Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A916A983/0E082E72CD0F11E89D9FF165C4F9AE02/E611B53A28DD11ED8EA0FC4FC4F9AE02.roa
File: E611B53A28DD11ED8EA0FC4FC4F9AE02.roa (raw, json)
Hash identifier: WTZ+67QmJujGm0TovBtHKGWetGBBNhouunnRTkUlwaA=
Subject key identifier: F2:BA:3E:7C:AE:A9:9C:9D:AD:64:B7:3C:56:15:02:88:BC:C7:FC:28
Certificate issuer: /CN=A916A983/serialNumber=88D87B102F5C2771C367064E2049B68A903C71B5
Certificate serial: 10CE
Authority key identifier: 88:D8:7B:10:2F:5C:27:71:C3:67:06:4E:20:49:B6:8A:90:3C:71:B5
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iNh7EC9cJ3HDZwZOIEm2ipA8cbU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916A983/0E082E72CD0F11E89D9FF165C4F9AE02/E611B53A28DD11ED8EA0FC4FC4F9AE02.roa
Signing time: Wed 31 Aug 2022 04:54:45 +0000
ROA not before: Wed 31 Aug 2022 04:54:45 +0000
ROA not after: Sat 30 Sep 2023 00:00:00 +0000
asID: 1221
IP address blocks: 137.147.0.0/16 maxlen: 16
138.130.0.0/16 maxlen: 16
138.217.0.0/16 maxlen: 16
139.130.0.0/16 maxlen: 16
139.134.0.0/16 maxlen: 16
139.168.0.0/16 maxlen: 16
143.238.0.0/16 maxlen: 16
144.130.0.0/15 maxlen: 15
144.132.0.0/14 maxlen: 14
144.136.0.0/15 maxlen: 15
144.139.0.0/16 maxlen: 16
144.140.0.0/16 maxlen: 16
147.69.0.0/16 maxlen: 16
149.135.0.0/16 maxlen: 16
165.228.0.0/16 maxlen: 16
192.67.84.0/24 maxlen: 24
192.70.219.0/24 maxlen: 24
192.73.66.0/24 maxlen: 24
192.74.139.0/24 maxlen: 24
192.74.140.0/22 maxlen: 26
192.74.144.0/20 maxlen: 20
192.74.160.0/19 maxlen: 19
192.74.192.0/20 maxlen: 20
192.74.208.0/24 maxlen: 24
192.82.143.0/24 maxlen: 24
192.111.105.0/24 maxlen: 24
192.131.27.0/24 maxlen: 24
192.131.28.0/23 maxlen: 23
192.131.30.0/24 maxlen: 24
192.148.116.0/22 maxlen: 22
192.148.120.0/21 maxlen: 21
192.148.128.0/19 maxlen: 19
192.148.160.0/22 maxlen: 22
192.148.164.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4302 (0x10ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916A983/serialNumber=88D87B102F5C2771C367064E2049B68A903C71B5
Validity
Not Before: Aug 31 04:54:45 2022 GMT
Not After : Sep 30 00:00:00 2023 GMT
Subject: CN=630ee995-bb75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f6:3e:75:2b:16:65:8d:29:0b:70:76:c9:89:
92:11:3c:2c:b2:9b:e4:90:2f:96:2c:ea:22:41:28:
06:f8:18:42:1b:ca:20:0b:51:35:b5:6b:36:b4:99:
5b:f2:5d:ca:08:a1:d2:6f:44:b8:c6:b9:0c:5b:33:
f9:c3:b7:05:b1:1f:52:83:4a:91:e3:46:51:e3:a0:
07:9c:b1:37:1a:52:2e:e6:4f:bc:5b:53:dc:17:21:
