Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/53A5509E8DBD11EE86D8BB67C4F9AE02.roa
File: 53A5509E8DBD11EE86D8BB67C4F9AE02.roa (raw, json)
Hash identifier: DQeW5BVu1INk+DbysrrFQhS2Wdm10x6DNOtQq5JksnQ=
Subject key identifier: 08:28:FF:9E:12:F4:64:8F:5E:82:5E:BC:B7:1B:D2:7B:10:57:49:60
Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA
Certificate serial: 1CFF
Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/53A5509E8DBD11EE86D8BB67C4F9AE02.roa
Signing time: Tue 28 Nov 2023 07:11:19 +0000
ROA not before: Tue 28 Nov 2023 07:11:19 +0000
ROA not after: Fri 01 Mar 2024 00:00:00 +0000
asID: 4809
IP address blocks: 27.148.248.0/21 maxlen: 21
58.43.192.0/18 maxlen: 18
58.43.192.0/22 maxlen: 22
58.49.108.0/24 maxlen: 24
59.43.0.0/16 maxlen: 16
59.60.0.0/20 maxlen: 20
59.173.248.0/24 maxlen: 24
106.122.216.0/21 maxlen: 21
116.211.0.0/18 maxlen: 18
116.248.192.0/18 maxlen: 24
117.28.224.0/19 maxlen: 19
117.38.0.0/16 maxlen: 16
117.38.0.0/18 maxlen: 18
117.38.64.0/20 maxlen: 20
117.38.80.0/20 maxlen: 20
117.38.96.0/20 maxlen: 20
117.41.0.0/17 maxlen: 17
117.41.0.0/19 maxlen: 20
117.41.32.0/20 maxlen: 20
117.41.48.0/20 maxlen: 20
117.41.64.0/20 maxlen: 20
117.41.80.0/20 maxlen: 20
117.41.96.0/20 maxlen: 20
117.41.112.0/20 maxlen: 20
117.62.0.0/21 maxlen: 21
117.62.8.0/22 maxlen: 22
117.62.12.0/22 maxlen: 22
117.62.24.0/21 maxlen: 21
117.62.32.0/22 maxlen: 22
118.85.98.68/30 maxlen: 30
118.85.105.16/28 maxlen: 28
118.85.105.32/28 maxlen: 28
118.85.105.48/28 maxlen: 28
118.85.112.164/30 maxlen: 30
118.85.116.0/22 maxlen: 22
120.41.108.0/24 maxlen: 24
120.41.117.0/24 maxlen: 24
120.88.8.0/21 maxlen: 21
121.59.2.0/24 maxlen: 24
121.59.4.0/24 maxlen: 24
121.59.8.0/24 maxlen: 24
121.59.9.0/24 maxlen: 24
121.59.29.0/24 maxlen: 24
121.59.30.0/24 maxlen: 24
121.59.31.0/24 maxlen: 24
121.59.32.0/22 maxlen: 24
121.59.37.0/24 maxlen: 24
121.59.38.0/24 maxlen: 24
121.59.100.0/23 maxlen: 24
121.59.104.0/24 maxlen: 24
121.59.106.0/24 maxlen: 24
121.59.107.0/24 maxlen: 24
121.59.109.0/24 maxlen: 24
121.59.110.0/24 maxlen: 24
121.59.120.0/22 maxlen: 24
121.59.124.0/23 maxlen: 24
121.59.128.0/24 maxlen: 24
121.59.140.0/24 maxlen: 24
121.59.142.0/24 maxlen: 24
121.59.143.0/24 maxlen: 24
121.59.144.0/24 maxlen: 24
121.59.146.0/24 maxlen: 24
121.59.147.0/24 maxlen: 24
121.59.151.0/24 maxlen: 24
121.59.152.0/24 maxlen: 24
121.59.153.0/24 maxlen: 24
121.207.128.0/21 maxlen: 21
