Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/B142C236E7CE11ECB55FA472C4F9AE02.roa
File: B142C236E7CE11ECB55FA472C4F9AE02.roa (raw, json)
Hash identifier: E5s4QZ/3S/ZqKpx0clYD9Wd2smGzl5dABueCi4ha2NA=
Subject key identifier: 7E:80:E0:BB:FD:B0:45:BB:D4:BF:33:B0:88:FC:0F:BA:42:61:01:92
Certificate issuer: /CN=A915CCEA/serialNumber=862B73B9CE3504B0BA241D14FDAC0EC4B4E4ADC2
Certificate serial: 0651
Authority key identifier: 86:2B:73:B9:CE:35:04:B0:BA:24:1D:14:FD:AC:0E:C4:B4:E4:AD:C2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/B142C236E7CE11ECB55FA472C4F9AE02.roa
Signing time: Thu 09 Jun 2022 09:03:15 +0000
ROA not before: Thu 09 Jun 2022 09:03:15 +0000
ROA not after: Thu 01 Dec 2022 00:00:00 +0000
asID: 3300
IP address blocks: 61.14.0.0/18 maxlen: 18
61.14.1.0/24 maxlen: 24
61.14.2.0/23 maxlen: 23
61.14.4.0/22 maxlen: 22
61.14.7.0/24 maxlen: 24
61.14.8.0/22 maxlen: 22
61.14.11.0/24 maxlen: 24
61.14.12.0/22 maxlen: 22
61.14.12.0/24 maxlen: 24
61.14.15.0/24 maxlen: 24
61.14.24.0/22 maxlen: 22
61.14.24.0/24 maxlen: 24
61.14.25.0/24 maxlen: 24
61.14.26.0/24 maxlen: 24
61.14.27.0/24 maxlen: 24
61.14.28.0/22 maxlen: 22
61.14.31.0/24 maxlen: 24
61.14.32.0/22 maxlen: 22
61.14.32.0/24 maxlen: 24
61.14.33.0/24 maxlen: 24
61.14.34.0/24 maxlen: 24
61.14.35.0/24 maxlen: 24
61.14.36.0/22 maxlen: 22
61.14.36.0/24 maxlen: 24
61.14.40.0/24 maxlen: 24
61.14.44.0/22 maxlen: 22
61.14.48.0/22 maxlen: 22
61.14.52.0/24 maxlen: 24
203.187.128.0/19 maxlen: 19
203.187.128.0/22 maxlen: 22
203.187.128.0/24 maxlen: 24
203.187.129.0/24 maxlen: 24
203.187.130.0/24 maxlen: 24
203.187.131.0/24 maxlen: 24
203.187.145.0/24 maxlen: 24
203.187.146.0/24 maxlen: 24
2402:fb00::/32 maxlen: 32
2402:fb00::/36 maxlen: 36
2402:fb00:f00::/40 maxlen: 40
2402:fb00:1000::/36 maxlen: 36
2402:fb00:1f00::/40 maxlen: 40
2402:fb00:2000::/36 maxlen: 36
2402:fb00:2f00::/40 maxlen: 40
2402:fb00:3000::/36 maxlen: 36
2402:fb00:3f00::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1617 (0x651)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915CCEA/serialNumber=862B73B9CE3504B0BA241D14FDAC0EC4B4E4ADC2
Validity
Not Before: Jun 9 09:03:15 2022 GMT
Not After : Dec 1 00:00:00 2022 GMT
Subject: CN=62a1b752-c7e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:95:e6:b7:61:aa:44:1b:38:bc:e9:7f:aa:f7:
d4:a9:f3:01:eb:3c:08:07:92:76:4a:6d:d9:94:c8:
ac:51:30:5a:b8:08:41:cd:1b:80:44:ee:66:a9:62:
74:2b:b6:48:9e:4f:22:5a:5a:06:0a:17:fc:0c:7d:
9a:5f:c6:59:ae:5d:61:a0:73:4c:cb:59:e5:c6:e9:
48:a7:f4:68:ce:55:40:ef:fd:f5:9f:a7:88:de:9e:
21:59:cf:5d:b6:a5:09:41:de:ce:eb:fe:b6:cd:1e:
ec:10:78:ed:4f:b8:4f:64:23:92:e0:78:79:28:79:
df:c0:d6:ef:e6:52:21:49:a6:0d:3f:7c:2f:aa:d6:
66:74:7e:08:9c:63:22:10:c0:6a:00:ca:37:b9:d0:
fe:dc:3c:ae:95:e2:4e:64:a6:45:ab:78:b5:47:6e:
89:05:99:c3:98:90:d0:99:0b:46:c7:7c:fa:47:8b:
0f:5e:9c:bd:9c:97:50:00:d0:3a:a3:9a:a7:3f:9d:
8c:1f:af:ed:61:e9:6c:d7:4e:cb:79:68:16:af:63:
7d:99:65:71:f9:9c:70:02:59:16:8c:c4:10:e8:ab:
71:6d:68:4d:9b:58:c4:94:2a:95:ce:9f:78:f2:8e:
41:c8:7b:22:0d:5b:04:0e:70:d7:26:6d:72:82:9f:
bf:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:80:E0:BB:FD:B0:45:BB:D4:BF:33:B0:88:FC:0F:BA:42:61:01:92
X509v3 Authority Key Identifier:
keyid:86:2B:73:B9:CE:35:04:B0:BA:24:1D:14:FD:AC:0E:C4:B4:E4:AD:C2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/B142C236E7CE11ECB55FA472C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
61.14.0.0/18
203.187.128.0/19
IPv6:
2402:fb00::/32
Signature Algorithm: sha256WithRSAEncryption
de:17:4e:a1:0b:48:f2:97:b4:24:4b:0e:40:c8:0d:f2:9e:b3:
1c:a7:d8:b9:ba:ce:ee:41:07:07:c6:d9:a3:fd:9e:31:43:f6:
bf:2e:de:33:33:a3:e7:fe:8f:2d:a8:c2:ad:59:4f:e0:0f:d5:
7d:3a:7b:bc:41:d3:9f:8c:10:8a:9d:d8:64:45:d5:94:91:b3:
b8:da:08:8f:b6:62:50:8c:e6:94:3f:7a:3c:7d:12:f4:23:eb:
bc:c8:61:34:92:6b:42:48:f6:61:51:33:38:20:ec:da:a1:4b:
75:cc:41:e4:f3:b8:2d:78:b2:4e:41:95:6d:ef:ed:1f:a9:cf:
b6:f0:ec:8d:52:9d:97:38:5a:b4:32:91:00:ca:14:6b:c1:ea:
e1:8b:9e:eb:67:b5:02:1c:5d:6e:98:59:e3:d8:f1:8d:d7:d0:
f5:13:c2:f1:37:71:a2:5f:94:76:b6:73:63:e6:63:94:50:32:
b5:9f:a2:8a:74:e0:14:6e:6e:17:d4:02:42:12:52:1c:53:02:
c1:fe:7f:96:8a:ae:69:da:16:f7:ee:13:be:29:7a:f6:d6:6a:
b8:78:62:e6:b1:c7:0c:9e:21:7d:53:c3:b8:c1:9b:0b:d6:93:
4b:8f:55:ca:63:20:ab:6e:99:38:7c:15:21:fa:54:54:80:74:
1f:c9:54:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:41 2023 by rpki-client on console-ams.rpki-client.org