24
112.213.210.0/24 maxlen: 24
112.213.211.0/24 maxlen: 24
112.213.212.0/24 maxlen: 24
112.213.213.0/24 maxlen: 24
112.213.214.0/24 maxlen: 24
112.213.215.0/24 maxlen: 24
112.213.220.0/24 maxlen: 24
112.213.221.0/24 maxlen: 24
112.213.222.0/24 maxlen: 24
112.213.223.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5077 (0x13d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EAE3D
Validity
Not Before: Feb 18 06:24:31 2022 GMT
Not After : May 1 00:00:00 2023 GMT
Subject: CN=620f3b9f-bf9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:dd:fe:db:81:b8:f4:ee:88:bc:05:ca:4c:c6:
5f:67:ef:85:2a:3f:c7:d7:02:52:ce:af:bb:a5:59:
73:18:46:78:59:b3:06:75:aa:85:ce:54:a9:f8:de:
b5:59:d8:3b:c7:54:88:3b:27:da:de:18:f4:ab:b7:
ea:40:69:2a:68:19:fe:63:02:6f:f8:a9:85:7a:34:
33:a0:85:5c:a6:df:f3:f5:88:f2:53:6b:63:56:2b:
79:22:4f:1d:d8:5f:f8:da:f3:09:f3:0a:dd:cb:eb:
de:fd:d0:3f:a0:e2:a0:ea:4b:0c:03:82:c1:88:96:
e9:dd:7e:8d:9e:71:86:74:cb:5e:bf:5b:3e:79:7c:
15:55:ee:fe:44:e8:7e:70:b3:1d:73:0f:3f:94:5a:
ef:50:a2:6a:90:02:f2:4e:f9:59:af:95:7f:76:20:
73:dd:c4:e3:d4:2d:cb:e3:56:1b:4f:fa:fe:ba:85:
78:b0:9e:aa:69:18:19:07:5c:e9:92:25:2a:22:06:
89:b2:aa:4a:0b:55:3e:b6:7a:a9:cc:24:89:95:bb:
66:f7:bf:41:39:5f:a3:16:e4:0c:11:e8:12:d1:51:
34:09:30:e6:c9:7f:bc:d6:67:87:96:e8:fc:34:f3:
0d:e1:b2:07:62:a8:3f:8c:7a:f6:94:3a:9c:aa:6a:
b2:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:D9:B7:6A:C2:73:AB:06:C7:C7:6C:F0:87:3E:0B:3B:94:D9:FF:1C
X509v3 Authority Key Identifier:
keyid:C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/1272A1BE370511EC8309D965C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
112.213.192.0/19
Signature Algorithm: sha256WithRSAEncryption
28:49:b1:6f:81:44:7c:3d:b3:dc:ea:ee:86:ef:cb:b7:68:95:
7c:27:e5:ac:ad:38:5e:15:11:64:e4:87:90:5e:39:b8:40:69:
75:ba:90:03:3b:0d:98:60:86:0d:43:27:12:4b:87:45:37:8c:
ef:26:5a:c1:a4:1c:13:2c:92:ed:1d:0d:d2:d6:68:23:94:3a:
a3:18:41:ce:65:b6:b7:8f:64:da:5a:1c:2f:79:b2:6c:14:c6:
f6:5d:d4:a7:6a:13:93:fd:83:3b:fb:f0:7e:db:53:9f:49:59:
79:77:0e:3f:0d:49:06:67:ba:a9:67:f4:38:f4:63:1b:9d:2a:
a0:ca:f0:8f:eb:46:71:fd:b4:fa:b2:79:e0:34:16:c7:a9:b8:
43:48:1b:9a:2e:e7:6c:bc:16:60:5a:ee:b3:0b:ca:44:fc:bf:
12:31:93:32:e2:37:ad:c9:6a:9c:0e:0a:52:59:02:c8:05:54:
94:6f:5e:e6:35:c1:f6:24:6b:f9:27:6e:07:81:93:80:18:6c:
7e:36:c4:82:c3:56:44:28:6a:65:66:c8:9b:ca:4e:e0:51:49:
ac:6b:25:68:f5:de:8b:e5:de:fd:2a:c3:4b:c7:08:5b:7d:ec:
17:fc:60:0c:8a:d6:0f:b2:f9:d0:f7:a0:c8:f3:e8:17:29:30:
ed:4f:af:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:17:22 2025 by rpki-client