Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/08148E66DA6211ECB9B87A42C4F9AE02.roa
File: 08148E66DA6211ECB9B87A42C4F9AE02.roa (raw, json)
Hash identifier: Ryc8EgJskVqQTKXXTgeMUBrWanmNTiIQqpbn26nDjZM=
Subject key identifier: 1C:81:96:A9:C0:28:C9:AC:32:D2:06:08:4A:C4:43:65:E1:39:36:8A
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 55C4
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/08148E66DA6211ECB9B87A42C4F9AE02.roa
Signing time: Mon 23 May 2022 06:31:52 +0000
ROA not before: Mon 23 May 2022 06:31:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 140125
IP address blocks: 103.82.48.0/22 maxlen: 24
103.114.67.0/24 maxlen: 24
103.167.212.0/23 maxlen: 24
103.167.224.0/23 maxlen: 24
103.168.0.0/23 maxlen: 24
103.168.32.0/23 maxlen: 24
103.168.60.0/23 maxlen: 24
103.170.36.0/23 maxlen: 24
103.170.38.0/23 maxlen: 24
103.170.148.0/23 maxlen: 24
103.171.108.0/23 maxlen: 24
103.171.110.0/23 maxlen: 24
103.171.174.0/23 maxlen: 24
103.173.14.0/23 maxlen: 24
103.173.98.0/23 maxlen: 24
103.177.226.0/23 maxlen: 24
103.178.166.0/23 maxlen: 24
103.178.202.0/23 maxlen: 24
103.179.94.0/23 maxlen: 24
103.179.96.0/23 maxlen: 24
103.179.100.0/23 maxlen: 24
103.179.118.0/23 maxlen: 24
103.179.120.0/23 maxlen: 24
103.179.224.0/23 maxlen: 24
103.179.226.0/23 maxlen: 24
103.180.110.0/23 maxlen: 24
103.180.168.0/23 maxlen: 24
103.180.172.0/23 maxlen: 24
103.180.174.0/23 maxlen: 24
103.180.176.0/23 maxlen: 24
103.180.212.0/23 maxlen: 24
103.180.214.0/23 maxlen: 24
103.180.236.0/23 maxlen: 24
103.180.238.0/23 maxlen: 24
103.181.64.0/23 maxlen: 24
103.181.84.0/23 maxlen: 24
103.181.86.0/23 maxlen: 24
103.181.110.0/23 maxlen: 24
103.181.114.0/23 maxlen: 24
103.181.150.0/23 maxlen: 24
103.181.152.0/23 maxlen: 24
103.181.154.0/23 maxlen: 24
103.181.174.0/23 maxlen: 24
103.181.198.0/23 maxlen: 24
103.182.58.0/23 maxlen: 24
103.183.216.0/23 maxlen: 24
103.187.92.0/23 maxlen: 24
103.194.118.0/24 maxlen: 24
103.212.134.0/24 maxlen: 24
103.229.208.0/23 maxlen: 24
103.252.40.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21956 (0x55c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: May 23 06:31:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=628b2a58-52ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:0f:54:eb:89:09:88:3a:2b:c1:b3:51:c8:d2:
1b:7c:44:96:4b:b6:a1:f5:ae:e3:df:76:e2:a1:2e:
d7:19:29:23:a4:0d:ef:7b:43:10:5c:a3:c9:cd:88:
92:9e:25:25:70:dd:d4:b1:be:70:c7:7a:f7:c9:34:
