Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/A788FB8EC7BB11ED9A3B7F64C4F9AE02.roa
File: A788FB8EC7BB11ED9A3B7F64C4F9AE02.roa (raw, json)
Hash identifier: SQ1RFKyF0P+hI5eh/iYnMQ8Tdn/l4fZpRkxHJ1V1HTU=
Subject key identifier: 7C:10:85:B1:58:21:6B:61:D5:38:49:F7:6D:26:85:36:8C:7A:2D:00
Certificate issuer: /CN=A916C83B/serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206
Certificate serial: 33F9
Authority key identifier: E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/A788FB8EC7BB11ED9A3B7F64C4F9AE02.roa
Signing time: Tue 21 Mar 2023 08:00:32 +0000
ROA not before: Tue 21 Mar 2023 08:00:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 38710
IP address blocks: 111.88.76.0/24 maxlen: 24
111.88.77.0/24 maxlen: 24
111.88.240.0/22 maxlen: 22
111.88.240.0/24 maxlen: 24
111.88.241.0/24 maxlen: 24
111.88.242.0/24 maxlen: 24
111.88.243.0/24 maxlen: 24
111.88.244.0/22 maxlen: 22
111.88.244.0/24 maxlen: 24
111.88.245.0/24 maxlen: 24
111.88.246.0/24 maxlen: 24
111.88.247.0/24 maxlen: 24
111.88.248.0/21 maxlen: 21
111.88.248.0/22 maxlen: 22
111.88.248.0/23 maxlen: 24
111.88.250.0/24 maxlen: 24
111.88.255.0/24 maxlen: 24
115.186.1.0/24 maxlen: 24
115.186.10.0/23 maxlen: 24
115.186.12.0/23 maxlen: 24
115.186.14.0/24 maxlen: 24
115.186.16.0/24 maxlen: 24
115.186.17.0/24 maxlen: 24
115.186.21.0/24 maxlen: 24
115.186.23.0/24 maxlen: 24
115.186.24.0/23 maxlen: 23
115.186.25.0/24 maxlen: 24
115.186.30.0/23 maxlen: 24
115.186.32.0/20 maxlen: 22
115.186.32.0/24 maxlen: 24
115.186.33.0/24 maxlen: 24
115.186.34.0/24 maxlen: 24
115.186.35.0/24 maxlen: 24
115.186.36.0/22 maxlen: 23
115.186.36.0/23 maxlen: 24
115.186.40.0/24 maxlen: 24
115.186.41.0/24 maxlen: 24
115.186.42.0/24 maxlen: 24
115.186.43.0/24 maxlen: 24
115.186.44.0/24 maxlen: 24
115.186.45.0/24 maxlen: 24
115.186.46.0/24 maxlen: 24
115.186.47.0/24 maxlen: 24
115.186.56.0/21 maxlen: 24
115.186.88.0/24 maxlen: 24
115.186.90.0/24 maxlen: 24
115.186.91.0/24 maxlen: 24
115.186.93.0/24 maxlen: 24
115.186.96.0/24 maxlen: 24
115.186.98.0/24 maxlen: 24
115.186.101.0/24 maxlen: 24
115.186.102.0/24 maxlen: 24
115.186.103.0/24 maxlen: 24
115.186.104.0/24 maxlen: 24
115.186.106.0/23 maxlen: 24
115.186.108.0/22 maxlen: 24
115.186.112.0/24 maxlen: 24
115.186.113.0/24 maxlen: 24
115.186.115.0/24 maxlen: 24
115.186.117.0/24 maxlen: 24
115.186.118.0/24 maxlen: 24
115.186.119.0/24 maxlen: 24
115.186.120.0/24 maxlen: 24
115.186.121.0/24 maxlen: 24
115.186.122.0/24 maxlen: 24
115.186.123.0/24 maxlen: 24
115.186.125.0/24 maxlen: 24
115.186.126.0/24 maxlen: 24
117.102.0.0/21 maxlen: 21
117.102.0.0/22 maxlen: 22
117.102.0.0/23 maxlen: 24
117.102.2.0/24 maxlen: 24
117.102.3.0/24 maxlen: 24
117.102.4.0/24 maxlen: 24
117.102.5.0/24 maxlen: 24
117.102.6.0/24 maxlen: 24
117.102.7.0/24 maxlen: 24
117.102.8.0/24 maxlen: 24
117.102.9.0/24 maxlen: 24
117.102.10.0/24 maxlen: 24
117.102.12.0/23 maxlen: 24
117.102.16.0/24 maxlen: 24
117.102.17.0/24 maxlen: 24