122.225.128.0/22 maxlen: 22
123.151.192.0/18 maxlen: 18
123.178.0.0/20 maxlen: 20
124.119.240.0/20 maxlen: 20
124.119.240.0/21 maxlen: 24
124.119.248.0/22 maxlen: 24
124.119.252.0/22 maxlen: 24
124.224.200.0/22 maxlen: 22
124.233.0.0/19 maxlen: 19
124.233.32.0/19 maxlen: 19
124.233.64.0/18 maxlen: 18
124.233.128.0/18 maxlen: 18
124.233.192.0/20 maxlen: 20
124.233.208.0/20 maxlen: 20
124.233.224.0/21 maxlen: 21
124.233.232.0/21 maxlen: 21
124.233.240.0/20 maxlen: 20
125.69.72.0/21 maxlen: 21
125.69.224.0/19 maxlen: 20
125.76.0.0/19 maxlen: 20
202.67.3.0/24 maxlen: 24
202.111.192.0/20 maxlen: 20
202.111.208.0/20 maxlen: 20
203.12.200.0/24 maxlen: 24
203.12.201.0/24 maxlen: 24
203.12.202.0/24 maxlen: 24
203.12.203.0/24 maxlen: 24
203.20.136.0/24 maxlen: 24
203.20.137.0/24 maxlen: 24
203.20.138.0/24 maxlen: 24
203.20.139.0/24 maxlen: 24
203.86.112.0/24 maxlen: 24
203.89.8.0/23 maxlen: 24
203.129.8.0/24 maxlen: 24
203.196.8.0/24 maxlen: 24
203.196.9.0/24 maxlen: 24
203.196.10.0/24 maxlen: 24
203.196.11.0/24 maxlen: 24
203.196.15.0/24 maxlen: 24
210.48.136.0/22 maxlen: 24
210.48.140.0/22 maxlen: 22
210.48.143.0/24 maxlen: 24
218.30.39.0/24 maxlen: 24
218.30.62.0/23 maxlen: 23
218.30.63.0/24 maxlen: 24
218.30.165.0/24 maxlen: 24
218.185.241.0/24 maxlen: 24
218.185.243.0/24 maxlen: 24
220.182.40.0/23 maxlen: 23
220.191.160.0/19 maxlen: 19
221.231.12.0/24 maxlen: 24
222.87.208.0/22 maxlen: 22
222.92.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7423 (0x1cff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA
Validity
Not Before: Nov 28 07:11:19 2023 GMT
Not After : Mar 1 00:00:00 2024 GMT
Subject: CN=65659296-a3ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:24:59:8f:03:1e:b0:e0:2f:86:76:dd:60:bf:
a2:85:67:ca:4c:8e:15:98:69:a2:da:45:20:14:03:
9d:d6:11:10:ee:27:ae:5b:26:46:f1:36:ee:3f:7d:
39:49:b1:be:f8:ae:fa:21:c9:0a:eb:85:62:ca:61:
ff:e3:8a:6f:41:b9:ec:b2:7d:57:f5:b0:b7:fe:2d:
dd:f0:54:9a:01:69:a8:ac:15:62:56:3c:77:d4:a8:
ba:e1:e1:29:72:bc:4d:8c:1c:7b:9a:16:12:10:18:
f0:bc:b8:ae:1d:e5:fc:74:45:22:18:a6:6d:de:4f:
92:df:64:2a:60:e0:5f:11:ce:e6:fb:a3:ce:ca:79:
9f:53:9e:3c:24:2c:42:b3:91:7e:e4:1f:54:48:41:
76:55:2b:df:e2:e3:90:78:6e:c5:e5:31:a9:3d:c8:
c0:77:b0:78:f8:5e:31:e8:ee:b5:ef:de:04:96:42:
ff:80:18:45:8f:56:c0:ca:be:da:a6:69:98:1c:46:
56:e9:7b:1e:bb:25:ba:e4:96:d7:6a:68:e2:5c:61:
b9:dc:bc:4e:32:e1:51:5c:d4:ec:e4:d8:04:50:e3:
31:37:c9:49:3b:cc:04:db:e3:eb:a5:27:08:3e:34:
