Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/C773EAD8B22F11EBA107E378C4F9AE02.roa
File: C773EAD8B22F11EBA107E378C4F9AE02.roa (raw, json)
Hash identifier: FxNwq+MJRcgv9M43Ujay5EoxZBwnO02K4fgAqOEF9Q8=
Subject key identifier: 41:4B:7C:54:30:CA:E6:16:97:2C:C5:3C:7D:07:01:34:DC:87:30:98
Certificate issuer: /CN=A915CCEA/serialNumber=862B73B9CE3504B0BA241D14FDAC0EC4B4E4ADC2
Certificate serial: 0637
Authority key identifier: 86:2B:73:B9:CE:35:04:B0:BA:24:1D:14:FD:AC:0E:C4:B4:E4:AD:C2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/C773EAD8B22F11EBA107E378C4F9AE02.roa
Signing time: Tue 31 May 2022 11:52:30 +0000
ROA not before: Tue 31 May 2022 11:52:30 +0000
ROA not after: Thu 01 Dec 2022 00:00:00 +0000
asID: 3300
IP address blocks: 61.14.0.0/18 maxlen: 18
61.14.1.0/24 maxlen: 24
61.14.2.0/23 maxlen: 23
61.14.4.0/22 maxlen: 22
61.14.7.0/24 maxlen: 24
61.14.8.0/22 maxlen: 22
61.14.11.0/24 maxlen: 24
61.14.12.0/22 maxlen: 22
61.14.15.0/24 maxlen: 24
61.14.20.0/22 maxlen: 22
61.14.24.0/22 maxlen: 22
61.14.24.0/24 maxlen: 24
61.14.25.0/24 maxlen: 24
61.14.26.0/24 maxlen: 24
61.14.27.0/24 maxlen: 24
61.14.28.0/22 maxlen: 22
61.14.31.0/24 maxlen: 24
61.14.32.0/22 maxlen: 22
61.14.32.0/24 maxlen: 24
61.14.33.0/24 maxlen: 24
61.14.34.0/24 maxlen: 24
61.14.35.0/24 maxlen: 24
61.14.36.0/24 maxlen: 24
61.14.40.0/22 maxlen: 22
61.14.44.0/22 maxlen: 22
61.14.48.0/22 maxlen: 22
61.14.52.0/24 maxlen: 24
203.187.128.0/19 maxlen: 19
203.187.128.0/22 maxlen: 22
203.187.128.0/24 maxlen: 24
203.187.129.0/24 maxlen: 24
203.187.130.0/24 maxlen: 24
203.187.131.0/24 maxlen: 24
203.187.145.0/24 maxlen: 24
203.187.146.0/24 maxlen: 24
2402:fb00::/32 maxlen: 32
2402:fb00::/36 maxlen: 36
2402:fb00:f00::/40 maxlen: 40
2402:fb00:1000::/36 maxlen: 36
2402:fb00:1f00::/40 maxlen: 40
2402:fb00:2000::/36 maxlen: 36
2402:fb00:2f00::/40 maxlen: 40
2402:fb00:3000::/36 maxlen: 36
2402:fb00:3f00::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1591 (0x637)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915CCEA/serialNumber=862B73B9CE3504B0BA241D14FDAC0EC4B4E4ADC2
Validity
Not Before: May 31 11:52:30 2022 GMT
Not After : Dec 1 00:00:00 2022 GMT
Subject: CN=6296017d-567b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d5:07:c8:39:03:ac:21:4d:05:b2:3c:cc:fc:
ed:bb:81:07:37:59:1f:9b:92:b1:da:3c:9f:c1:5a:
d7:7c:3b:50:f5:78:89:63:b9:c4:cd:74:4c:31:f8:
dd:dc:72:ef:61:21:34:aa:bd:9d:b9:92:4a:71:00:
c0:79:e3:92:7e:97:0d:37:32:bc:38:89:83:63:2a:
0e:c2:44:8c:ba:d0:d9:aa:b7:d1:a2:67:e0:b6:ce:
5a:08:2a:45:d0:fe:22:d6:1c:77:76:42:36:39:81:
d4:24:88:49:05:1d:84:78:bc:02:9a:01:de:c2:65:
66:c4:ee:54:9a:c0:ee:79:94:2a:66:3e:5b:c5:6b:
64:10:9f:0c:09:3e:ba:74:6c:b9:2c:0e:30:b5:0b:
fd:2a:b6:d9:c4:b1:f5:e3:cd:8d:45:6e:7e:a7:d0:
b1:78:2d:1b:2f:1a:5c:d5:98:1e:db:23:c4:10:f2:
50:87:9d:c9:4f:1d:7c:66:91:bd:f6:76:ac:a0:d1:
a3:c0:1e:c4:24:57:88:ea:1f:32:52:b0:08:53:66:
ca:cb:61:e7:8d:71:e6:ca:86:b2:02:ba:43:e1:66:
c7:45:89:86:ee:05:e8:fb:9a:ee:de:b5:8e:fd:09:
1f:a7:0a:9e:1d:2b:ab:ca:9b:3f:27:64:ca:ba:43:
d3:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:4B:7C:54:30:CA:E6:16:97:2C:C5:3C:7D:07:01:34:DC:87:30:98
X509v3 Authority Key Identifier:
keyid:86:2B:73:B9:CE:35:04:B0:BA:24:1D:14:FD:AC:0E:C4:B4:E4:AD:C2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/C773EAD8B22F11EBA107E378C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
61.14.0.0/18
203.187.128.0/19
IPv6:
2402:fb00::/32
Signature Algorithm: sha256WithRSAEncryption
7e:df:f0:52:59:ac:09:d8:50:f2:85:85:f7:8e:3d:ab:5d:1c:
bd:90:61:7d:eb:bc:26:fe:75:b6:7d:08:b7:79:cb:1a:88:35:
6e:28:a5:d3:91:cc:65:b0:c6:27:31:18:f9:38:e0:e7:df:34:
5f:02:3b:25:91:97:ff:65:cb:d5:b9:3b:0f:3d:97:f6:0f:15:
34:1c:d5:6f:a5:99:cf:e8:4b:c2:ea:c2:de:2e:0d:86:62:7a:
32:80:f9:2b:27:80:04:1e:22:03:d5:b2:82:64:17:6a:5b:c6:
69:2b:f7:c0:88:2d:ad:48:26:0b:ab:92:08:00:c4:1a:48:ae:
e0:8f:81:1c:71:cf:f7:33:db:be:0a:2d:77:25:82:4a:56:8b:
ee:ec:cd:34:9b:3c:d3:85:7a:78:a7:b6:b4:ec:37:1b:71:51:
7a:cf:b4:76:6d:5a:9b:d5:f8:fb:ea:0f:ea:84:f0:50:4d:a8:
1e:fa:ed:ad:20:29:90:43:bf:66:4c:a2:f6:68:dd:f2:e2:24:
52:1c:73:3b:10:f3:4a:fd:8d:23:9b:67:2a:56:9e:fd:1f:ae:
7d:39:aa:ca:8c:44:54:fc:93:d7:25:b3:1b:6e:98:5c:43:2d:
c7:6d:ae:30:e3:2b:97:72:2d:45:1b:73:d3:74:15:ed:d3:64:
4e:6a:e2:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:43 2023 by rpki-client on console-fra.rpki-client.org