117.102.18.0/23 maxlen: 24
117.102.20.0/22 maxlen: 22
117.102.21.0/24 maxlen: 24
117.102.24.0/22 maxlen: 22
117.102.24.0/23 maxlen: 24
117.102.26.0/24 maxlen: 24
117.102.27.0/24 maxlen: 24
117.102.28.0/24 maxlen: 24
117.102.30.0/24 maxlen: 24
117.102.31.0/24 maxlen: 24
117.102.32.0/24 maxlen: 24
117.102.33.0/24 maxlen: 24
117.102.34.0/24 maxlen: 24
117.102.35.0/24 maxlen: 24
117.102.36.0/24 maxlen: 24
117.102.37.0/24 maxlen: 24
117.102.38.0/24 maxlen: 24
117.102.39.0/24 maxlen: 24
117.102.40.0/24 maxlen: 24
117.102.41.0/24 maxlen: 24
117.102.42.0/24 maxlen: 24
117.102.43.0/24 maxlen: 24
117.102.44.0/24 maxlen: 24
117.102.45.0/24 maxlen: 24
117.102.46.0/24 maxlen: 24
117.102.47.0/24 maxlen: 24
203.81.192.0/21 maxlen: 22
203.81.192.0/24 maxlen: 24
203.81.193.0/24 maxlen: 24
203.81.194.0/24 maxlen: 24
203.81.195.0/24 maxlen: 24
203.81.196.0/24 maxlen: 24
203.81.197.0/24 maxlen: 24
203.81.198.0/23 maxlen: 24
203.81.208.0/21 maxlen: 24
203.81.230.0/24 maxlen: 24
203.81.232.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13305 (0x33f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916C83B/serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206
Validity
Not Before: Mar 21 08:00:32 2023 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=64196420-7aac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:7f:f8:c7:d6:0b:43:59:9a:aa:f4:5e:e6:86:
6d:23:6b:cb:a6:02:e0:24:08:f1:1d:50:b1:77:14:
2e:f8:d9:f4:87:67:14:d3:ee:d2:26:63:ee:82:de:
4e:d5:92:82:31:43:e1:c8:cf:e4:52:5b:f4:6b:86:
d3:a5:60:e3:21:56:ca:fb:67:39:9e:3c:6c:c4:a7:
5c:1e:d6:5a:1a:85:51:d8:ad:6d:64:b6:d8:e7:d4:
fa:1f:e2:64:33:e8:da:39:61:8b:2c:c6:77:03:04:
b7:38:76:3a:c0:71:2c:22:2c:af:40:b9:ea:6c:d8:
41:2e:aa:2c:55:25:97:5d:14:73:2d:19:cd:b2:bd:
b2:df:2e:c6:32:04:99:ac:61:b8:2c:f8:c8:d4:0d:
01:f8:b6:79:9b:a7:e5:2d:2c:94:e2:c9:d0:71:06:
6d:b2:da:7b:44:41:48:9d:25:6a:f8:3a:49:47:c2:
84:1f:05:2d:9c:60:c7:4e:3b:aa:06:6d:b6:bf:4e:
a8:0c:6c:50:1d:06:85:61:d9:ec:bf:b5:b2:44:16:
d9:28:84:8c:13:a0:f5:da:c1:5e:7d:d7:a0:7b:6c:
04:82:1d:9d:64:06:ef:7f:53:9b:49:41:51:01:36:
93:ad:2b:8d:fd:8b:44:4c:bd:7a:3b:09:d8:66:83:
5a:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:10:85:B1:58:21:6B:61:D5:38:49:F7:6D:26:85:36:8C:7A:2D:00
X509v3 Authority Key Identifier:
keyid:E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/A788FB8EC7BB11ED9A3B7F64C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
111.88.76.0/23
111.88.240.0/20
115.186.1.0/24
115.186.10.0-115.186.14.255
115.186.16.0/23
115.186.21.0/24
115.186.23.0-115.186.25.255
115.186.30.0-115.186.47.255
115.186.56.0/21
115.186.88.0/24
115.186.90.0/23
115.186.93.0/24
115.186.96.0/24
115.186.98.0/24
115.186.101.0-115.186.104.255
115.186.106.0-115.186.113.255
115.186.115.0/24
115.186.117.0-115.186.123.255
115.186.125.0-115.186.126.255
117.102.0.0-117.102.10.255
117.102.12.0/23
117.102.16.0-117.102.28.255
117.102.30.0-117.102.47.255
203.81.192.0/21