06:10:80:2d:49:86:9c:98:5f:da:f7:c3:28:72:e4:
60:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:28:FF:9E:12:F4:64:8F:5E:82:5E:BC:B7:1B:D2:7B:10:57:49:60
X509v3 Authority Key Identifier:
keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/53A5509E8DBD11EE86D8BB67C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
27.148.248.0/21
58.43.192.0/18
58.49.108.0/24
59.43.0.0/16
59.60.0.0/20
59.173.248.0/24
106.122.216.0/21
116.211.0.0/18
116.248.192.0/18
117.28.224.0/19
117.38.0.0/16
117.41.0.0/17
117.62.0.0/20
117.62.24.0-117.62.35.255
118.85.98.68/30
118.85.105.16-118.85.105.63
118.85.112.164/30
118.85.116.0/22
120.41.108.0/24
120.41.117.0/24
120.88.8.0/21
121.59.2.0/24
121.59.4.0/24
121.59.8.0/23
121.59.29.0-121.59.35.255
121.59.37.0-121.59.38.255
121.59.100.0/23
121.59.104.0/24
121.59.106.0/23
121.59.109.0-121.59.110.255
121.59.120.0-121.59.125.255
121.59.128.0/24
121.59.140.0/24
121.59.142.0-121.59.144.255
121.59.146.0/23
121.59.151.0-121.59.153.255
121.207.128.0/21
122.225.128.0/22
123.151.192.0/18
123.178.0.0/20
124.119.240.0/20
124.224.200.0/22
124.233.0.0/16
125.69.72.0/21
125.69.224.0/19
125.76.0.0/19
202.67.3.0/24
202.111.192.0/19
203.12.200.0/22
203.20.136.0/22
203.86.112.0/24
203.89.8.0/23
203.129.8.0/24
203.196.8.0/22
203.196.15.0/24
210.48.136.0/21
218.30.39.0/24
218.30.62.0/23
218.30.165.0/24
218.185.241.0/24
218.185.243.0/24
220.182.40.0/23
220.191.160.0/19
221.231.12.0/24
222.87.208.0/22
222.92.1.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:ff:fb:6d:91:e0:6b:a6:70:73:c2:19:a7:7b:02:83:c6:75:
f6:45:b6:b4:51:6f:c8:67:48:be:3a:17:26:62:7a:ed:d4:27:
1d:65:2a:ab:6c:2f:b9:3f:1f:77:dc:c2:36:89:82:a2:dd:7d:
dd:69:4c:b8:1f:d4:4f:f9:99:a6:ff:8f:bc:05:6d:fa:60:01:
b2:24:27:95:6b:18:47:dc:52:ad:d3:20:73:e0:ab:fb:29:fd:
db:b9:86:76:b1:91:80:91:c6:9e:93:f2:4a:2f:7b:21:0d:48:
00:77:c0:2a:cc:18:87:9b:09:23:ca:fd:fa:79:69:ff:75:65:
36:8d:b5:71:27:61:d5:0a:72:5e:5b:ae:5d:55:92:47:dc:05:
36:92:92:3c:bb:7a:05:56:eb:f6:23:69:d5:8d:de:df:42:91:
e6:c7:85:5e:d5:4a:db:51:bd:cc:0e:dd:0a:11:3a:b1:05:fa:
dd:90:87:6b:6b:27:32:9c:0a:d1:9a:4e:7a:c1:f9:1c:6e:36:
62:5d:e5:38:7a:ed:a9:d5:ff:58:46:f2:d9:a9:b2:d8:43:ce:
1c:41:b4:36:1e:f8:e3:b6:69:42:ef:ba:0f:62:9b:9a:4e:ec:
ca:3d:4f:16:9f:3e:69:82:9f:1e:ca:56:07:c4:4e:37:b4:13:
e8:04:3f:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:05 2024 by rpki-client on console-fra.rpki-client.org