Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/BCF23178726211EE81ADC97EC4F9AE02.roa
File: BCF23178726211EE81ADC97EC4F9AE02.roa (raw, json)
Hash identifier: 4W6GFZjYnCYsi/AeFVCGWptjOFVHjbvdrh/pjLBxX1w=
Subject key identifier: E0:DD:DF:2B:FF:00:E9:E1:83:73:BA:24:32:42:53:61:99:6B:D6:73
Certificate issuer: /CN=A915A0CD/serialNumber=38193720821E07D6918E3A79FBE0823C6732E264
Certificate serial: 08C3
Authority key identifier: 38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/BCF23178726211EE81ADC97EC4F9AE02.roa
Signing time: Tue 24 Oct 2023 11:44:50 +0000
ROA not before: Tue 24 Oct 2023 11:44:50 +0000
ROA not after: Mon 30 Sep 2024 00:00:00 +0000
asID: 45814
IP address blocks: 14.192.128.0/24 maxlen: 24
14.192.129.0/24 maxlen: 24
14.192.130.0/24 maxlen: 24
14.192.131.0/24 maxlen: 24
14.192.132.0/24 maxlen: 24
14.192.133.0/24 maxlen: 24
14.192.134.0/24 maxlen: 24
14.192.135.0/24 maxlen: 24
14.192.136.0/24 maxlen: 24
14.192.137.0/24 maxlen: 24
14.192.138.0/24 maxlen: 24
14.192.139.0/24 maxlen: 24
14.192.140.0/24 maxlen: 24
14.192.141.0/24 maxlen: 24
14.192.142.0/24 maxlen: 24
14.192.143.0/24 maxlen: 24
14.192.144.0/24 maxlen: 24
14.192.145.0/24 maxlen: 24
14.192.146.0/24 maxlen: 24
14.192.147.0/24 maxlen: 24
14.192.148.0/24 maxlen: 24
14.192.149.0/24 maxlen: 24
14.192.150.0/24 maxlen: 24
14.192.151.0/24 maxlen: 24
14.192.152.0/24 maxlen: 24
14.192.153.0/24 maxlen: 24
14.192.154.0/24 maxlen: 24
14.192.155.0/24 maxlen: 24
14.192.156.0/24 maxlen: 24
14.192.157.0/24 maxlen: 24
14.192.158.0/24 maxlen: 24
14.192.159.0/24 maxlen: 24
103.20.132.0/24 maxlen: 24
103.20.133.0/24 maxlen: 24
103.20.134.0/24 maxlen: 24
103.20.135.0/24 maxlen: 24
111.92.128.0/24 maxlen: 24
111.92.129.0/24 maxlen: 24
111.92.130.0/24 maxlen: 24
111.92.131.0/24 maxlen: 24
111.92.132.0/24 maxlen: 24
111.92.133.0/24 maxlen: 24
111.92.134.0/24 maxlen: 24
111.92.135.0/24 maxlen: 24
111.92.136.0/24 maxlen: 24
111.92.137.0/24 maxlen: 24
111.92.138.0/24 maxlen: 24
111.92.139.0/24 maxlen: 24
111.92.140.0/24 maxlen: 24
111.92.141.0/24 maxlen: 24
111.92.142.0/24 maxlen: 24
111.92.143.0/24 maxlen: 24
111.92.144.0/24 maxlen: 24
111.92.145.0/24 maxlen: 24
111.92.146.0/24 maxlen: 24
111.92.147.0/24 maxlen: 24
111.92.148.0/24 maxlen: 24
111.92.149.0/24 maxlen: 24
111.92.150.0/24 maxlen: 24
111.92.151.0/24 maxlen: 24
111.92.152.0/24 maxlen: 24
111.92.153.0/24 maxlen: 24
111.92.154.0/24 maxlen: 24
111.92.155.0/24 maxlen: 24
111.92.156.0/24 maxlen: 24
