Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/12BE66ECC7B611EDAF22D149C4F9AE02.roa
File: 12BE66ECC7B611EDAF22D149C4F9AE02.roa (raw, json)
Hash identifier: OopYSY0aoCfPmsWn6bTKw68CYxw9YqJVg1gWHYkzZ9g=
Subject key identifier: 78:C7:9D:E6:BB:55:06:CD:D0:46:8B:0E:FC:0F:18:77:8C:28:85:DD
Certificate issuer: /CN=A916C83B/serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206
Certificate serial: 33EF
Authority key identifier: E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/12BE66ECC7B611EDAF22D149C4F9AE02.roa
Signing time: Tue 21 Mar 2023 07:00:33 +0000
ROA not before: Tue 21 Mar 2023 07:00:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 38616
IP address blocks: 111.88.138.0/24 maxlen: 24
111.88.139.0/24 maxlen: 24
111.88.144.0/20 maxlen: 24
111.88.164.0/22 maxlen: 24
111.88.168.0/22 maxlen: 24
111.88.232.0/24 maxlen: 24
111.88.233.0/24 maxlen: 24
115.186.0.0/24 maxlen: 24
115.186.19.0/24 maxlen: 24
115.186.48.0/21 maxlen: 24
115.186.64.0/19 maxlen: 21
115.186.64.0/21 maxlen: 24
115.186.76.0/22 maxlen: 24
115.186.80.0/20 maxlen: 24
115.186.97.0/24 maxlen: 24
115.186.99.0/24 maxlen: 24
115.186.100.0/22 maxlen: 22
115.186.100.0/24 maxlen: 24
115.186.104.0/24 maxlen: 24
115.186.105.0/24 maxlen: 24
115.186.114.0/24 maxlen: 24
115.186.116.0/22 maxlen: 22
115.186.116.0/24 maxlen: 24
115.186.122.0/23 maxlen: 23
115.186.126.0/23 maxlen: 23
115.186.127.0/24 maxlen: 24
117.102.13.0/24 maxlen: 24
117.102.29.0/24 maxlen: 24
117.102.30.0/24 maxlen: 24
117.102.31.0/24 maxlen: 24
203.81.216.0/24 maxlen: 24
203.81.219.0/24 maxlen: 24
203.81.220.0/22 maxlen: 22
203.81.220.0/24 maxlen: 24
203.81.221.0/24 maxlen: 24
203.81.222.0/24 maxlen: 24
203.81.223.0/24 maxlen: 24
203.81.224.0/22 maxlen: 22
203.81.224.0/24 maxlen: 24
203.81.225.0/24 maxlen: 24
203.81.226.0/24 maxlen: 24
203.81.227.0/24 maxlen: 24
203.81.228.0/23 maxlen: 24
203.81.231.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13295 (0x33ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916C83B/serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206
Validity
Not Before: Mar 21 07:00:33 2023 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=64195611-32af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:1a:96:2c:8d:c8:30:b3:13:d1:e5:f5:00:c5:
ef:b9:71:f6:df:71:25:98:de:1c:4a:27:6a:ee:be:
79:ba:f3:14:97:a1:e4:5a:fe:0a:86:65:f6:dc:54:
3a:8d:af:d6:ec:7d:3d:17:22:0d:e8:9c:b6:b6:c4:
d7:ab:e5:eb:7f:c0:b7:0c:3f:2e:54:8c:02:67:c4:
7a:bc:1f:c3:bb:94:99:13:7e:bb:39:27:8e:c3:ed:
a1:d2:ec:4b:da:1a:63:d2:af:fb:ad:56:28:6f:66:
07:2e:eb:67:d5:4b:d5:05:7a:f8:c0:31:90:ba:37:
27:88:31:39:91:38:35:eb:22:47:07:48:cb:f7:43:
95:78:ce:34:f6:11:13:44:06:fc:ab:49:d9:b1:f4:
5e:e8:65:bd:68:9b:54:3b:96:c6:47:d8:c5:f1:6b:
cd:45:ee:c2:ca:3a:47:c9:a2:c4:93:de:72:3d:d4:
71:45:08:17:4d:01:2f:cd:c9:0d:c8:62:db:f3:11:
29:ab:e6:65:ae:77:b1:8e:8b:a8:f2:67:da:c4:ff:
4d:59:48:b1:7c:19:68:fa:0c:da:98:72:44:74:e9:
10:de:3f:56:11:20:a6:52:19:be:5c:f1:9e:38:bd:
f4:14:39:41:58:da:d1:5e:09:dd:c5:26:cc:36:3c:
f8:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:C7:9D:E6:BB:55:06:CD:D0:46:8B:0E:FC:0F:18:77:8C:28:85:DD
X509v3 Authority Key Identifier:
