Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/57B5F0C01E0111E9A590C837C4F9AE02.roa
File: 57B5F0C01E0111E9A590C837C4F9AE02.roa (raw, json)
Hash identifier: bRx0XbmfkuffDLfcXG8o3+GavOwVdc3W3JWZfhB3tMY=
Subject key identifier: 15:EF:EF:78:B1:94:D4:74:CC:83:D9:BD:0F:B9:51:47:86:FD:FD:8C
Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C
Certificate serial: 337C
Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/57B5F0C01E0111E9A590C837C4F9AE02.roa
Signing time: Wed 09 Mar 2022 11:20:14 +0000
ROA not before: Wed 09 Mar 2022 11:20:14 +0000
ROA not after: Fri 30 Sep 2022 00:00:00 +0000
asID: 9287
IP address blocks: 61.90.185.0/24 maxlen: 24
61.90.197.0/24 maxlen: 24
61.90.198.0/24 maxlen: 24
61.90.200.0/22 maxlen: 22
61.90.204.0/23 maxlen: 23
61.90.204.0/24 maxlen: 24
61.90.205.0/24 maxlen: 24
61.90.213.0/24 maxlen: 24
61.90.231.0/24 maxlen: 24
61.91.0.0/21 maxlen: 21
61.91.0.0/24 maxlen: 24
61.91.1.0/24 maxlen: 24
61.91.2.0/24 maxlen: 24
61.91.3.0/24 maxlen: 24
61.91.4.0/24 maxlen: 24
61.91.5.0/24 maxlen: 24
61.91.6.0/24 maxlen: 24
61.91.7.0/24 maxlen: 24
61.91.11.0/24 maxlen: 24
61.91.12.0/22 maxlen: 22
61.91.12.0/24 maxlen: 24
61.91.13.0/24 maxlen: 24
61.91.14.0/24 maxlen: 24
61.91.15.0/24 maxlen: 24
61.91.80.0/23 maxlen: 23
61.91.80.0/24 maxlen: 24
61.91.81.0/24 maxlen: 24
61.91.92.0/24 maxlen: 24
61.91.120.0/21 maxlen: 21
61.91.120.0/24 maxlen: 24
61.91.121.0/24 maxlen: 24
61.91.122.0/24 maxlen: 24
61.91.123.0/24 maxlen: 24
61.91.124.0/24 maxlen: 24
61.91.125.0/24 maxlen: 24
61.91.126.0/24 maxlen: 24
61.91.127.0/24 maxlen: 24
61.91.247.0/24 maxlen: 24
110.170.240.0/24 maxlen: 24
119.46.69.0/24 maxlen: 24
119.46.92.0/24 maxlen: 24
119.46.96.0/23 maxlen: 23
119.46.96.0/24 maxlen: 24
119.46.97.0/24 maxlen: 24
119.46.98.0/24 maxlen: 24
119.46.113.0/24 maxlen: 24
119.46.194.0/24 maxlen: 24
119.46.226.0/24 maxlen: 24
203.144.245.0/24 maxlen: 24
210.86.139.0/24 maxlen: 24
210.86.176.0/21 maxlen: 21
210.86.176.0/24 maxlen: 24
210.86.177.0/24 maxlen: 24
210.86.178.0/24 maxlen: 24
210.86.179.0/24 maxlen: 24
210.86.180.0/22 maxlen: 22
210.86.180.0/24 maxlen: 24
210.86.181.0/24 maxlen: 24
210.86.182.0/24 maxlen: 24
210.86.183.0/24 maxlen: 24
2001:fb0:1000::/48 maxlen: 48
2001:fb0:1001::/48 maxlen: 48
2001:fb0:1002::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13180 (0x337c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C
Validity
Not Before: Mar 9 11:20:14 2022 GMT
Not After : Sep 30 00:00:00 2022 GMT