d8:ce:cd:55:14:3e:44:30:83:a6:2f:e0:8e:9e:16:
fc:03:0c:45:8a:42:fb:08:6c:53:81:38:bc:77:3b:
82:eb:1e:ed:bd:74:b4:48:21:8b:65:9e:11:0b:f3:
84:0e:9e:3b:80:c0:9d:a9:ba:0c:a2:bc:d6:7d:07:
1b:69:b1:12:8d:c6:62:8e:b7:00:7b:46:0e:60:83:
9a:f3:97:cd:10:c9:57:96:ba:96:26:55:f2:a7:7a:
26:d0:1a:1f:49:de:df:b4:e6:f9:d6:99:ee:63:f5:
e5:fe:aa:1c:df:ab:05:8a:d7:fd:13:88:d3:33:ee:
e8:7b:0e:c5:d3:61:08:04:da:3c:cc:8b:65:c5:8c:
92:44:8b:0b:b2:fa:7c:f0:05:8d:a3:c8:1e:f2:50:
b7:fd:5b:04:6a:78:ac:5f:26:eb:a7:4d:90:44:d8:
76:99:3c:17:f0:e2:40:f0:c1:f0:16:62:7a:8b:31:
8a:66:50:b1:c8:d9:5f:ac:dd:4c:b0:24:39:2b:c7:
83:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:81:96:A9:C0:28:C9:AC:32:D2:06:08:4A:C4:43:65:E1:39:36:8A
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/08148E66DA6211ECB9B87A42C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.82.48.0/22
103.114.67.0/24
103.167.212.0/23
103.167.224.0/23
103.168.0.0/23
103.168.32.0/23
103.168.60.0/23
103.170.36.0/22
103.170.148.0/23
103.171.108.0/22
103.171.174.0/23
103.173.14.0/23
103.173.98.0/23
103.177.226.0/23
103.178.166.0/23
103.178.202.0/23
103.179.94.0-103.179.97.255
103.179.100.0/23
103.179.118.0-103.179.121.255
103.179.224.0/22
103.180.110.0/23
103.180.168.0/23
103.180.172.0-103.180.177.255
103.180.212.0/22
103.180.236.0/22
103.181.64.0/23
103.181.84.0/22
103.181.110.0/23
103.181.114.0/23
103.181.150.0-103.181.155.255
103.181.174.0/23
103.181.198.0/23
103.182.58.0/23
103.183.216.0/23
103.187.92.0/23
103.194.118.0/24
103.212.134.0/24
103.229.208.0/23
103.252.40.0/22
Signature Algorithm: sha256WithRSAEncryption
9f:fa:6c:b4:9c:7f:f0:4f:75:29:a5:10:7b:38:e0:04:95:dc:
73:63:0e:60:f5:96:66:16:57:c7:26:e1:1e:ad:75:f4:12:f4:
ec:7b:69:12:8e:59:a2:f5:ca:ee:16:0d:6c:d6:01:d4:28:94:
e5:b2:8f:09:fe:d8:0c:68:7f:90:7d:c6:59:5b:06:a7:ab:a7:
5d:47:c6:61:3d:52:07:ea:f3:3c:c6:44:2b:52:9d:04:4f:53:
6c:6b:07:93:6f:02:48:e3:f0:56:40:68:c9:38:fc:8e:1f:20:
33:d7:8b:83:85:a6:9e:93:1e:30:09:86:67:d4:3f:0f:0a:83:
f9:b9:79:f9:67:ab:a1:f7:17:bb:d2:32:09:b7:c1:d5:be:98:
56:83:f3:50:85:a0:14:51:81:9b:1f:b0:6b:73:ef:ea:da:d2:
c7:0e:17:84:ae:b4:8b:1e:e0:57:82:9c:04:86:f8:10:41:6d:
9c:70:65:ad:7a:e5:cc:27:11:27:14:be:c0:d5:86:eb:00:e1:
35:c3:b2:97:51:fa:94:cd:2f:1b:b7:c7:89:84:7d:f9:e9:df:
60:80:cf:b0:63:e5:92:3c:7b:62:b5:9b:ef:66:b1:13:9d:c7:
ee:8a:80:90:4e:25:d0:a2:29:21:f2:27:eb:af:97:3e:1d:46:
21:89:4c:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:47 2023 by rpki-client on console-ams.rpki-client.org