Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4D4281C4AEA011ED97EFC938C4F9AE02.roa
File: 4D4281C4AEA011ED97EFC938C4F9AE02.roa (raw, json)
Hash identifier: 08CVAOoKIrCN85E1n85u3nZ5v44uj7kXqd4Xz/eBiuk=
Subject key identifier: CB:B2:AF:EC:B0:2C:EC:07:39:20:CB:CB:EF:2B:DA:A4:98:67:C2:5A
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 650E
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4D4281C4AEA011ED97EFC938C4F9AE02.roa
Signing time: Fri 17 Feb 2023 08:51:43 +0000
ROA not before: Fri 17 Feb 2023 08:51:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 23860
IP address blocks: 43.252.248.0/22 maxlen: 24
45.64.220.0/22 maxlen: 24
45.64.224.0/22 maxlen: 24
45.64.236.0/22 maxlen: 24
45.112.68.0/22 maxlen: 24
45.112.240.0/22 maxlen: 24
45.249.68.0/22 maxlen: 24
45.249.72.0/22 maxlen: 24
45.249.80.0/22 maxlen: 24
45.249.164.0/22 maxlen: 24
45.250.244.0/22 maxlen: 24
103.2.132.0/22 maxlen: 24
103.18.168.0/22 maxlen: 24
103.24.84.0/22 maxlen: 24
103.50.80.0/22 maxlen: 24
103.51.148.0/22 maxlen: 24
103.55.96.0/22 maxlen: 24
103.66.8.0/24 maxlen: 24
103.66.9.0/24 maxlen: 24
103.66.10.0/24 maxlen: 24
103.66.11.0/24 maxlen: 24
103.70.46.0/24 maxlen: 24
103.75.42.0/24 maxlen: 24
103.77.44.0/22 maxlen: 24
103.77.136.0/22 maxlen: 24
103.78.16.0/22 maxlen: 24
103.87.140.0/22 maxlen: 24
103.88.216.0/22 maxlen: 24
103.89.37.0/24 maxlen: 24
103.94.136.0/22 maxlen: 24
103.101.212.0/23 maxlen: 24
103.102.116.0/23 maxlen: 24
103.119.56.0/22 maxlen: 24
103.141.246.0/24 maxlen: 24
103.175.138.0/23 maxlen: 24
103.184.78.0/23 maxlen: 24
103.191.164.0/24 maxlen: 24
103.215.52.0/22 maxlen: 24
103.217.228.0/22 maxlen: 24
103.217.232.0/22 maxlen: 24
103.217.240.0/22 maxlen: 24
103.218.168.0/22 maxlen: 24
103.218.236.0/22 maxlen: 24
103.240.96.0/22 maxlen: 24
103.242.188.0/22 maxlen: 24
103.242.196.0/22 maxlen: 24
103.249.4.0/22 maxlen: 24
103.249.36.0/22 maxlen: 24
103.252.164.0/22 maxlen: 24
115.187.32.0/19 maxlen: 19
115.187.32.0/22 maxlen: 24
115.187.36.0/22 maxlen: 24
115.187.40.0/22 maxlen: 24
115.187.44.0/22 maxlen: 24
115.187.48.0/22 maxlen: 24
115.187.52.0/22 maxlen: 24
115.187.56.0/22 maxlen: 24
115.187.60.0/22 maxlen: 24
116.193.128.0/22 maxlen: 24
116.193.132.0/22 maxlen: 24
116.193.136.0/22 maxlen: 24
116.193.140.0/22 maxlen: 24
116.206.200.0/22 maxlen: 24
116.206.220.0/22 maxlen: 24
144.48.224.0/22 maxlen: 24
150.107.176.0/22 maxlen: 24
150.107.212.0/22 maxlen: 24
150.129.64.0/22 maxlen: 24
150.129.100.0/22 maxlen: 24
150.242.148.0/22 maxlen: 24
202.8.112.0/22 maxlen: 24
202.8.116.0/22 maxlen: 24
202.78.232.0/21 maxlen: 24
203.171.240.0/21 maxlen: 24
2407:cb00::/32 maxlen: 37
2407:cb00:800::/38 maxlen: 44
2407:cb00:c00::/38 maxlen: 44
2407:cb00:1000::/38 maxlen: 44
2407:cb00:1400::/38 maxlen: 44
2407:cb00:1800::/38 maxlen: 44
2407:cb00:1c00::/38 maxlen: 44
