Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/11C68AFC13C611ED9411206DC4F9AE02.roa
File: 11C68AFC13C611ED9411206DC4F9AE02.roa (raw, json)
Hash identifier: c2dBYTPSVk2XeNN1XZem212lMzS5CNajXLsE61HfE4U=
Subject key identifier: 16:8F:9E:CE:84:4D:B2:EA:9B:5A:BD:A8:74:27:DA:67:CE:F1:5E:45
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 5ACE
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/11C68AFC13C611ED9411206DC4F9AE02.roa
Signing time: Thu 04 Aug 2022 07:21:34 +0000
ROA not before: Thu 04 Aug 2022 07:21:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 140125
IP address blocks: 103.163.14.0/23 maxlen: 24
103.167.212.0/23 maxlen: 24
103.167.224.0/23 maxlen: 24
103.167.238.0/23 maxlen: 24
103.168.0.0/23 maxlen: 24
103.168.32.0/23 maxlen: 24
103.170.36.0/23 maxlen: 24
103.171.108.0/23 maxlen: 24
103.171.110.0/23 maxlen: 24
103.171.174.0/23 maxlen: 24
103.173.14.0/23 maxlen: 24
103.173.98.0/23 maxlen: 24
103.177.226.0/23 maxlen: 23
103.177.227.0/24 maxlen: 24
103.179.94.0/23 maxlen: 24
103.179.96.0/23 maxlen: 24
103.179.100.0/23 maxlen: 24
103.179.118.0/23 maxlen: 24
103.179.120.0/23 maxlen: 24
103.179.224.0/23 maxlen: 24
103.179.226.0/23 maxlen: 24
103.180.110.0/23 maxlen: 24
103.180.168.0/23 maxlen: 24
103.180.172.0/23 maxlen: 24
103.180.174.0/23 maxlen: 24
103.180.176.0/23 maxlen: 24
103.180.212.0/23 maxlen: 24
103.180.214.0/23 maxlen: 24
103.180.238.0/23 maxlen: 24
103.181.64.0/23 maxlen: 24
103.181.84.0/23 maxlen: 23
103.181.85.0/24 maxlen: 24
103.181.110.0/23 maxlen: 24
103.181.114.0/23 maxlen: 24
103.181.152.0/23 maxlen: 24
103.181.154.0/23 maxlen: 24
103.181.174.0/23 maxlen: 24
103.181.198.0/23 maxlen: 24
103.182.58.0/23 maxlen: 24
103.183.216.0/23 maxlen: 24
103.189.82.0/23 maxlen: 24
103.229.209.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23246 (0x5ace)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Aug 4 07:21:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=62eb737e-9490
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:15:3d:2e:3e:97:72:50:05:6c:8e:c1:d3:3e:
23:30:6c:5c:4c:27:b1:62:09:0a:0a:a6:67:e8:b1:
f6:82:27:61:79:92:6d:de:96:0f:20:7a:15:d3:41:
81:60:08:0b:cc:96:59:e2:0d:6b:d9:b1:6d:be:24:
63:dd:52:ba:c7:12:e8:ab:a8:93:71:08:ad:c9:ca:
d9:2b:dd:d4:70:dd:d8:c9:c6:b4:6b:06:41:14:61:
df:66:13:08:d2:32:2d:92:6e:27:42:cc:ca:ac:71:
e1:7b:25:d5:c0:3f:de:f2:66:14:14:27:92:48:dd:
74:c6:f0:ab:4f:f5:1e:89:be:5e:4b:39:cf:be:20:
4b:c7:3c:11:e9:4a:93:2a:60:92:a1:8e:1a:c0:d8:
dc:b5:a3:8e:3c:b2:5e:df:e2:54:df:73:3c:bd:0f:
77:8d:69:b4:85:00:74:43:4c:93:5c:83:36:65:0e:
4a:c2:aa:41:18:16:4f:4b:b8:ce:b9:16:1a:45:bb:
64:c2:f4:38:5c:eb:0b:9c:69:79:12:ac:85:19:3f:
6a:ee:54:13:de:5f:f6:3b:39:de:72:6a:99:5d:9f:
e8:1b:65:ca:5e:e4:20:89:0e:ef:9d:bf:0f:be:07:
9e:46:42:10:3d:e9:5b:d3:5b:51:af:00:e9:42:e8:
3d:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:8F:9E:CE:84:4D:B2:EA:9B:5A:BD:A8:74:27:DA:67:CE:F1:5E:45
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/11C68AFC13C611ED9411206DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.163.14.0/23
103.167.212.0/23
103.167.224.0/23
103.167.238.0/23
103.168.0.0/23
103.168.32.0/23
103.170.36.0/23
103.171.108.0/22
103.171.174.0/23
103.173.14.0/23
103.173.98.0/23
103.177.226.0/23
103.179.94.0-103.179.97.255
103.179.100.0/23
103.179.118.0-103.179.121.255
103.179.224.0/22
103.180.110.0/23
103.180.168.0/23
103.180.172.0-103.180.177.255
103.180.212.0/22
103.180.238.0/23
103.181.64.0/23
103.181.84.0/23
103.181.110.0/23
103.181.114.0/23
103.181.152.0/22
103.181.174.0/23
103.181.198.0/23
103.182.58.0/23
103.183.216.0/23
103.189.82.0/23
103.229.209.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:37:88:78:93:25:0e:b1:bb:3a:37:9f:34:92:2e:9e:37:19:
b4:94:d2:43:79:bc:98:59:94:f0:e0:6c:e9:84:a9:85:24:27:
29:bb:07:aa:41:39:9b:ee:2b:c8:04:00:d1:2a:08:1b:08:4a:
c5:04:e0:f1:8c:81:70:64:7d:43:9b:8c:44:2f:c1:ea:21:0a:
47:cd:3d:0e:9b:53:c5:ca:7e:dc:49:67:6f:df:db:c5:bc:26:
0b:fa:69:4d:5d:fc:28:8a:0a:87:ee:9b:16:57:94:8d:09:b5:
25:5b:02:c7:52:85:5c:6e:eb:7b:75:71:2d:ad:57:58:1c:11:
52:1e:71:d9:1a:38:04:38:50:bc:c0:5a:14:b4:82:17:3c:a8:
ff:4e:be:66:ff:92:43:f4:db:84:75:96:b8:a1:83:82:25:0e:
71:2f:62:fc:0e:c7:dd:43:ea:1d:3a:94:63:ab:84:1a:d2:f8:
5e:7f:78:57:98:73:a1:16:9f:d9:e8:1a:6f:0a:fb:d1:8a:39:
17:0c:6d:2b:0d:98:b1:84:00:3f:9e:45:c4:c4:98:ae:63:08:
4a:53:c8:dd:68:1e:01:d5:77:26:84:c2:2d:d6:7e:36:46:9f:
62:83:33:0b:a7:2c:10:87:21:6e:8c:ec:45:58:67:2a:84:dd:
82:f3:38:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:51 2023 by rpki-client on console-fra.rpki-client.org