Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/1F62A44219FD11ED8630805AC4F9AE02.roa
File: 1F62A44219FD11ED8630805AC4F9AE02.roa (raw, json)
Hash identifier: Een7iDJg8va/ERbdsUUMu5Z+3Zd+o+WIKUiCAuFqtnY=
Subject key identifier: 5E:41:87:FC:1B:B1:82:C1:8F:A5:3C:A5:6A:08:B1:C5:D8:EA:C5:35
Certificate issuer: /CN=A9157D67/serialNumber=39C43967570087F583E425A9FE9B69B9506A59BD
Certificate serial: 05BC
Authority key identifier: 39:C4:39:67:57:00:87:F5:83:E4:25:A9:FE:9B:69:B9:50:6A:59:BD
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/1F62A44219FD11ED8630805AC4F9AE02.roa
Signing time: Fri 12 Aug 2022 05:50:34 +0000
ROA not before: Fri 12 Aug 2022 05:50:34 +0000
ROA not after: Thu 31 Aug 2023 00:00:00 +0000
asID: 132203
IP address blocks: 43.128.222.0/23 maxlen: 23
43.130.63.0/24 maxlen: 24
43.135.58.0/24 maxlen: 24
43.152.96.0/19 maxlen: 24
43.152.192.0/19 maxlen: 19
43.152.224.0/19 maxlen: 19
43.153.0.0/18 maxlen: 18
43.153.64.0/18 maxlen: 18
43.153.128.0/18 maxlen: 18
43.153.164.0/24 maxlen: 24
43.153.192.0/18 maxlen: 18
43.154.0.0/18 maxlen: 18
43.154.64.0/18 maxlen: 18
43.154.128.0/18 maxlen: 18
43.154.192.0/18 maxlen: 18
43.155.0.0/17 maxlen: 18
43.155.127.0/24 maxlen: 24
43.155.128.0/17 maxlen: 18
43.156.0.0/18 maxlen: 18
43.156.64.0/18 maxlen: 18
43.156.128.0/18 maxlen: 18
43.156.192.0/18 maxlen: 18
43.156.252.0/24 maxlen: 24
43.157.0.0/17 maxlen: 24
43.157.128.0/18 maxlen: 24
43.157.192.0/18 maxlen: 24
43.158.0.0/16 maxlen: 16
43.158.0.0/17 maxlen: 24
43.158.128.0/18 maxlen: 24
43.158.192.0/18 maxlen: 24
43.159.0.0/16 maxlen: 16
43.159.0.0/20 maxlen: 24
43.159.16.0/20 maxlen: 24
43.159.32.0/19 maxlen: 24
43.159.76.0/24 maxlen: 24
43.159.128.0/18 maxlen: 24
43.159.192.0/18 maxlen: 24
43.160.0.0/16 maxlen: 24
43.161.0.0/17 maxlen: 24
43.161.128.0/17 maxlen: 24
43.162.0.0/17 maxlen: 24
43.162.128.0/17 maxlen: 24
43.163.0.0/16 maxlen: 16
43.164.0.0/16 maxlen: 24
43.165.0.0/16 maxlen: 24
43.166.0.0/16 maxlen: 24
43.167.0.0/16 maxlen: 24
43.168.0.0/16 maxlen: 24
43.169.0.0/16 maxlen: 24
43.170.0.0/16 maxlen: 24
43.171.0.0/16 maxlen: 24
43.172.0.0/16 maxlen: 24
43.173.0.0/16 maxlen: 24
43.174.0.0/16 maxlen: 24
101.32.140.0/24 maxlen: 24
101.33.114.0/23 maxlen: 24
240d:c000::/24 maxlen: 32
240d:c000:1000::/36 maxlen: 36
240d:c000:2000::/36 maxlen: 36
240d:c000:3000::/36 maxlen: 36
240d:c010::/56 maxlen: 56
240d:c010:0:100::/56 maxlen: 56
240d:c010:10::/48 maxlen: 48
240d:c010:11::/48 maxlen: 48
240d:c010:12::/48 maxlen: 48
240d:c010:13::/48 maxlen: 48
240d:c010:14::/48 maxlen: 48
240d:c010:15::/48 maxlen: 48
240d:c010:16::/48 maxlen: 48
240d:c010:17::/48 maxlen: 48
240d:c010:1d::/48 maxlen: 48
240d:c010:1f::/48 maxlen: 48
240d:c010:20::/44 maxlen: 44
240d:c010:20::/56 maxlen: 56
240d:c010:20:100::/56 maxlen: 56
240d:c010:20:200::/56 maxlen: 56
240d:c010:30::/48 maxlen: 48
240d:c010:30::/56 maxlen: 56
240d:c010:30:100::/56 maxlen: 56