2407:cb00:2000::/38 maxlen: 44
2407:cb00:2400::/38 maxlen: 44
2407:cb00:2800::/38 maxlen: 44
2407:cb00:2c00::/38 maxlen: 44
2407:cb00:3000::/38 maxlen: 44
2407:cb00:a000::/38 maxlen: 38
2407:cb00:a000::/40 maxlen: 44
2407:cb00:a100::/40 maxlen: 44
2407:cb00:a200::/39 maxlen: 44
2407:cb00:a800::/38 maxlen: 44
2407:cb00:ac00::/38 maxlen: 44
2407:cb00:b000::/38 maxlen: 44
2407:cb00:b400::/38 maxlen: 44
2407:cb00:b800::/38 maxlen: 38
2407:cb00:bc00::/38 maxlen: 44
2407:cb00:c000::/38 maxlen: 44
2407:cb00:c400::/38 maxlen: 44
2407:cb00:d800::/38 maxlen: 44
2407:cb00:dc00::/38 maxlen: 38
2407:cb00:dc00::/40 maxlen: 40
2407:cb00:dc00::/44 maxlen: 44
2407:cb00:dc10::/44 maxlen: 44
2407:cb00:dc20::/43 maxlen: 44
2407:cb00:dc40::/44 maxlen: 44
2407:cb00:dc50::/44 maxlen: 44
2407:cb00:dc60::/44 maxlen: 44
2407:cb00:dc70::/44 maxlen: 44
2407:cb00:dc80::/44 maxlen: 44
2407:cb00:dc90::/44 maxlen: 44
2407:cb00:dca0::/44 maxlen: 44
2407:cb00:dcb0::/44 maxlen: 44
2407:cb00:dcc0::/44 maxlen: 44
2407:cb00:dcd0::/44 maxlen: 44
2407:cb00:dce0::/44 maxlen: 44
2407:cb00:dcf0::/44 maxlen: 44
2407:cb00:dd00::/40 maxlen: 40
2407:cb00:dd00::/44 maxlen: 44
2407:cb00:dd10::/44 maxlen: 44
2407:cb00:dd20::/44 maxlen: 44
2407:cb00:dd30::/44 maxlen: 44
2407:cb00:dd40::/44 maxlen: 44
2407:cb00:dd50::/44 maxlen: 44
2407:cb00:dd60::/44 maxlen: 44
2407:cb00:dd70::/44 maxlen: 44
2407:cb00:dd80::/44 maxlen: 44
2407:cb00:dd90::/44 maxlen: 44
2407:cb00:dda0::/44 maxlen: 44
2407:cb00:ddb0::/44 maxlen: 44
2407:cb00:ddc0::/44 maxlen: 44
2407:cb00:ddd0::/44 maxlen: 44
2407:cb00:dde0::/44 maxlen: 44
2407:cb00:ddf0::/44 maxlen: 44
2407:cb00:de00::/40 maxlen: 40
2407:cb00:de00::/44 maxlen: 44
2407:cb00:de10::/44 maxlen: 44
2407:cb00:de20::/44 maxlen: 44
2407:cb00:de30::/44 maxlen: 44
2407:cb00:de40::/44 maxlen: 44
2407:cb00:de50::/44 maxlen: 44
2407:cb00:de60::/44 maxlen: 44
2407:cb00:de70::/44 maxlen: 44
2407:cb00:de80::/44 maxlen: 44
2407:cb00:de90::/44 maxlen: 44
2407:cb00:dea0::/44 maxlen: 44
2407:cb00:deb0::/44 maxlen: 44
2407:cb00:dec0::/44 maxlen: 44
2407:cb00:ded0::/44 maxlen: 44
2407:cb00:dee0::/44 maxlen: 44
2407:cb00:def0::/44 maxlen: 44
2407:cb00:df00::/40 maxlen: 40
2407:cb00:df00::/44 maxlen: 44
2407:cb00:df10::/44 maxlen: 44
2407:cb00:df20::/44 maxlen: 44
2407:cb00:df30::/44 maxlen: 44
2407:cb00:df40::/44 maxlen: 44
2407:cb00:df50::/44 maxlen: 44
2407:cb00:df60::/44 maxlen: 44
2407:cb00:df70::/44 maxlen: 44
2407:cb00:df80::/44 maxlen: 44
2407:cb00:df90::/44 maxlen: 44
2407:cb00:dfa0::/44 maxlen: 44
2407:cb00:dfb0::/44 maxlen: 44
2407:cb00:dfc0::/44 maxlen: 44
2407:cb00:dfd0::/44 maxlen: 44
2407:cb00:dfe0::/44 maxlen: 44
2407:cb00:dff0::/44 maxlen: 44
2407:cb00:e000::/38 maxlen: 40
2407:cb00:e400::/38 maxlen: 44
