Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/FB6757E4429911EC9C76CC29C4F9AE02.roa
File: FB6757E4429911EC9C76CC29C4F9AE02.roa (raw, json)
Hash identifier: R11hq/iUOxn2heJdpnXNc3+ZGHttOhLugFd6EK8r/Dw=
Subject key identifier: 45:EE:01:50:2E:85:92:95:48:31:4E:C5:B3:92:05:47:95:FA:3A:F9
Certificate issuer: /CN=A9157D67/serialNumber=39C43967570087F583E425A9FE9B69B9506A59BD
Certificate serial: 03B6
Authority key identifier: 39:C4:39:67:57:00:87:F5:83:E4:25:A9:FE:9B:69:B9:50:6A:59:BD
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/FB6757E4429911EC9C76CC29C4F9AE02.roa
Signing time: Thu 24 Feb 2022 09:11:22 +0000
ROA not before: Thu 24 Feb 2022 09:11:22 +0000
ROA not after: Wed 31 Aug 2022 00:00:00 +0000
asID: 139341
IP address blocks: 43.132.72.0/23 maxlen: 23
43.132.74.0/24 maxlen: 24
43.132.76.0/22 maxlen: 24
43.132.80.0/23 maxlen: 24
43.132.85.0/24 maxlen: 24
43.132.86.0/24 maxlen: 24
43.132.87.0/24 maxlen: 24
43.132.90.0/23 maxlen: 24
43.152.0.0/24 maxlen: 24
43.152.1.0/24 maxlen: 24
43.152.2.0/24 maxlen: 24
43.152.3.0/24 maxlen: 24
43.152.4.0/22 maxlen: 24
43.152.10.0/24 maxlen: 24
43.152.16.0/23 maxlen: 24
43.152.19.0/24 maxlen: 24
43.152.20.0/24 maxlen: 24
43.152.21.0/24 maxlen: 24
43.152.22.0/24 maxlen: 24
43.152.36.0/23 maxlen: 24
43.152.40.0/24 maxlen: 24
43.152.47.0/24 maxlen: 24
43.152.48.0/24 maxlen: 24
43.152.49.0/24 maxlen: 24
43.152.50.0/24 maxlen: 24
43.152.51.0/24 maxlen: 24
43.152.52.0/24 maxlen: 24
43.152.54.0/24 maxlen: 24
43.152.56.0/24 maxlen: 24
43.152.58.0/23 maxlen: 23
43.152.60.0/24 maxlen: 24
43.152.61.0/24 maxlen: 24
43.152.62.0/24 maxlen: 24
43.152.63.0/24 maxlen: 24
43.152.128.0/18 maxlen: 18
240d:c010:18::/48 maxlen: 48
240d:c010:19::/48 maxlen: 48
240d:c010:1a::/48 maxlen: 48
240d:c010:1c::/48 maxlen: 48
240d:c010:41::/48 maxlen: 48
240d:c010:42::/48 maxlen: 48
240d:c010:54::/47 maxlen: 48
240d:c010:56::/48 maxlen: 48
240d:c010:5a::/48 maxlen: 48
240d:c010:61::/48 maxlen: 48
240d:c010:62::/47 maxlen: 48
240d:c010:64::/47 maxlen: 48
240d:c010:69::/48 maxlen: 48
240d:c010:6b::/48 maxlen: 48
240d:c010:6f::/48 maxlen: 48
240d:c010:70::/44 maxlen: 48
240d:c010:80::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 950 (0x3b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9157D67/serialNumber=39C43967570087F583E425A9FE9B69B9506A59BD
Validity
Not Before: Feb 24 09:11:22 2022 GMT
Not After : Aug 31 00:00:00 2022 GMT
Subject: CN=62174bba-ba4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:30:07:23:93:5b:c0:8e:6b:57:86:66:db:21:
74:ee:10:68:bf:b9:8e:d2:fd:b3:50:a8:f3:e0:20:
31:00:00:02:88:06:c7:1a:fe:81:2f:a1:0b:8e:01:
e0:57:ef:c5:01:70:a7:c1:5a:1a:9d:46:5d:74:bd:
a8:63:a3:94:1f:2a:04:97:1e:60:9a:b6:5b:58:93:
ea:f0:39:46:4a:0d:c7:e6:7c:49:a4:38:cb:62:47:
5c:74:6f:d4:54:a4:aa:11:4c:85:dc:0a:d0:8a:e0:
ef:f1:08:05:94:46:ee:e1:6f:ad:2e:25:89:22:70:
f4:64:79:ac:39:32:36:4f:e5:a8:75:1b:b6:8f:9e:
3f:89:4d:94:cd:5f:f0:2a:38:3c:c6:35:8f:2d:02:
3a:b1:a7:4b:d2:99:47:18:60:cf:62:2c:5d:0d:59:
3a:28:03:07:17:14:3c:7a:a2:4d:4c:23:2e:31:fa:
b7:32:9b:7f:a9:5d:71:99:59:2c:36:86:f3:12:d9:
e8:c9:fc:9e:7d:b8:e4:f5:cd:8f:63:41:eb:47:32:
75:b0:84:53:17:ae:57:48:d8:be:7d:13:34:13:8e:
08:b9:21:be:5f:5d:7d:5a:1c:94:9e:67:10:88:35:
27:94:10:60:0c:d3:35:60:65:f0:ee:d8:97:bb:7f:
7a:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:EE:01:50:2E:85:92:95:48:31:4E:C5:B3:92:05:47:95:FA:3A:F9
X509v3 Authority Key Identifier:
keyid:39:C4:39:67:57:00:87:F5:83:E4:25:A9:FE:9B:69:B9:50:6A:59:BD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/FB6757E4429911EC9C76CC29C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.132.72.0-43.132.74.255
43.132.76.0-43.132.81.255
43.132.85.0-43.132.87.255
43.132.90.0/23
43.152.0.0/21
43.152.10.0/24
43.152.16.0/23
43.152.19.0-43.152.22.255
43.152.36.0/23
43.152.40.0/24
43.152.47.0-43.152.52.255
43.152.54.0/24
43.152.56.0/24
43.152.58.0-43.152.63.255
43.152.128.0/18
IPv6:
240d:c010:18::-240d:c010:1a:ffff:ffff:ffff:ffff:ffff
240d:c010:1c::/48
240d:c010:41::-240d:c010:42:ffff:ffff:ffff:ffff:ffff
240d:c010:54::-240d:c010:56:ffff:ffff:ffff:ffff:ffff
240d:c010:5a::/48
240d:c010:61::-240d:c010:65:ffff:ffff:ffff:ffff:ffff
240d:c010:69::/48
240d:c010:6b::/48
240d:c010:6f::-240d:c010:8f:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
67:10:35:de:31:0c:c7:9c:c2:9a:84:f8:cf:a2:ee:14:37:f7:
9f:a4:8b:64:ce:d9:8d:dd:8f:05:6d:20:9c:7a:8e:9f:2d:f6:
8d:37:81:f7:78:5d:b8:56:c1:c9:0c:4f:ab:d1:38:ed:c7:cf:
7e:fc:b4:6d:54:0a:05:a9:c8:04:3e:7e:d1:ef:23:7d:2a:46:
c6:62:ae:02:0a:55:69:85:09:43:dd:f3:59:a4:f0:6d:73:80:
d3:02:4c:07:cf:96:46:6b:c1:48:4b:ac:48:bd:d0:87:c4:3a:
29:ee:1d:c5:83:e0:a1:57:9e:68:60:22:ef:9e:6a:e7:03:fc:
d0:8c:d1:44:0f:9c:54:e8:c6:e9:41:24:e7:9b:e9:ba:42:e2:
f6:8a:b8:a5:ec:f8:a7:9b:d7:e2:ff:ec:5c:80:71:00:c1:ee:
95:9a:b7:cf:c1:de:d8:37:2f:e7:26:3f:40:b9:8f:f0:97:a4:
9d:e7:75:94:0c:96:76:84:dc:a8:10:bf:08:ab:d5:d2:76:03:
08:85:87:55:96:86:fb:b2:8a:d9:ee:db:4c:c0:36:5e:7f:f4:
03:15:50:08:98:79:87:76:2b:89:63:fd:33:26:57:b4:9f:30:
2c:89:05:0f:4d:20:e0:07:91:01:5e:36:44:1c:03:37:b7:15:
44:b4:48:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:07 2024 by rpki-client on console-fra.rpki-client.org