203.81.208.0/21
203.81.230.0/24
203.81.232.0/21
Signature Algorithm: sha256WithRSAEncryption
13:57:37:d0:4d:c9:ea:ba:6a:b8:d3:a5:b2:4b:dd:fd:77:f8:
70:f5:94:fc:16:89:8e:f1:65:fb:7a:c0:d5:79:46:22:22:88:
d2:eb:28:f1:73:c7:7d:9b:3f:b5:ee:fb:99:ea:a6:95:23:00:
53:e7:ad:d5:86:2b:ab:4a:81:88:73:31:7a:44:83:4f:53:35:
d8:e4:b2:8e:82:6b:cf:e3:10:83:72:f3:a5:cc:ee:cf:4a:44:
e5:24:f9:ab:70:54:65:9b:e4:b7:ad:32:49:35:aa:40:65:f2:
a5:76:9e:d8:7d:9d:63:ef:9c:66:2c:04:ea:e6:e8:f9:1b:15:
4f:25:b3:9d:83:cb:12:0c:90:37:14:4c:90:9b:e6:80:f8:35:
30:cb:67:80:0a:a0:a4:97:0f:5c:42:59:10:49:4c:59:06:a7:
a7:1a:fd:c3:b1:6a:10:73:55:bc:f9:df:74:b0:1d:9d:bc:f3:
f4:36:d8:38:68:4c:cf:02:da:5c:1e:20:d0:ed:10:87:23:74:
6f:12:0f:83:de:97:df:f2:ff:55:ea:36:a2:76:47:f2:ff:89:
82:f9:00:34:6f:a4:3f:61:fa:62:9b:88:98:a9:4a:2a:3e:72:
24:e0:f2:23:4f:a7:b0:c0:0d:36:37:82:47:e6:f0:0a:fd:49:
d5:5e:74:70
-----BEGIN CERTIFICATE-----
MIIGYjCCBUqgAwIBAgICM/kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NkM4M0IxMTAvBgNVBAUTKEU3NkVCMjU2QzBGQ0IwN0UyOTA3OTc4MzQzRTlBRDlE
RDIxRkUyMDYwHhcNMjMwMzIxMDgwMDMyWhcNMjMwNzAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NDE5NjQyMC03YWFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA3n/4x9YLQ1maqvRe5oZtI2vLpgLgJAjxHVCxdxQu+Nn0h2cU0+7SJmPugt5O
1ZKCMUPhyM/kUlv0a4bTpWDjIVbK+2c5njxsxKdcHtZaGoVR2K1tZLbY59T6H+Jk
M+jaOWGLLMZ3AwS3OHY6wHEsIiyvQLnqbNhBLqosVSWXXRRzLRnNsr2y3y7GMgSZ
rGG4LPjI1A0B+LZ5m6flLSyU4snQcQZtstp7REFInSVq+DpJR8KEHwUtnGDHTjuq
Bm22v06oDGxQHQaFYdnsv7WyRBbZKISME6D12sFefdege2wEgh2dZAbvf1ObSUFR
ATaTrSuN/YtETL16OwnYZoNadwIDAQABo4IDhjCCA4IwHQYDVR0OBBYEFHwQhbFY
IWth1ThJ920mhTaMei0AMB8GA1UdIwQYMBaAFOduslbA/LB+KQeXg0PprZ3SH+IG
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzgzQi9FNEUxMEI0QTFE
ODgxMUUyQTAxMkNCRTEwOEIwMkNEMi81MjZ5VnNEOHNINHBCNWVEUS1tdG5kSWY0
Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzUyNnlWc0Q4c0g0cEI1ZURRLW10bmRJZjRnWS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NkM4M0IvRTRFMTBCNEExRDg4MTFFMkEwMTJDQkUxMDhCMDJDRDIvQTc4OEZCOEVD
N0JCMTFFRDlBM0I3RjY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwggEOBggrBgEFBQcBBwEB
/wSB/jCB+zCB+AQCAAEwgfEDBAFvWEwDBARvWPADBABzugEwDAMEAXO6CgMEAHO6
DgMEAXO6EAMEAHO6FTAMAwQAc7oXAwQBc7oYMAwDBAFzuh4DBARzuiADBANzujgD
BABzulgDBAFzuloDBABzul0DBABzumADBABzumIwDAMEAHO6ZQMEAHO6aDAMAwQB
c7pqAwQBc7pwAwQAc7pzMAwDBABzunUDBAJzungwDAMEAHO6fQMEAHO6fjALAwMB
dWYDBAB1ZgoDBAF1ZgwwDAMEBHVmEAMEAHVmHDAMAwQBdWYeAwQEdWYgAwQDy1HA
AwQDy1HQAwQAy1HmAwQDy1HoMA0GCSqGSIb3DQEBCwUAA4IBAQATVzfQTcnqumq4
06WyS939d/hw9ZT8FomO8WX7esDVeUYiIojS6yjxc8d9mz+17vuZ6qaVIwBT563V
hiurSoGIczF6RINPUzXY5LKOgmvP4xCDcvOlzO7PSkTlJPmrcFRlm+S3rTJJNapA
ZfKldp7YfZ1j75xmLATq5uj5GxVPJbOdg8sSDJA3FEyQm+aA+DUwy2eACqCklw9c
QlkQSUxZBqenGv3DsWoQc1W8+d90sB2dvPP0Ntg4aEzPAtpcHiDQ7RCHI3RvEg+D
3pff8v9V6jaidkfy/4mC+QA0b6Q/Yfpim4iYqUoqPnIk4PIjT6ewwA02N4JH5vAK
/UnVXnRw
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:43 2023 by rpki-client on console-ams.rpki-client.org