Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91269B8/4ABAFEDE839411E5B01B591CC4F9AE02/87656356BFDA11E5A3377F82C4F9AE02.roa
File: 87656356BFDA11E5A3377F82C4F9AE02.roa (raw, json)
Hash identifier: c8NfMw1mJwKCQVJz0N6Yl+Yo0x6bnhCq7/2RBHxEk+k=
Subject key identifier: 49:3D:24:EF:44:41:7A:63:03:40:22:89:B6:C1:ED:94:90:BF:15:97
Certificate issuer: /CN=A91269B8/serialNumber=6627CCAB6DC2E9586E2CC11B2795735A31FD9B8A
Certificate serial: 1ED8
Authority key identifier: 66:27:CC:AB:6D:C2:E9:58:6E:2C:C1:1B:27:95:73:5A:31:FD:9B:8A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZifMq23C6VhuLMEbJ5VzWjH9m4o.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91269B8/4ABAFEDE839411E5B01B591CC4F9AE02/87656356BFDA11E5A3377F82C4F9AE02.roa
Signing time: Fri 19 Nov 2021 12:02:28 +0000
ROA not before: Fri 19 Nov 2021 12:02:28 +0000
ROA not after: Sat 28 May 2022 00:00:00 +0000
asID: 9299
IP address blocks: 117.58.192.0/19 maxlen: 19
119.111.0.0/16 maxlen: 16
119.111.0.0/19 maxlen: 19
119.111.5.0/24 maxlen: 24
119.111.16.0/24 maxlen: 24
119.111.17.0/24 maxlen: 24
119.111.18.0/24 maxlen: 24
119.111.19.0/24 maxlen: 24
119.111.23.0/24 maxlen: 24
119.111.24.0/24 maxlen: 24
119.111.25.0/24 maxlen: 24
119.111.32.0/19 maxlen: 19
119.111.33.0/24 maxlen: 24
119.111.52.0/24 maxlen: 24
119.111.64.0/19 maxlen: 19
119.111.67.0/24 maxlen: 24
119.111.68.0/24 maxlen: 24
119.111.69.0/24 maxlen: 24
119.111.70.0/24 maxlen: 24
119.111.74.0/24 maxlen: 24
119.111.76.0/24 maxlen: 24
119.111.83.0/24 maxlen: 24
119.111.86.0/24 maxlen: 24
119.111.89.0/24 maxlen: 24
119.111.91.0/24 maxlen: 24
119.111.96.0/19 maxlen: 19
119.111.105.0/24 maxlen: 24
119.111.128.0/19 maxlen: 19
119.111.136.0/24 maxlen: 24
119.111.160.0/19 maxlen: 19
119.111.192.0/19 maxlen: 19
119.111.224.0/19 maxlen: 19
210.1.96.0/19 maxlen: 19
210.1.128.0/20 maxlen: 20
210.1.135.0/24 maxlen: 24
210.1.139.0/24 maxlen: 24
210.23.96.0/19 maxlen: 19
210.23.98.0/24 maxlen: 24
210.23.99.0/24 maxlen: 24
210.23.105.0/24 maxlen: 24
210.23.107.0/24 maxlen: 24
210.23.119.0/24 maxlen: 24
210.23.160.0/19 maxlen: 19
210.23.160.0/20 maxlen: 20
210.23.176.0/20 maxlen: 20
210.23.192.0/18 maxlen: 18
210.23.192.0/19 maxlen: 19
210.23.213.0/24 maxlen: 24
210.23.215.0/24 maxlen: 24
210.23.217.0/24 maxlen: 24
210.23.224.0/19 maxlen: 19
210.23.225.0/24 maxlen: 24
221.121.96.0/19 maxlen: 19
221.121.118.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7896 (0x1ed8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91269B8/serialNumber=6627CCAB6DC2E9586E2CC11B2795735A31FD9B8A
Validity
Not Before: Nov 19 12:02:28 2021 GMT
Not After : May 28 00:00:00 2022 GMT
Subject: CN=61979254-7850
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b5:9d:19:05:34:58:72:39:ab:92:df:87:fa:
62:ab:7d:6f:49:91:16:0f:5e:e3:10:03:a6:79:ca:
35:ac:14:48:63:1d:b0:47:5d:95:b0:ac:05:fc:bc:
4c:14:dc:69:0a:9c:7c:c1:f1:bd:2d:85:da:f0:c5:
9c:8b:99:e3:2c:5f:6c:df:a1:0c:8b:a2:3f:5a:05:
99:47:db:69:6c:92:9e:5f:d9:4b:bc:15:a9:d4:dd:
cf:a3:a3:39:25:7f:ac:cd:a3:11:d9:af:9e:70:02:
cb:fd:f6:a2:ff:14:4f:83:b5:01:04:a8:2b:0a:88:
2c:27:d8:5d:bb:d2:ec:2a:73:e0:4b:6c:b3:98:52:
be:cd:ca:c2:23:ea:e9:fd:bd:43:6c:74:59:03:38:
69:80:51:3f:8f:2c:61:35:34:f4:5b:30:f0:de:e8:
05:e1:c0:8f:0c:3a:8a:72:c9:a1:e3:82:79:86:4a:
81:8b:47:f2:94:2f:fe:01:14:68:c0:97:b1:05:45:
81:b2:d9:3a:05:6f:97:28:fa:9d:86:ed:6f:35:ea:
37:ae:01:e1:0b:51:61:88:9a:bf:a4:e3:27:0c:4e:
