Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/12BE66ECC7B611EDAF22D149C4F9AE02.roa
File: 12BE66ECC7B611EDAF22D149C4F9AE02.roa (raw, json)
Hash identifier: +RyBEcOQZcsZO7i/2T5WU6YcsOl6PYiHEgKUfwtNtdc=
Subject key identifier: 26:52:BE:98:B9:E5:D9:22:C1:4F:11:A9:31:01:90:12:88:81:8C:F9
Certificate issuer: /CN=A916C83B/serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206
Certificate serial: 33F2
Authority key identifier: E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/12BE66ECC7B611EDAF22D149C4F9AE02.roa
Signing time: Tue 21 Mar 2023 07:20:27 +0000
ROA not before: Tue 21 Mar 2023 07:20:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 38616
IP address blocks: 111.88.138.0/24 maxlen: 24
111.88.139.0/24 maxlen: 24
111.88.144.0/20 maxlen: 24
111.88.164.0/22 maxlen: 24
111.88.168.0/22 maxlen: 24
111.88.184.0/22 maxlen: 24
111.88.188.0/22 maxlen: 24
111.88.232.0/24 maxlen: 24
111.88.233.0/24 maxlen: 24
115.186.0.0/24 maxlen: 24
115.186.19.0/24 maxlen: 24
115.186.48.0/21 maxlen: 24
115.186.64.0/19 maxlen: 21
115.186.64.0/21 maxlen: 24
115.186.76.0/22 maxlen: 24
115.186.80.0/20 maxlen: 24
115.186.97.0/24 maxlen: 24
115.186.99.0/24 maxlen: 24
115.186.100.0/22 maxlen: 22
115.186.100.0/24 maxlen: 24
115.186.104.0/24 maxlen: 24
115.186.105.0/24 maxlen: 24
115.186.114.0/24 maxlen: 24
115.186.116.0/22 maxlen: 22
115.186.116.0/24 maxlen: 24
115.186.122.0/23 maxlen: 23
115.186.126.0/23 maxlen: 23
115.186.127.0/24 maxlen: 24
117.102.13.0/24 maxlen: 24
117.102.29.0/24 maxlen: 24
117.102.30.0/24 maxlen: 24
117.102.31.0/24 maxlen: 24
203.81.216.0/24 maxlen: 24
203.81.219.0/24 maxlen: 24
203.81.220.0/22 maxlen: 22
203.81.220.0/24 maxlen: 24
203.81.221.0/24 maxlen: 24
203.81.222.0/24 maxlen: 24
203.81.223.0/24 maxlen: 24
203.81.224.0/22 maxlen: 22
203.81.224.0/24 maxlen: 24
203.81.225.0/24 maxlen: 24
203.81.226.0/24 maxlen: 24
203.81.227.0/24 maxlen: 24
203.81.228.0/23 maxlen: 24
203.81.231.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13298 (0x33f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916C83B/serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206
Validity
Not Before: Mar 21 07:20:27 2023 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=64195abb-9cf1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:e8:6c:27:dd:24:f2:99:e6:05:7c:dc:04:99:
99:16:dd:40:f7:bf:d3:26:2e:ad:b0:b2:81:53:27:
95:63:f0:a9:73:a9:fc:02:f0:1c:7d:4d:5e:73:76:
37:d0:a9:62:f0:46:7f:85:7c:1f:07:63:24:80:6f:
be:e0:8c:54:86:51:eb:3c:f0:7d:54:51:8c:c1:07:
8f:a3:7b:f4:b3:55:8f:71:2e:11:38:48:e2:8c:a2:
ff:24:3f:50:1b:04:c2:24:7e:35:e3:23:b9:7a:f0:
18:a6:e6:e8:86:d2:58:eb:74:9f:68:46:60:34:5a:
d7:3b:50:21:3c:cb:4c:96:9e:a2:c3:85:42:3a:e5:
90:9d:ef:3e:9e:96:21:7a:4c:a8:b2:7d:73:05:c2:
49:c8:32:de:eb:99:2a:e7:5d:91:67:15:36:13:f0:
73:66:75:b4:00:d6:af:d1:7e:95:73:a5:20:1a:a8:
f1:1e:f4:6b:b1:f3:86:f8:ee:23:1e:e2:8b:b2:0d:
c3:b0:3b:0d:b0:ec:84:ad:82:01:d4:ef:1b:fe:ef:
0c:85:4a:34:37:c2:4c:b9:20:2d:f5:b2:82:88:20:
59:15:5d:03:4a:a3:67:6c:ec:f4:1e:4b:db:32:e0:
d2:26:7e:13:60:18:8e:89:66:8f:48:94:76:94:b5:
ea:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:52:BE:98:B9:E5:D9:22:C1:4F:11:A9:31:01:90:12:88:81:8C:F9
X509v3 Authority Key Identifier:
keyid:E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/12BE66ECC7B611EDAF22D149C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
111.88.138.0/23
111.88.144.0/20
111.88.164.0-111.88.171.255
111.88.184.0/21
111.88.232.0/23
115.186.0.0/24
115.186.19.0/24
115.186.48.0/21
115.186.64.0/19
115.186.97.0/24
115.186.99.0-115.186.105.255
115.186.114.0/24
115.186.116.0/22
115.186.122.0/23
115.186.126.0/23
117.102.13.0/24
117.102.29.0-117.102.31.255
203.81.216.0/24
203.81.219.0-203.81.229.255
203.81.231.0/24
Signature Algorithm: sha256WithRSAEncryption
59:cb:7c:6a:08:be:ad:68:2e:7d:e5:b0:ea:a3:db:7e:bb:79:
02:13:af:1b:42:70:2f:24:c6:e8:fc:88:01:c3:78:15:df:ca:
0d:2e:44:dd:09:f6:e0:05:f8:1f:8d:a6:77:79:11:07:47:39:
79:77:a5:7b:ec:0f:67:d9:cd:0e:8c:60:f1:f9:c6:f1:88:46:
fd:d6:63:60:81:bc:79:37:ae:dd:65:3e:9e:26:77:4c:ae:78:
9c:d6:d5:29:82:36:77:c2:6f:f5:41:a4:5a:ab:a6:07:8b:50:
7d:8b:d5:0b:46:a2:e3:cb:4f:23:8f:7a:d1:cd:2e:66:f5:ac:
b5:65:ad:9e:2f:d4:9e:0b:74:49:77:1b:bc:6d:42:9f:a8:99:
3a:8f:f8:4d:0b:de:3c:91:74:c0:cc:e4:be:2a:d6:2a:98:b2:
94:30:62:51:d1:88:b3:65:95:03:f3:f9:e2:58:2d:5b:1f:f3:
80:b5:6d:5a:46:fc:9c:8b:9b:3d:93:df:64:73:0b:a6:e6:76:
42:9c:20:9f:4f:39:48:d2:65:9d:55:0f:6c:2c:9c:e0:2b:bc:
db:82:29:d3:98:67:d8:02:d7:ee:ed:65:37:0d:35:2e:05:9b:
b2:1a:e0:1c:12:dd:aa:af:49:e3:79:12:86:f8:cb:a3:b5:6e:
85:b0:08:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:20 2024 by rpki-client on console-ams.rpki-client.org