Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913C627/C265C1A4D07D11EA8600986DC4F9AE02/4B2705C4058D11EEAD846563C4F9AE02.roa
File: 4B2705C4058D11EEAD846563C4F9AE02.roa (raw, json)
Hash identifier: SSPAIilJBLYW+bZRqDAYFMNFMVVWqK55Tve25z+7zes=
Subject key identifier: 99:73:73:E5:66:24:7D:D0:62:63:70:81:A6:E8:8C:70:D3:28:2C:4D
Certificate issuer: /CN=A913C627/serialNumber=6FFA5DB159D40A3A172DBC74F5C32B55517979AF
Certificate serial: 06CC
Authority key identifier: 6F:FA:5D:B1:59:D4:0A:3A:17:2D:BC:74:F5:C3:2B:55:51:79:79:AF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_pdsVnUCjoXLbx09cMrVVF5ea8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913C627/C265C1A4D07D11EA8600986DC4F9AE02/4B2705C4058D11EEAD846563C4F9AE02.roa
Signing time: Thu 08 Jun 2023 09:35:35 +0000
ROA not before: Thu 08 Jun 2023 09:35:35 +0000
ROA not after: Wed 29 May 2024 00:00:00 +0000
asID: 9738
IP address blocks: 61.14.96.0/19 maxlen: 19
61.14.104.0/24 maxlen: 24
61.14.105.0/24 maxlen: 24
61.14.106.0/24 maxlen: 24
61.14.107.0/24 maxlen: 24
61.14.116.0/24 maxlen: 24
61.14.117.0/24 maxlen: 24
61.14.121.0/24 maxlen: 24
61.14.123.0/24 maxlen: 24
103.28.196.0/23 maxlen: 23
103.28.198.0/23 maxlen: 23
202.148.224.0/21 maxlen: 21
202.148.232.0/24 maxlen: 24
202.148.233.0/24 maxlen: 24
202.148.234.0/23 maxlen: 23
202.148.236.0/22 maxlen: 22
202.148.238.0/24 maxlen: 24
202.148.239.0/24 maxlen: 24
203.19.157.0/24 maxlen: 24
210.18.192.0/22 maxlen: 22
210.18.196.0/24 maxlen: 24
210.18.197.0/24 maxlen: 24
210.18.198.0/24 maxlen: 24
210.18.199.0/24 maxlen: 24
210.18.200.0/24 maxlen: 24
210.18.201.0/24 maxlen: 24
210.18.202.0/23 maxlen: 23
210.18.202.0/24 maxlen: 24
210.18.203.0/24 maxlen: 24
210.18.204.0/22 maxlen: 22
210.18.208.0/20 maxlen: 20
210.18.211.0/24 maxlen: 24
210.18.224.0/20 maxlen: 20
210.18.224.0/21 maxlen: 21
210.18.232.0/24 maxlen: 24
210.18.233.0/24 maxlen: 24
210.18.234.0/23 maxlen: 23
210.18.236.0/22 maxlen: 22
210.18.240.0/24 maxlen: 24
210.18.241.0/24 maxlen: 24
210.18.242.0/24 maxlen: 24
210.18.243.0/24 maxlen: 24
210.18.244.0/22 maxlen: 22
210.18.248.0/23 maxlen: 23
210.18.250.0/23 maxlen: 23
210.18.251.0/24 maxlen: 24
210.18.252.0/24 maxlen: 24
210.18.253.0/24 maxlen: 24
210.18.254.0/24 maxlen: 24
210.18.255.0/24 maxlen: 24
2403:c800::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1740 (0x6cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913C627
Validity
Not Before: Jun 8 09:35:35 2023 GMT
Not After : May 29 00:00:00 2024 GMT
