Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/2D0F5B6AFD5011EA9592C11BC4F9AE02.roa
File: 2D0F5B6AFD5011EA9592C11BC4F9AE02.roa (raw, json)
Hash identifier: vSMFZ3M96m+IIfJE0g/r2px2MLpE5IxasrhL2yzhe2A=
Subject key identifier: 2A:58:AA:F1:83:BD:46:73:8A:11:6B:58:20:CF:60:67:3F:E4:46:DE
Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8
Certificate serial: 11A2
Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/2D0F5B6AFD5011EA9592C11BC4F9AE02.roa
Signing time: Fri 29 Apr 2022 06:44:15 +0000
ROA not before: Fri 29 Apr 2022 06:44:15 +0000
ROA not after: Fri 30 Sep 2022 00:00:00 +0000
asID: 136907
IP address blocks: 14.137.136.0/22 maxlen: 22
14.137.164.0/22 maxlen: 22
14.137.165.0/24 maxlen: 24
101.44.0.0/18 maxlen: 18
101.44.64.0/18 maxlen: 18
103.239.72.0/24 maxlen: 24
103.239.73.0/24 maxlen: 24
103.240.156.0/22 maxlen: 22
103.255.60.0/22 maxlen: 22
110.238.97.0/24 maxlen: 24
110.239.96.0/19 maxlen: 19
110.239.127.0/24 maxlen: 24
121.91.200.0/24 maxlen: 24
121.91.201.0/24 maxlen: 24
121.91.202.0/24 maxlen: 24
121.91.203.0/24 maxlen: 24
121.91.204.0/24 maxlen: 24
121.91.205.0/24 maxlen: 24
121.91.206.0/24 maxlen: 24
121.91.207.0/24 maxlen: 24
122.8.176.0/21 maxlen: 21
122.8.184.0/22 maxlen: 22
122.8.188.0/22 maxlen: 22
182.160.40.0/22 maxlen: 22
182.160.56.0/24 maxlen: 24
182.160.57.0/24 maxlen: 24
182.160.58.0/24 maxlen: 24
182.160.59.0/24 maxlen: 24
182.160.60.0/24 maxlen: 24
182.160.61.0/24 maxlen: 24
182.160.62.0/24 maxlen: 24
182.160.63.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4514 (0x11a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8
Validity
Not Before: Apr 29 06:44:15 2022 GMT
Not After : Sep 30 00:00:00 2022 GMT
Subject: CN=626b893f-e6b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:38:83:0e:bd:91:e7:9b:a1:a1:1b:de:51:5b:
56:c7:98:9f:1c:92:0a:97:05:e8:09:87:d0:55:16:
05:7a:d3:cb:82:52:8b:54:0a:16:e7:f2:65:4e:b8:
14:0a:0e:e0:88:f0:e4:cc:f2:ce:38:c7:da:76:cb:
b9:5b:d2:a6:c5:0b:57:be:18:06:7b:3f:1e:06:f7:
d1:95:0b:b5:1e:67:89:2d:bb:0d:0a:0c:58:dc:36:
2e:71:2b:52:2d:60:f3:04:c4:b9:55:e5:f4:ef:4b:
7f:1d:76:2a:f5:17:4e:21:43:e5:13:de:63:4b:43:
d4:03:b1:ab:40:df:e4:83:32:26:34:49:5f:b3:1a:
00:65:b2:a5:82:1c:e8:ad:29:ae:cc:e1:83:cf:80:
7e:30:c6:0a:ce:63:aa:6e:97:dc:c6:e0:94:bb:b5:
93:a5:6b:3b:3f:ae:d9:4d:1a:43:cf:e5:e9:0e:bd:
55:06:46:54:2d:70:f3:65:f8:fc:58:6d:c0:0e:6d:
fb:bf:c5:73:71:81:17:cc:e3:38:46:22:09:f5:ae:
70:b8:fb:f4:df:a1:16:38:a1:7d:20:fe:7b:1e:b4:
82:a6:18:7c:4f:01:53:05:b6:10:10:be:78:f3:45:
99:06:98:1b:25:33:5e:65:35:04:b1:e9:6a:cd:e4:
18:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:58:AA:F1:83:BD:46:73:8A:11:6B:58:20:CF:60:67:3F:E4:46:DE
X509v3 Authority Key Identifier:
keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/2D0F5B6AFD5011EA9592C11BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
14.137.136.0/22
14.137.164.0/22
101.44.0.0/17
103.239.72.0/23
103.240.156.0/22
103.255.60.0/22
110.238.97.0/24
110.239.96.0/19
121.91.200.0/21
122.8.176.0/20
182.160.40.0/22
182.160.56.0/21
Signature Algorithm: sha256WithRSAEncryption
61:f6:52:ef:5f:68:f2:d9:9c:55:a7:b4:07:d5:17:b7:ca:fe:
d1:ea:a2:fa:29:f9:2c:55:51:57:71:42:ba:1d:71:5a:a9:a8:
cf:6b:d4:71:2a:97:5a:64:7f:fa:01:22:96:b6:dc:4a:09:b1:
6f:55:8e:98:27:f3:bc:8e:72:54:bc:0e:32:ca:39:7e:e2:03:
05:bc:9a:8f:41:a5:4a:dd:28:2b:16:63:c4:5a:d9:75:41:21:
19:ca:3b:94:37:fa:de:86:67:31:86:32:3b:e9:6e:29:0c:b4:
85:b1:23:ca:2f:d5:ac:1a:4c:45:35:49:11:22:2d:52:a2:e3:
4e:e6:5a:b0:f4:cd:39:74:1c:af:86:c8:8b:9b:50:db:88:26:
7f:36:20:59:1d:d2:7d:49:53:40:8d:36:62:17:81:f9:88:ff:
ee:83:1b:4b:eb:bf:d5:cf:4b:8f:bc:09:58:80:ec:c9:1d:f7:
25:a3:ef:93:8d:1f:df:73:3b:9a:ad:67:e9:a3:16:f0:68:39:
cf:ee:04:27:c4:98:65:dd:fb:0a:b3:61:f4:80:f6:62:72:93:
76:e2:91:74:25:46:d6:23:cc:16:4f:86:c2:69:4f:29:82:ea:
5f:45:cf:1c:87:23:73:22:87:0f:09:af:e5:8c:f4:a4:08:4b:
b0:51:67:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:45 2023 by rpki-client on console-ams.rpki-client.org