Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/25AD3A40AD2011EDB610D613C4F9AE02.roa
File: 25AD3A40AD2011EDB610D613C4F9AE02.roa (raw, json)
Hash identifier: JpX3tWMnJWJ+SCryg6Krv99ax8kMs180eZh6tXXprwE=
Subject key identifier: 98:7F:B9:07:87:31:99:00:F2:92:E7:A6:71:47:77:94:DB:EA:7C:C1
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 64F7
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/25AD3A40AD2011EDB610D613C4F9AE02.roa
Signing time: Wed 15 Feb 2023 11:01:50 +0000
ROA not before: Wed 15 Feb 2023 11:01:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 17754
IP address blocks: 103.48.68.0/23 maxlen: 24
103.48.71.0/24 maxlen: 24
103.55.213.0/24 maxlen: 24
103.105.102.0/24 maxlen: 24
113.11.224.0/22 maxlen: 24
113.11.228.0/22 maxlen: 24
175.101.0.0/16 maxlen: 24
202.133.55.0/24 maxlen: 24
202.133.56.0/24 maxlen: 24
202.133.57.0/24 maxlen: 24
202.133.58.0/24 maxlen: 24
202.133.59.0/24 maxlen: 24
202.133.60.0/24 maxlen: 24
202.133.61.0/24 maxlen: 24
202.133.62.0/24 maxlen: 24
202.133.63.0/24 maxlen: 24
202.153.32.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25847 (0x64f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Feb 15 11:01:50 2023 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=63ecbb9e-3607
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:11:36:c0:f1:11:5f:23:76:a2:03:2c:e7:44:
0a:a7:f4:dc:05:c4:6d:35:37:80:9d:20:cc:63:94:
56:37:9a:fd:a1:58:03:3d:1b:30:74:8f:49:21:88:
7e:fa:3b:90:5f:b8:33:06:36:de:a3:d0:7c:7f:fb:
92:4e:36:fb:06:65:07:aa:cb:4c:f1:39:38:7b:74:
d6:53:35:ee:a8:8b:22:a5:ef:f6:77:75:5e:31:67:
76:67:2b:ad:a3:72:bd:83:42:e1:45:19:a9:5f:2b:
f6:a6:aa:7e:0f:fb:69:a0:4d:2b:fc:af:35:cf:4b:
16:88:0a:9c:aa:6d:d3:cb:08:b3:83:f9:3f:d7:26:
b3:bf:f0:8a:6b:a5:ef:89:b3:e9:b1:c8:4a:65:f4:
0f:73:1a:4a:6a:55:cf:e2:00:93:f7:5e:5a:10:d2:
0a:af:d5:b5:95:d1:19:28:e5:f2:5c:2c:d4:08:50:
2d:c3:c9:e1:0c:fe:e8:86:68:4c:54:69:6c:3d:92:
a0:45:9a:9f:35:9e:ec:d7:7b:42:4d:7d:49:0e:d0:
ca:1b:56:c3:05:24:22:3f:f3:2a:a4:5c:d3:25:13:
ec:5b:73:3c:97:c5:ab:ee:19:62:98:91:22:3a:ec:
0e:ab:18:b4:ec:72:3d:7c:89:04:c5:d2:90:0b:06:
27:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:7F:B9:07:87:31:99:00:F2:92:E7:A6:71:47:77:94:DB:EA:7C:C1
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/25AD3A40AD2011EDB610D613C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.48.68.0/23
103.48.71.0/24
103.55.213.0/24
103.105.102.0/24
113.11.224.0/21