Subject: CN=6481a0e7-d7c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:f8:15:9e:9d:cd:dd:29:fd:3f:23:84:18:15:
07:20:92:14:32:70:b4:ad:d7:92:92:51:aa:13:77:
cc:a0:a0:64:7e:61:d6:91:64:36:f4:b9:28:89:2c:
f6:07:9b:c0:4c:e5:d2:b2:1d:cf:d8:de:00:7d:df:
67:03:2f:f9:67:47:12:c0:2c:54:5a:34:0b:9b:18:
01:9d:13:71:db:7a:b9:43:19:06:da:08:cf:1c:54:
67:d5:7f:49:ef:19:1b:20:c1:a4:07:06:0e:b2:be:
24:8c:7d:a7:c4:d0:13:d5:47:84:dd:ca:1c:a0:72:
db:60:25:ac:96:46:fb:dc:c6:5d:4f:aa:e3:c6:f2:
41:23:cd:a0:5f:c9:6e:59:30:c2:86:cc:f5:86:2e:
d0:db:52:8c:44:71:68:50:bb:c8:39:fc:ae:1c:8e:
21:fe:a4:a2:9d:78:7f:5b:45:41:af:2e:d2:9e:85:
5f:ae:1a:2b:a2:31:74:0e:79:2b:8b:4c:ed:2f:a2:
b5:f9:b3:d8:a2:6b:7a:21:ac:d8:de:64:fc:7b:ef:
0d:42:4f:6f:a2:dd:b9:56:fc:20:dc:6c:1d:1a:7d:
b8:53:e2:7e:c4:1a:48:71:6e:20:ae:76:a2:dd:34:
1e:c1:23:53:c0:45:47:c2:55:c7:0c:04:04:19:e0:
92:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:73:73:E5:66:24:7D:D0:62:63:70:81:A6:E8:8C:70:D3:28:2C:4D
X509v3 Authority Key Identifier:
keyid:6F:FA:5D:B1:59:D4:0A:3A:17:2D:BC:74:F5:C3:2B:55:51:79:79:AF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913C627/C265C1A4D07D11EA8600986DC4F9AE02/b_pdsVnUCjoXLbx09cMrVVF5ea8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_pdsVnUCjoXLbx09cMrVVF5ea8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C627/C265C1A4D07D11EA8600986DC4F9AE02/4B2705C4058D11EEAD846563C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
61.14.96.0/19
103.28.196.0/22
202.148.224.0/20
203.19.157.0/24
210.18.192.0/18
IPv6:
2403:c800::/32
Signature Algorithm: sha256WithRSAEncryption
34:3a:39:d7:32:45:1f:b2:34:4b:e4:05:35:2d:9a:a6:25:1a:
d2:1c:ea:65:21:af:a7:ac:ba:e4:ba:48:10:e0:38:a4:5c:92:
45:dd:44:0f:50:08:de:25:2d:e7:a0:85:1c:2f:e9:ab:5f:cb:
52:70:24:68:5d:7c:51:e5:79:59:0d:a7:34:93:b9:4b:32:e9:
27:83:ee:88:e5:46:ef:88:9d:d0:8b:2f:83:95:27:99:fa:d9:
57:1f:2c:75:76:ed:28:21:7c:7b:7f:79:d8:9f:b1:7d:57:a2:
56:f4:0d:e9:47:73:59:b9:26:71:09:fc:75:fc:42:3b:ef:73:
d2:7a:a0:57:b4:ab:7d:63:e5:51:11:50:61:f3:65:55:fd:26:
96:31:cd:3a:ec:1a:0a:62:56:23:ce:2f:34:78:15:19:46:6a:
40:49:45:19:66:7c:d1:f5:7a:66:66:5a:7d:a8:e3:3a:b5:e4:
7c:ab:a1:66:c8:b7:1f:16:eb:59:64:1b:8a:e2:39:6d:64:d6:
1c:2b:5d:96:4c:fb:11:a3:af:d3:14:f0:c6:f5:1c:26:37:d5:
7f:2e:b1:16:a6:cd:54:d1:eb:82:aa:5f:67:6d:16:b3:9b:49:
17:3d:7b:4b:0c:1c:44:c8:b8:5d:46:f2:f2:84:94:f3:5c:87:
70:c3:93:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:37:45 2025 by rpki-client