111.92.157.0/24 maxlen: 24
111.92.158.0/24 maxlen: 24
111.92.159.0/24 maxlen: 24
2403:7980::/32 maxlen: 32
2403:7980::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2243 (0x8c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915A0CD
Validity
Not Before: Oct 24 11:44:50 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=6537ae32-4814
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:f5:e4:f5:e6:a4:b8:cb:38:de:7f:42:0d:79:
0e:c6:5f:5f:4f:4d:5f:f4:e9:06:b9:35:ec:58:d9:
bf:ba:98:9f:a6:b0:3f:fd:c3:24:98:ee:69:37:5c:
6d:d4:01:d5:f4:6c:89:e2:08:a2:20:5b:29:4f:2a:
83:fb:1e:96:3f:95:9a:37:38:62:17:fd:ca:04:d7:
f5:12:01:1a:67:04:7b:df:7b:e0:8c:4d:c3:de:70:
58:09:02:72:69:0f:2b:fb:26:ae:08:71:f7:7f:42:
6c:d6:50:08:47:7b:cc:ec:cb:f7:69:af:2d:87:d5:
2e:dd:e5:3b:5f:f3:24:1d:73:00:8b:3b:5a:dd:86:
0a:dc:0f:25:68:a9:54:6c:40:e8:42:54:80:47:dc:
35:52:95:e9:25:d7:ed:88:f8:dc:ee:bc:02:ca:ec:
91:5b:2a:57:28:af:81:9b:9e:8a:87:8a:ce:f5:e6:
e2:d5:50:87:cc:61:cb:7a:81:3b:22:de:fa:bd:0b:
ed:30:58:50:0f:98:e8:6c:3a:2e:30:bb:8c:bd:e3:
b3:4f:20:5f:1f:ab:6a:f7:f8:f3:4d:51:f9:68:28:
38:d3:5c:97:1e:6e:a7:a6:66:45:00:56:aa:12:5c:
c3:c3:87:ad:bf:35:8b:71:c6:0a:07:ae:67:d4:80:
3f:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:DD:DF:2B:FF:00:E9:E1:83:73:BA:24:32:42:53:61:99:6B:D6:73
X509v3 Authority Key Identifier:
keyid:38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/BCF23178726211EE81ADC97EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
14.192.128.0/19
103.20.132.0/22
111.92.128.0/19
IPv6:
2403:7980::/32
Signature Algorithm: sha256WithRSAEncryption
98:e3:9c:ed:fe:00:14:f1:f8:ba:ae:f7:2d:8b:8f:21:19:28:
41:32:2f:5d:7e:c2:5b:83:36:c7:6d:85:77:94:62:3b:55:9c:
91:4e:f5:d0:c3:ff:66:13:cc:4e:62:b3:98:76:8e:07:c7:6f:
23:6c:b4:22:38:4d:87:67:a6:35:0d:f8:1d:6f:6e:e4:df:0f:
ce:73:fe:c5:ca:4f:8a:32:ef:5c:53:15:50:8a:55:97:04:23:
01:9b:59:cb:5c:f9:04:e8:78:56:6d:c5:15:59:a9:2c:8e:6f:
77:18:58:4a:6e:d8:d6:19:fc:d1:7b:5f:0b:69:ac:9a:f0:d7:
42:9d:f5:dd:c8:e7:50:20:a7:dc:64:e5:e5:6a:cc:7e:92:71:
c4:bf:f2:c8:66:0f:fd:e8:17:91:06:7b:ca:0e:20:e5:6f:64:
ce:45:23:2c:cb:41:f8:a4:15:9f:bc:98:80:12:17:f8:0e:0e:
98:16:eb:4f:a5:e2:70:5e:d2:c3:ce:25:e4:7b:8b:5e:71:a4:
f6:40:f0:c4:4e:79:96:71:c9:a6:e0:db:9a:57:d1:9d:9a:7f:
59:7d:80:eb:b1:69:13:3f:87:03:7e:54:e4:9c:97:52:e0:4c:
67:6f:04:38:be:ea:a8:3e:29:ce:85:83:f7:a9:3e:66:8e:dd:
c4:e7:1c:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:40:12 2025 by rpki-client