175.101.0.0/16
202.133.55.0-202.133.63.255
202.153.32.0/20
Signature Algorithm: sha256WithRSAEncryption
40:e1:15:22:5d:d6:3d:62:a2:5f:f8:ba:e7:8f:5c:8f:8f:d9:
b9:f5:74:43:f6:f2:04:52:69:db:40:e5:43:60:2e:cd:04:75:
91:0d:d6:1a:71:6f:1f:d2:3c:18:c0:4d:7d:88:e2:74:c4:f4:
9a:b8:09:c0:cc:87:ca:e6:fa:7c:60:14:4a:10:6a:b4:e3:24:
38:ba:c8:85:53:cc:b5:9f:0f:a0:56:79:9c:5a:a7:42:8f:17:
68:6a:5e:bf:ce:9d:d2:fd:77:02:0a:a6:bf:7b:44:cf:22:a6:
08:67:44:81:42:20:4b:7b:c0:d7:8f:fb:c6:35:47:0a:8f:85:
97:c8:a9:0a:43:b6:ce:26:be:16:6e:40:f1:95:c7:66:cb:27:
11:3a:e7:7c:d0:6e:ba:41:13:5c:5e:96:ad:6d:7e:7c:56:96:
cf:10:ea:e9:b5:f0:77:bd:1f:a6:0e:3f:bc:48:6d:d5:58:0b:
2d:3b:ed:c6:34:88:43:e4:61:16:b9:96:47:f0:d2:cc:c2:48:
ea:5c:c7:84:62:ad:5c:2d:27:f7:fa:4a:1a:42:56:65:be:79:
ed:43:0a:1b:92:0c:05:75:8a:05:ab:f4:6f:ca:0e:44:81:6b:
f6:c9:f9:82:01:e3:00:7f:94:78:8a:75:4c:8c:95:28:6b:ff:
15:47:65:f9
-----BEGIN CERTIFICATE-----
MIIFojCCBIqgAwIBAgICZPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz
RTNBQkM4MjMwHhcNMjMwMjE1MTEwMTUwWhcNMjMwNzAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02M2VjYmI5ZS0zNjA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA1hE2wPERXyN2ogMs50QKp/TcBcRtNTeAnSDMY5RWN5r9oVgDPRswdI9JIYh+
+juQX7gzBjbeo9B8f/uSTjb7BmUHqstM8Tk4e3TWUzXuqIsipe/2d3VeMWd2Zyut
o3K9g0LhRRmpXyv2pqp+D/tpoE0r/K81z0sWiAqcqm3Tywizg/k/1yazv/CKa6Xv
ibPpschKZfQPcxpKalXP4gCT915aENIKr9W1ldEZKOXyXCzUCFAtw8nhDP7ohmhM
VGlsPZKgRZqfNZ7s13tCTX1JDtDKG1bDBSQiP/MqpFzTJRPsW3M8l8Wr7hlimJEi
OuwOqxi07HI9fIkExdKQCwYn6QIDAQABo4ICxjCCAsIwHQYDVR0OBBYEFJh/uQeH
MZkA8pLnpnFHd5Tb6nzBMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw
RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5
Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMjVBRDNBNDBB
RDIwMTFFREI2MTBENjEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUAYIKwYBBQUHAQcBAf8E
QTA/MD0EAgABMDcDBAFnMEQDBABnMEcDBABnN9UDBABnaWYDBANxC+ADAwCvZTAM
AwQAyoU3AwQGyoUAAwQEypkgMA0GCSqGSIb3DQEBCwUAA4IBAQBA4RUiXdY9YqJf
+Lrnj1yPj9m59XRD9vIEUmnbQOVDYC7NBHWRDdYacW8f0jwYwE19iOJ0xPSauAnA
zIfK5vp8YBRKEGq04yQ4usiFU8y1nw+gVnmcWqdCjxdoal6/zp3S/XcCCqa/e0TP
IqYIZ0SBQiBLe8DXj/vGNUcKj4WXyKkKQ7bOJr4WbkDxlcdmyycROud80G66QRNc
XpatbX58VpbPEOrptfB3vR+mDj+8SG3VWAstO+3GNIhD5GEWuZZH8NLMwkjqXMeE
Yq1cLSf3+koaQlZlvnntQwobkgwFdYoFq/Rvyg5EgWv2yfmCAeMAf5R4inVMjJUo
a/8VR2X5
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:48 2023 by rpki-client on console-ams.rpki-client.org