44:63:9a:74:4a:1e:50:6a:c7:c5:61:3e:9a:58:f0:
97:1c:f8:d3:72:5f:91:19:03:49:63:b5:0e:15:f7:
55:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:3D:24:EF:44:41:7A:63:03:40:22:89:B6:C1:ED:94:90:BF:15:97
X509v3 Authority Key Identifier:
keyid:66:27:CC:AB:6D:C2:E9:58:6E:2C:C1:1B:27:95:73:5A:31:FD:9B:8A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91269B8/4ABAFEDE839411E5B01B591CC4F9AE02/ZifMq23C6VhuLMEbJ5VzWjH9m4o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZifMq23C6VhuLMEbJ5VzWjH9m4o.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91269B8/4ABAFEDE839411E5B01B591CC4F9AE02/87656356BFDA11E5A3377F82C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
117.58.192.0/19
119.111.0.0/16
210.1.96.0-210.1.143.255
210.23.96.0/19
210.23.160.0-210.23.255.255
221.121.96.0/19
Signature Algorithm: sha256WithRSAEncryption
2f:cf:22:39:df:2d:d6:03:68:65:1a:19:bb:4a:6a:a1:84:50:
0c:0a:02:ad:ce:6b:f7:39:84:c6:c8:ba:ec:5c:35:80:45:7b:
b3:ac:9a:f2:48:a5:b8:85:42:aa:80:d7:08:29:2a:cc:0d:ad:
d7:c6:a0:6a:48:dd:48:6a:b8:46:3c:69:4c:ed:31:71:bb:99:
dc:ff:65:01:ad:42:dd:4c:12:c5:62:d3:6d:a8:76:c9:60:b9:
8d:3f:55:da:cb:82:23:e8:86:e0:7b:90:c1:1e:8e:9a:2c:ea:
da:cb:02:8d:6a:4e:7d:42:9e:52:4f:0a:5b:f4:03:18:87:54:
88:2e:7e:68:83:31:ec:21:6a:e5:10:ea:ac:22:ee:8e:fa:b8:
5b:36:95:e6:82:a3:4d:d5:16:d9:0d:05:f3:6a:3d:ea:38:b5:
4e:e6:23:99:ad:07:dc:04:92:01:f8:82:3d:c7:9c:46:dc:9d:
18:eb:ac:15:bd:ff:13:70:e7:34:f3:9c:31:ea:5e:64:18:77:
f4:bc:15:09:68:a8:63:8f:41:48:db:73:4e:84:96:3c:df:af:
ea:98:a8:95:6e:55:41:1d:43:7b:e6:28:6f:5a:4a:72:46:b6:
cc:5b:10:f7:05:50:95:3d:39:35:57:97:76:5c:3f:5b:87:09:
53:c6:ec:6c
-----BEGIN CERTIFICATE-----
MIIFnTCCBIWgAwIBAgICHtgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MjY5QjgxMTAvBgNVBAUTKDY2MjdDQ0FCNkRDMkU5NTg2RTJDQzExQjI3OTU3MzVB
MzFGRDlCOEEwHhcNMjExMTE5MTIwMjI4WhcNMjIwNTI4MDAwMDAwWjAYMRYwFAYD
VQQDEw02MTk3OTI1NC03ODUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAvbWdGQU0WHI5q5Lfh/piq31vSZEWD17jEAOmeco1rBRIYx2wR12VsKwF/LxM
FNxpCpx8wfG9LYXa8MWci5njLF9s36EMi6I/WgWZR9tpbJKeX9lLvBWp1N3Po6M5
JX+szaMR2a+ecALL/fai/xRPg7UBBKgrCogsJ9hdu9LsKnPgS2yzmFK+zcrCI+rp
/b1DbHRZAzhpgFE/jyxhNTT0WzDw3ugF4cCPDDqKcsmh44J5hkqBi0fylC/+ARRo
wJexBUWBstk6BW+XKPqdhu1vNeo3rgHhC1FhiJq/pOMnDE5EY5p0Sh5QasfFYT6a
WPCXHPjTcl+RGQNJY7UOFfdVTwIDAQABo4ICwTCCAr0wHQYDVR0OBBYEFEk9JO9E
QXpjA0AiibbB7ZSQvxWXMB8GA1UdIwQYMBaAFGYnzKttwulYbizBGyeVc1ox/ZuK
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjlCOC80QUJBRkVERTgz
OTQxMUU1QjAxQjU5MUNDNEY5QUUwMi9aaWZNcTIzQzZWaHVMTUViSjVWeldqSDlt
NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1ppZk1xMjNDNlZodUxNRWJKNVZ6V2pIOW00by5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
MjY5QjgvNEFCQUZFREU4Mzk0MTFFNUIwMUI1OTFDQzRGOUFFMDIvODc2NTYzNTZC
RkRBMTFFNUEzMzc3RjgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSwYIKwYBBQUHAQcBAf8E
PDA6MDgEAgABMDIDBAV1OsADAwB3bzAMAwQF0gFgAwQE0gGAAwQF0hdgMAsDBAXS
F6ADAwPSEAMEBd15YDANBgkqhkiG9w0BAQsFAAOCAQEAL88iOd8t1gNoZRoZu0pq
oYRQDAoCrc5r9zmExsi67Fw1gEV7s6ya8kiluIVCqoDXCCkqzA2t18agakjdSGq4
RjxpTO0xcbuZ3P9lAa1C3UwSxWLTbah2yWC5jT9V2suCI+iG4HuQwR6Omizq2ssC
jWpOfUKeUk8KW/QDGIdUiC5+aIMx7CFq5RDqrCLujvq4WzaV5oKjTdUW2Q0F82o9
6ji1TuYjma0H3ASSAfiCPcecRtydGOusFb3/E3DnNPOcMepeZBh39LwVCWioY49B
SNtzToSWPN+v6piolW5VQR1De+Yob1pKcka2zFsQ9wVQlT05NVeXdlw/W4cJU8bs
bA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:48 2024 by rpki-client on console-ams.rpki-client.org