keyid:E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/12BE66ECC7B611EDAF22D149C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
111.88.138.0/23
111.88.144.0/20
111.88.164.0-111.88.171.255
111.88.232.0/23
115.186.0.0/24
115.186.19.0/24
115.186.48.0/21
115.186.64.0/19
115.186.97.0/24
115.186.99.0-115.186.105.255
115.186.114.0/24
115.186.116.0/22
115.186.122.0/23
115.186.126.0/23
117.102.13.0/24
117.102.29.0-117.102.31.255
203.81.216.0/24
203.81.219.0-203.81.229.255
203.81.231.0/24
Signature Algorithm: sha256WithRSAEncryption
51:34:9e:54:d5:fd:05:1d:ec:11:36:39:80:39:09:50:ec:8a:
c1:b0:cd:79:b3:69:80:e0:45:e3:7a:b7:49:5e:6c:13:5f:e1:
fa:75:bb:b7:c8:c3:3b:38:9c:1f:58:35:03:95:21:fa:bb:11:
53:03:f6:07:44:af:7d:83:97:20:4a:db:20:88:4e:35:82:3b:
0c:b5:5d:7c:3f:e4:55:49:cf:6a:38:1c:01:28:69:12:6f:76:
07:61:88:84:28:8c:16:ab:95:e1:9f:09:aa:ee:a9:11:63:14:
fb:0b:9b:5c:e1:11:75:d1:7d:b1:72:af:f2:ea:7c:21:f8:a1:
8c:43:0d:51:7e:42:e1:04:13:7e:3d:af:a4:7c:24:d1:02:b4:
2e:7a:00:88:41:8a:d7:95:14:b8:b0:32:9c:78:ea:38:b0:ec:
20:5a:3a:74:44:a1:dc:b2:c7:e3:59:c0:41:2a:0e:6b:8b:f9:
14:00:80:6c:e8:cf:54:aa:1d:98:69:fe:d8:69:02:7c:f4:1c:
59:26:32:05:98:91:63:35:bd:87:27:73:de:b5:2e:59:7b:6d:
0a:01:c1:50:06:8e:4e:8a:c7:a3:40:ac:9d:b3:7b:44:c0:83:
76:e3:16:d0:c9:08:4b:f8:a5:2b:d4:f8:09:d6:48:e7:b2:5b:
78:16:ce:6c
-----BEGIN CERTIFICATE-----
MIIGAjCCBOqgAwIBAgICM+8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NkM4M0IxMTAvBgNVBAUTKEU3NkVCMjU2QzBGQ0IwN0UyOTA3OTc4MzQzRTlBRDlE
RDIxRkUyMDYwHhcNMjMwMzIxMDcwMDMzWhcNMjMwNzAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NDE5NTYxMS0zMmFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA3RqWLI3IMLMT0eX1AMXvuXH233ElmN4cSidq7r55uvMUl6HkWv4KhmX23FQ6
ja/W7H09FyIN6Jy2tsTXq+Xrf8C3DD8uVIwCZ8R6vB/Du5SZE367OSeOw+2h0uxL
2hpj0q/7rVYob2YHLutn1UvVBXr4wDGQujcniDE5kTg16yJHB0jL90OVeM409hET
RAb8q0nZsfRe6GW9aJtUO5bGR9jF8WvNRe7CyjpHyaLEk95yPdRxRQgXTQEvzckN
yGLb8xEpq+Zlrnexjouo8mfaxP9NWUixfBlo+gzamHJEdOkQ3j9WESCmUhm+XPGe
OL30FDlBWNrRXgndxSbMNjz4iwIDAQABo4IDJjCCAyIwHQYDVR0OBBYEFHjHnea7
VQbN0EaLDvwPGHeMKIXdMB8GA1UdIwQYMBaAFOduslbA/LB+KQeXg0PprZ3SH+IG
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzgzQi9FNEUxMEI0QTFE
ODgxMUUyQTAxMkNCRTEwOEIwMkNEMi81MjZ5VnNEOHNINHBCNWVEUS1tdG5kSWY0
Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzUyNnlWc0Q4c0g0cEI1ZURRLW10bmRJZjRnWS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NkM4M0IvRTRFMTBCNEExRDg4MTFFMkEwMTJDQkUxMDhCMDJDRDIvMTJCRTY2RUND
N0I2MTFFREFGMjJEMTQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwga8GCCsGAQUFBwEHAQH/
BIGfMIGcMIGZBAIAATCBkgMEAW9YigMEBG9YkDAMAwQCb1ikAwQCb1ioAwQBb1jo
AwQAc7oAAwQAc7oTAwQDc7owAwQFc7pAAwQAc7phMAwDBABzumMDBAFzumgDBABz
unIDBAJzunQDBAFzunoDBAFzun4DBAB1Zg0wDAMEAHVmHQMEBXVmAAMEAMtR2DAM
AwQAy1HbAwQBy1HkAwQAy1HnMA0GCSqGSIb3DQEBCwUAA4IBAQBRNJ5U1f0FHewR
NjmAOQlQ7IrBsM15s2mA4EXjerdJXmwTX+H6dbu3yMM7OJwfWDUDlSH6uxFTA/YH
RK99g5cgStsgiE41gjsMtV18P+RVSc9qOBwBKGkSb3YHYYiEKIwWq5Xhnwmq7qkR
YxT7C5tc4RF10X2xcq/y6nwh+KGMQw1RfkLhBBN+Pa+kfCTRArQuegCIQYrXlRS4
sDKceOo4sOwgWjp0RKHcssfjWcBBKg5ri/kUAIBs6M9Uqh2Yaf7YaQJ89BxZJjIF
mJFjNb2HJ3PetS5Ze20KAcFQBo5OisejQKyds3tEwIN24xbQyQhL+KUr1PgJ1kjn
slt4Fs5s
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:46 2023 by rpki-client on console-fra.rpki-client.org