Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/DFA136A6442011EBADC18862C4F9AE02.roa
File: DFA136A6442011EBADC18862C4F9AE02.roa (raw, json)
Hash identifier: ndJ6/xK25zoyMvKPtnz8wFxVA90WOFcLiur23LaNxeg=
Subject key identifier: F7:68:F6:FB:8E:5D:D2:E3:FF:8E:42:5A:C1:E1:76:49:8E:75:C9:8E
Certificate issuer: /CN=A9172D91/serialNumber=E2EDE4A7EA972668A795B27BA9DC87F4B90DA897
Certificate serial: 1359
Authority key identifier: E2:ED:E4:A7:EA:97:26:68:A7:95:B2:7B:A9:DC:87:F4:B9:0D:A8:97
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/DFA136A6442011EBADC18862C4F9AE02.roa
Signing time: Fri 24 Jun 2022 05:56:00 +0000
ROA not before: Fri 24 Jun 2022 05:56:00 +0000
ROA not after: Sat 30 Sep 2023 00:00:00 +0000
asID: 17819
IP address blocks: 27.111.160.0/19 maxlen: 19
27.111.169.0/24 maxlen: 24
27.111.170.0/24 maxlen: 24
27.111.171.0/24 maxlen: 24
27.111.183.0/24 maxlen: 24
27.111.192.0/20 maxlen: 20
27.111.195.0/24 maxlen: 24
45.126.12.0/24 maxlen: 24
45.126.13.0/24 maxlen: 24
45.126.14.0/23 maxlen: 23
103.14.116.0/22 maxlen: 22
113.59.240.0/24 maxlen: 24
113.59.241.0/24 maxlen: 24
113.59.243.0/24 maxlen: 24
113.59.248.0/21 maxlen: 21
113.59.250.0/24 maxlen: 24
2404:6900::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4953 (0x1359)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9172D91/serialNumber=E2EDE4A7EA972668A795B27BA9DC87F4B90DA897
Validity
Not Before: Jun 24 05:56:00 2022 GMT
Not After : Sep 30 00:00:00 2023 GMT
Subject: CN=62b551f0-9f62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:0f:e6:65:36:d1:99:c0:69:d4:87:45:5c:4b:
c5:0c:d0:dd:c8:92:a6:0f:84:5f:4c:ee:67:4b:24:
1b:32:33:b6:9b:93:3e:67:cb:1a:dc:bb:0a:e6:db:
ba:5c:92:4b:64:ab:f7:8d:96:23:61:a0:2c:68:d7:
a6:66:12:5e:a1:43:fa:9b:15:76:4c:5f:ea:b7:56:
e2:b3:ed:f9:54:75:74:d7:7d:08:45:5a:f3:4e:02:
2a:5b:38:ac:ad:d0:db:aa:dd:f0:61:3b:86:a8:1d:
a1:62:61:b3:17:73:8b:96:30:de:d0:3e:06:8d:b0:
cd:02:15:7f:d4:5e:03:52:17:c7:95:fd:f7:02:30:
e1:f3:50:23:53:ae:46:3c:05:2f:85:e8:18:39:41:
56:e3:b6:df:fd:01:9e:5a:45:6b:1b:bc:3a:30:c4:
25:85:67:f6:9b:69:98:d8:18:66:be:4f:ea:40:8f:
1a:d2:ae:05:6c:1b:6b:21:0c:14:55:89:1b:d1:58:
99:62:ff:8c:a1:c4:6e:be:ed:77:59:e9:75:9f:59:
02:7d:f5:03:2e:c8:1f:73:77:60:57:e9:c5:76:a9:
e8:6a:5a:d7:3f:84:b6:0f:70:14:34:4a:1f:dd:c4:
cd:19:e9:6d:92:44:df:49:14:73:cd:1f:06:6f:63:
40:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:68:F6:FB:8E:5D:D2:E3:FF:8E:42:5A:C1:E1:76:49:8E:75:C9:8E
X509v3 Authority Key Identifier:
keyid:E2:ED:E4:A7:EA:97:26:68:A7:95:B2:7B:A9:DC:87:F4:B9:0D:A8:97
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/DFA136A6442011EBADC18862C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
27.111.160.0-27.111.207.255
45.126.12.0/22
103.14.116.0/22
113.59.240.0/23
113.59.243.0/24
113.59.248.0/21
IPv6:
2404:6900::/32
Signature Algorithm: sha256WithRSAEncryption
9b:e0:53:ba:76:58:76:c4:8d:93:a0:dc:4f:f8:5e:89:74:8d:
dd:53:4a:3f:a6:bf:f7:b9:5c:f1:4c:60:f9:18:20:e9:ba:a8:
0a:24:c2:c6:38:61:d9:17:2a:4b:f5:b9:2b:e7:a3:27:e1:08:
ed:92:4f:ab:e7:48:20:c8:a1:9e:a4:04:b0:2e:aa:73:4f:33:
ab:7f:d8:10:73:ea:c9:7b:b9:2f:cf:1e:74:d4:a4:61:5a:70:
fa:66:ed:1d:52:b1:81:13:96:07:b7:0e:ae:98:25:ea:39:23:
e3:a8:d7:2f:c3:cd:32:0a:0c:6f:8d:9e:6e:c7:f1:1d:b2:2c:
41:e1:9e:cb:88:39:a4:69:93:ed:e2:df:1d:f7:21:28:81:89:
8c:01:db:4e:f0:f3:0b:50:7d:81:35:8b:b4:9d:fb:bb:02:a6:
ba:ef:e7:e2:a3:cc:61:b2:d8:ef:95:c8:ae:ea:0d:7e:15:8b:
33:0d:40:ef:d9:a3:b3:87:cd:3b:2e:8b:8f:f9:49:6e:8b:43:
fb:36:45:de:47:c5:f4:f4:a7:92:8a:1d:10:d2:b5:83:5c:ff:
64:ef:f9:59:8b:8e:8a:82:5d:eb:fb:92:ba:16:5a:30:51:0f:
55:fa:24:ab:c0:64:7c:b0:0b:af:4d:2f:2a:4a:cd:cd:86:aa:
82:a9:22:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:21 2024 by rpki-client on console-ams.rpki-client.org