Subject: CN=62288d6e-8f71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:52:bc:4d:62:ff:b0:6b:82:d5:e7:7b:2c:f1:
fa:8f:96:b3:f6:0b:a5:87:d8:ff:48:ab:46:e9:ba:
a5:38:32:97:74:a3:7c:e8:53:11:cd:fd:a3:4a:60:
6a:d2:bd:67:d9:6b:24:1a:84:39:f8:e0:39:d3:e7:
7e:be:9d:f9:05:fa:0b:be:45:b8:33:c5:ea:b0:4b:
ab:05:ae:10:69:69:a7:48:fa:bd:76:ac:6c:10:71:
cd:61:f5:25:e1:47:5c:b8:cc:f0:03:90:60:7d:36:
73:73:c5:3a:32:0e:72:fa:34:19:e7:01:94:57:21:
ac:95:0d:3d:85:a0:51:2b:0c:d5:f9:29:cf:02:1c:
2a:c8:a8:36:8a:7c:68:a1:45:ad:33:11:c1:45:51:
45:15:fa:84:75:2f:af:38:65:53:6d:da:60:56:2a:
85:cf:f5:66:34:99:bf:9d:29:25:b0:07:ce:3b:41:
d2:e6:7f:3e:a6:45:22:fc:70:af:23:24:5d:83:00:
aa:b1:2c:5d:a6:ea:8a:53:26:28:14:2b:6e:9c:c9:
17:1f:06:bc:9f:8a:23:7e:a4:b3:3f:23:81:2d:a1:
9b:2a:f6:1c:65:a3:6e:33:b3:f7:c5:a6:b4:dc:a8:
fc:9f:80:32:47:bd:f3:7e:9a:7e:d9:15:1d:d9:19:
6a:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:EF:EF:78:B1:94:D4:74:CC:83:D9:BD:0F:B9:51:47:86:FD:FD:8C
X509v3 Authority Key Identifier:
keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/57B5F0C01E0111E9A590C837C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
61.90.185.0/24
61.90.197.0-61.90.198.255
61.90.200.0-61.90.205.255
61.90.213.0/24
61.90.231.0/24
61.91.0.0/21
61.91.11.0-61.91.15.255
61.91.80.0/23
61.91.92.0/24
61.91.120.0/21
61.91.247.0/24
110.170.240.0/24
119.46.69.0/24
119.46.92.0/24
119.46.96.0-119.46.98.255
119.46.113.0/24
119.46.194.0/24
119.46.226.0/24
203.144.245.0/24
210.86.139.0/24
210.86.176.0/21
IPv6:
2001:fb0:1000::-2001:fb0:1002:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
aa:06:9d:2f:fa:29:5b:99:13:cc:6d:10:32:03:9a:13:b5:62:
40:f5:0a:90:02:4a:e5:82:94:c0:91:c3:b0:ec:18:ac:e0:19:
5f:42:bd:05:d7:d9:e4:92:6f:09:85:14:23:fd:77:59:2e:29:
ec:6d:71:d1:ad:9a:28:86:67:c7:e0:5e:eb:10:5d:8a:ed:74:
f5:5e:63:e2:1a:ce:85:3f:c5:b5:c2:4f:be:08:a5:1b:98:23:
a2:8b:e9:60:b1:6f:e2:a8:3d:be:f8:4b:5a:8f:31:7e:a9:a2:
6a:10:a2:d0:e9:3f:b2:ab:e4:3f:de:91:87:2a:f7:17:c8:d4:
6b:89:24:04:14:6e:56:c5:35:05:6d:59:78:70:28:5d:ba:f7:
10:79:b3:8c:44:76:63:70:bc:27:bd:6c:71:4f:11:6d:8f:a7:
1e:02:bb:29:56:d1:3f:b6:fc:17:16:7a:17:2e:6f:74:92:e9:
74:e6:2e:c0:49:e7:a8:67:10:bf:af:e9:ef:c0:aa:67:7e:23:
ab:ea:42:3e:97:f7:fe:03:96:a9:4f:b7:35:69:8a:b8:19:aa:
2b:34:17:6a:8b:a7:8d:dc:9f:ce:f6:e8:3d:1a:51:2a:34:a9:
4b:fb:3a:d9:9c:30:86:aa:18:37:8b:68:be:de:26:08:af:73:
77:26:08:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:54 2024 by rpki-client on console-ams.rpki-client.org