Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/22F0593005A511EEA86A0C2BC4F9AE02.roa
File: 22F0593005A511EEA86A0C2BC4F9AE02.roa (raw, json)
Hash identifier: eyIV5iKEeVdr/hdvXPCMFkIqtuEbNlDLGTZhSAqLxhk=
Subject key identifier: DF:B1:B4:DC:31:5E:A5:2F:C8:EE:A2:1E:B7:40:02:4D:F3:EC:41:50
Certificate issuer: /CN=A9143CB3/serialNumber=CBA197C04CAA9BD295F5788472A6A10AA3FBEF70
Certificate serial: 198A
Authority key identifier: CB:A1:97:C0:4C:AA:9B:D2:95:F5:78:84:72:A6:A1:0A:A3:FB:EF:70
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/22F0593005A511EEA86A0C2BC4F9AE02.roa
Signing time: Thu 08 Jun 2023 02:35:31 +0000
ROA not before: Thu 08 Jun 2023 02:35:31 +0000
ROA not after: Wed 31 Jan 2024 00:00:00 +0000
asID: 139007
IP address blocks: 116.112.80.0/20 maxlen: 20
116.113.128.0/19 maxlen: 19
116.113.160.0/21 maxlen: 21
116.115.40.0/21 maxlen: 21
116.115.48.0/20 maxlen: 20
116.115.64.0/19 maxlen: 19
124.67.92.0/22 maxlen: 22
124.67.96.0/20 maxlen: 20
202.99.237.0/24 maxlen: 24
202.99.242.0/24 maxlen: 24
218.21.248.0/22 maxlen: 22
218.21.252.0/23 maxlen: 23
218.21.254.0/24 maxlen: 24
219.159.20.0/22 maxlen: 22
219.159.59.0/24 maxlen: 24
219.159.60.0/23 maxlen: 23
221.199.204.0/22 maxlen: 22
2408:8000:5004::/48 maxlen: 48
2408:822a:9200::/39 maxlen: 39
2408:822a:9400::/38 maxlen: 38
2408:822a:9800::/37 maxlen: 37
2408:822a:a000::/37 maxlen: 37
2408:862a:9200::/39 maxlen: 39
2408:862a:9400::/38 maxlen: 38
2408:862a:9800::/37 maxlen: 37
2408:862a:a000::/37 maxlen: 37
2408:872b:400::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6538 (0x198a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9143CB3/serialNumber=CBA197C04CAA9BD295F5788472A6A10AA3FBEF70
Validity
Not Before: Jun 8 02:35:31 2023 GMT
Not After : Jan 31 00:00:00 2024 GMT
Subject: CN=64813e73-3660
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:05:22:06:52:da:ca:8d:46:b8:5f:6b:8a:98:
5e:c4:ef:1b:ff:16:50:f5:c6:ef:73:16:45:76:3b:
28:47:93:ee:1c:30:68:9a:77:2b:e5:c9:4c:7c:25:
7d:d7:40:5d:c2:10:e7:16:dc:06:97:e3:bf:5e:b8:
9f:aa:36:1c:14:d3:90:e1:4e:aa:8f:5d:a9:89:95:
ba:07:36:f8:f1:01:55:e9:1d:39:8a:2e:ac:a6:7d:
1d:69:32:0f:cd:9a:5d:b8:a7:b3:c6:fb:c4:68:3e:
32:87:2d:c8:6e:29:f2:2c:2e:87:9a:26:2b:83:83:
2b:cf:8b:00:cc:1c:00:e4:39:7e:8c:81:77:e8:4a:
09:d5:9a:0a:b7:a0:f0:d5:3d:e4:cf:40:c0:93:7d:
63:fa:88:c8:6b:7e:4a:ce:cc:08:86:23:36:4d:d1:
ff:f7:28:e6:f4:d4:ec:fb:a7:7c:10:5c:99:e3:1a:
f7:9f:2b:37:00:85:2b:45:e5:a1:9b:6d:0c:82:a6:
fa:0a:09:b8:78:8f:b7:71:4c:32:07:10:21:4a:05:
6a:8e:5c:74:bf:e4:f3:fb:80:95:96:05:d1:7b:ee:
26:5b:ac:0c:dd:8f:1a:a7:dc:6c:48:64:e6:26:aa:
ae:0e:ef:84:6b:38:a8:2c:d2:a0:45:ee:8d:2f:3a:
92:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:B1:B4:DC:31:5E:A5:2F:C8:EE:A2:1E:B7:40:02:4D:F3:EC:41:50
X509v3 Authority Key Identifier:
keyid:CB:A1:97:C0:4C:AA:9B:D2:95:F5:78:84:72:A6:A1:0A:A3:FB:EF:70
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/22F0593005A511EEA86A0C2BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
116.112.80.0/20
116.113.128.0-116.113.167.255
116.115.40.0-116.115.95.255
124.67.92.0-124.67.111.255
202.99.237.0/24
202.99.242.0/24
218.21.248.0-218.21.254.255
219.159.20.0/22
219.159.59.0-219.159.61.255
221.199.204.0/22
IPv6:
2408:8000:5004::/48
2408:822a:9200::-2408:822a:a7ff:ffff:ffff:ffff:ffff:ffff
2408:862a:9200::-2408:862a:a7ff:ffff:ffff:ffff:ffff:ffff
2408:872b:400::/40
Signature Algorithm: sha256WithRSAEncryption
59:e2:eb:1c:e6:97:be:0c:55:79:34:62:6d:fe:ce:bf:e5:6f:
56:75:b8:dc:7b:a2:8e:93:36:52:26:28:46:32:35:0e:75:90:
22:02:8e:c7:67:c0:88:e8:c0:49:a8:60:20:99:07:81:b1:e3:
76:37:09:0c:6d:e1:2d:28:b9:62:2c:44:ee:ee:34:e2:96:cd:
fd:4c:44:d4:17:1a:b1:6c:0b:3b:c5:c4:b9:65:75:1f:72:29:
70:a0:93:95:cf:35:96:aa:df:2d:66:bd:2d:e0:b2:6d:aa:84:
e4:e6:4b:ef:a8:30:19:88:7a:30:08:31:31:7b:3d:0e:24:0d:
81:5c:ae:17:3a:3b:15:c6:a6:c2:30:11:da:d1:8c:c4:d4:25:
9f:b8:f0:84:37:3a:74:cd:16:a9:c5:8e:ed:5a:30:aa:61:5c:
4b:e2:24:7f:79:f2:5b:d5:05:ad:66:41:47:49:46:3e:20:74:
12:3f:53:6c:cf:ce:de:33:75:da:89:be:60:78:36:f2:13:b1:
85:0e:ce:c3:4e:fa:61:f9:31:d7:e2:d4:df:94:74:47:b5:d5:
06:4b:bc:2a:84:2b:f8:d8:ee:87:09:ca:2b:44:b8:3b:0b:c0:
ea:4d:4c:df:4e:28:48:11:87:78:d6:30:28:03:1e:48:4e:7b:
1c:e0:00:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:56 2024 by rpki-client on console-ams.rpki-client.org