6d:53:ab:6c:05:1b:9b:9f:73:da:2e:94:0b:ff:15:
32:e6:1b:6d:d4:59:c7:6b:c8:83:af:34:cb:9d:ba:
9a:6c:78:0c:b9:47:d6:eb:b3:e5:8f:c0:3f:10:a9:
cd:8f:ac:01:17:23:db:85:c0:8b:33:c3:af:7d:4c:
05:ab:ad:ab:d0:80:dd:55:b2:39:e0:da:84:9f:d5:
6c:bb:d3:c8:a1:96:4e:a1:d8:0d:bb:78:1d:f9:aa:
fa:68:8b:aa:77:cc:7d:4f:63:b4:d8:0d:a0:92:2f:
e0:34:46:c7:12:a2:0a:07:c1:f9:90:5a:31:0f:da:
d4:4b:18:7b:dd:49:b6:4a:85:62:04:41:63:81:f1:
b6:4b:36:44:80:da:ed:f8:95:21:08:52:b1:8c:66:
48:c2:8f:98:17:b0:01:9b:a6:54:7f:2b:50:17:33:
a1:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:BA:3E:7C:AE:A9:9C:9D:AD:64:B7:3C:56:15:02:88:BC:C7:FC:28
X509v3 Authority Key Identifier:
keyid:88:D8:7B:10:2F:5C:27:71:C3:67:06:4E:20:49:B6:8A:90:3C:71:B5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916A983/0E082E72CD0F11E89D9FF165C4F9AE02/iNh7EC9cJ3HDZwZOIEm2ipA8cbU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iNh7EC9cJ3HDZwZOIEm2ipA8cbU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A983/0E082E72CD0F11E89D9FF165C4F9AE02/E611B53A28DD11ED8EA0FC4FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
137.147.0.0/16
138.130.0.0/16
138.217.0.0/16
139.130.0.0/16
139.134.0.0/16
139.168.0.0/16
143.238.0.0/16
144.130.0.0-144.137.255.255
144.139.0.0-144.140.255.255
147.69.0.0/16
149.135.0.0/16
165.228.0.0/16
192.67.84.0/24
192.70.219.0/24
192.73.66.0/24
192.74.139.0-192.74.208.255
192.82.143.0/24
192.111.105.0/24
192.131.27.0-192.131.30.255
192.148.116.0-192.148.165.255
Signature Algorithm: sha256WithRSAEncryption
15:20:9b:fc:3c:d5:70:2c:d6:7f:6e:cb:c1:11:62:7c:91:3a:
76:51:3f:e9:70:51:8f:f3:36:2e:50:09:cf:91:52:18:be:48:
ba:31:a0:d1:0d:4a:54:0b:ee:5c:bf:de:94:db:d7:fd:2b:dd:
99:81:f7:70:ff:86:79:9c:94:46:d7:40:0c:66:17:6d:1d:55:
51:6c:43:4d:4f:e7:be:5f:78:e8:25:d7:42:fa:f4:3e:03:d5:
f0:79:83:96:ff:ff:c2:18:a1:86:5a:7f:07:3d:9f:fd:77:00:
90:a2:b0:eb:67:22:b2:e2:9d:d3:d4:ae:39:32:2a:70:bd:a9:
66:3a:c3:14:a8:4b:9f:f9:b6:67:16:25:32:eb:0f:58:d0:ec:
37:d2:72:b8:01:0b:e1:15:4f:16:33:90:5e:37:ef:78:fb:91:
0f:f0:ce:1f:4a:88:2f:19:b7:15:4f:f2:dc:6e:59:09:98:a0:
d5:0d:28:d3:12:ac:cf:57:c8:22:9f:19:23:18:88:95:98:9a:
99:82:e7:4e:78:a0:35:26:77:d9:28:91:d8:8c:6f:1c:e0:8d:
10:47:66:8d:0e:2c:6e:36:8f:1e:21:f0:87:0f:2b:08:69:d4:
e0:5e:af:a7:f1:b1:4f:fd:34:fb:61:7c:66:69:c4:59:1b:c9:
f5:80:10:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:10 2024 by rpki-client on console-fra.rpki-client.org