240d:c010:31::/48 maxlen: 48
240d:c010:50::/48 maxlen: 48
240d:c010:57::/48 maxlen: 48
240d:c010:58::/47 maxlen: 48
240d:c010:5b::/48 maxlen: 48
240d:c010:5c::/46 maxlen: 48
240d:c010:60::/48 maxlen: 48
240d:c010:66::/47 maxlen: 48
240d:c010:68::/48 maxlen: 48
240d:c010:6a::/48 maxlen: 48
240d:c010:6c::/47 maxlen: 48
240d:c010:6e::/48 maxlen: 48
240d:c040::/44 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1468 (0x5bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9157D67/serialNumber=39C43967570087F583E425A9FE9B69B9506A59BD
Validity
Not Before: Aug 12 05:50:34 2022 GMT
Not After : Aug 31 00:00:00 2023 GMT
Subject: CN=62f5ea2a-f550
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e3:6b:f4:a8:76:25:58:bc:e6:ab:38:17:fc:
58:b9:a4:fa:cb:93:e2:54:de:96:9a:69:40:ab:03:
dd:31:59:94:4a:2d:af:ca:f5:14:d0:64:23:90:43:
62:f1:f2:93:71:1c:5f:05:c3:22:e9:5e:c3:64:ef:
9d:e6:47:38:d6:69:da:fb:52:51:1d:5f:6e:ae:69:
da:0d:53:33:77:94:dd:7d:e2:e9:71:a5:27:e7:0d:
dc:5d:c5:9c:88:36:fa:62:3a:70:00:a0:02:5c:00:
fa:37:93:4e:b2:95:dc:7f:a9:37:92:27:24:56:6b:
a4:2a:33:b9:53:a8:87:ab:0a:ca:50:33:9f:5f:39:
19:63:e1:7a:83:c3:7f:6e:a0:88:5a:4c:74:c4:42:
0f:28:40:46:37:81:73:9e:15:84:63:00:cf:2b:9c:
d3:83:69:0e:21:f3:c5:db:27:bb:7e:d3:1d:af:4e:
c9:8d:d2:29:fd:3c:2b:31:da:51:47:cc:f8:6b:3d:
23:a1:bf:19:17:95:72:7d:27:09:cc:1e:2d:b6:f1:
44:43:7e:be:64:24:c2:92:0d:72:55:90:58:33:88:
f4:06:94:86:18:61:fc:df:8d:01:e6:3c:02:d8:f3:
e6:ad:48:75:5e:06:98:90:d3:f2:ae:e8:41:8a:05:
51:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:41:87:FC:1B:B1:82:C1:8F:A5:3C:A5:6A:08:B1:C5:D8:EA:C5:35
X509v3 Authority Key Identifier:
keyid:39:C4:39:67:57:00:87:F5:83:E4:25:A9:FE:9B:69:B9:50:6A:59:BD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/1F62A44219FD11ED8630805AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.128.222.0/23
43.130.63.0/24
43.135.58.0/24
43.152.96.0/19
43.152.192.0-43.174.255.255
101.32.140.0/24
101.33.114.0/23
IPv6:
240d:c000::/24
Signature Algorithm: sha256WithRSAEncryption
db:b8:7d:d9:ae:6b:1f:93:07:fd:01:5d:6b:c8:41:0a:80:81:
f1:4f:1d:f3:54:f8:7d:a5:4b:21:a0:c7:0b:d3:c8:20:1a:49:
6f:e5:ef:1a:1a:85:5a:86:9c:ba:c6:77:ca:4b:63:2d:be:d0:
74:36:cf:27:97:41:f0:3c:b5:d9:82:c5:63:56:82:5e:15:52:
67:b1:31:86:0e:b3:64:16:9e:37:dd:1e:28:01:8c:1d:70:0b:
92:44:38:1e:a5:d5:ad:c7:bd:89:59:86:5f:61:94:d1:b1:87:
e7:92:a6:e5:e5:22:27:ca:f1:8b:08:4c:08:6c:f5:44:88:67:
3c:73:a2:94:9d:d9:c8:58:7d:75:32:81:61:99:99:32:dc:d4:
7a:9a:b9:e9:67:08:d1:54:db:44:5f:c2:de:8c:54:02:57:20:
fb:a7:e6:ff:ec:70:3c:ae:f5:96:6a:9c:e9:56:80:50:0f:13:
bf:52:4e:e4:18:73:d5:df:e7:8d:75:54:7f:af:7d:67:88:cf:
3e:76:98:1e:03:d0:56:9d:04:56:36:ad:14:ed:1c:b2:8d:a0:
27:dd:59:47:f4:13:36:46:14:55:5b:09:b3:7a:42:67:39:e1:
e8:22:f7:b1:a1:06:d9:06:25:1e:e7:f2:37:6d:9a:b3:f7:11:
ca:ce:5f:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:07 2024 by rpki-client on console-fra.rpki-client.org