2407:cb00:e800::/38 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25870 (0x650e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Feb 17 08:51:43 2023 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=63ef401f-0a46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:f7:48:6b:f8:30:52:fe:c8:2a:27:37:8b:91:
0c:ea:5f:82:1e:c9:a8:dd:84:41:47:f7:a4:e1:4f:
b8:b2:37:be:ec:5c:04:9c:b2:82:51:fa:ed:4d:c7:
af:ac:9e:39:35:2c:f5:86:fe:de:fb:97:1f:e3:47:
c4:c8:bd:4d:3d:a7:41:45:f4:f7:f9:c2:dc:f5:2f:
7f:ec:99:ec:e6:14:43:9c:8f:98:54:e2:4f:3f:d2:
d1:73:24:33:03:7f:f1:7b:72:a6:25:6e:40:dd:d9:
44:8f:2b:83:99:50:62:ad:d8:56:f4:13:20:39:05:
78:5d:bc:4e:46:3f:42:67:0f:fc:96:1b:45:b2:cb:
51:53:63:be:f3:7f:4e:86:8c:cd:54:84:e9:51:60:
3c:c2:78:80:59:57:f2:12:ab:06:7f:ea:54:bc:a4:
d8:19:3b:14:3b:c4:87:c2:87:9f:ef:f8:01:c7:9f:
27:b9:47:4f:a2:a2:7f:e7:6f:c3:18:ae:0e:b4:01:
69:39:a2:9f:89:16:9f:f5:9e:37:b9:11:8f:2d:a7:
4b:c4:d0:fd:4a:f3:8a:dd:e6:a0:5d:27:1f:02:76:
98:49:62:50:64:2c:b6:2e:45:f7:7a:cb:13:e3:7c:
56:59:5a:d3:67:b8:c2:44:c4:b2:86:89:a1:5b:3d:
37:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:B2:AF:EC:B0:2C:EC:07:39:20:CB:CB:EF:2B:DA:A4:98:67:C2:5A
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4D4281C4AEA011ED97EFC938C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.252.248.0/22
45.64.220.0-45.64.227.255
45.64.236.0/22
45.112.68.0/22
45.112.240.0/22
45.249.68.0-45.249.75.255
45.249.80.0/22
45.249.164.0/22
45.250.244.0/22
103.2.132.0/22
103.18.168.0/22
103.24.84.0/22
103.50.80.0/22
103.51.148.0/22
103.55.96.0/22
103.66.8.0/22
103.70.46.0/24
103.75.42.0/24
103.77.44.0/22
103.77.136.0/22
103.78.16.0/22
103.87.140.0/22
103.88.216.0/22
103.89.37.0/24
103.94.136.0/22
103.101.212.0/23
103.102.116.0/23
103.119.56.0/22
103.141.246.0/24
103.175.138.0/23
103.184.78.0/23
103.191.164.0/24
103.215.52.0/22
103.217.228.0-103.217.235.255
103.217.240.0/22
103.218.168.0/22
103.218.236.0/22
103.240.96.0/22
103.242.188.0/22
103.242.196.0/22
103.249.4.0/22
103.249.36.0/22
103.252.164.0/22
115.187.32.0/19
116.193.128.0/20
116.206.200.0/22
116.206.220.0/22
144.48.224.0/22
150.107.176.0/22
150.107.212.0/22
150.129.64.0/22
150.129.100.0/22
150.242.148.0/22
202.8.112.0/21
202.78.232.0/21
203.171.240.0/21
IPv6:
2407:cb00::/32
Signature Algorithm: sha256WithRSAEncryption
b4:40:b0:08:38:f9:1d:10:88:91:12:bf:c7:aa:2c:08:f2:64:
0b:d6:98:3f:4a:e7:52:6a:2c:ba:8c:c9:d4:39:e5:5f:8d:ed:
42:0b:b9:d8:da:96:cb:0d:b6:dd:80:47:f3:77:bf:d1:6e:0c:
b8:c5:e9:a0:c3:f9:e2:a9:81:bb:eb:5a:b3:e1:bc:23:d4:35:
75:d9:bd:7e:15:a1:01:97:fa:84:22:a1:9c:23:85:42:e9:a6:
5e:b3:36:81:7b:8a:d5:7e:3c:18:78:1c:5a:6e:7c:fc:e5:51:
01:1c:90:1e:fe:ff:39:01:f1:45:ae:b0:81:1f:00:07:58:9a:
c5:60:c2:a2:93:e5:a4:a9:00:9b:11:64:67:66:3e:95:63:68:
b3:ad:27:c9:5e:67:ea:15:e0:be:c4:ef:84:bc:05:f3:ba:02:
71:70:bd:fa:c8:8d:78:88:b7:c1:93:32:6f:15:d7:44:66:1a:
73:48:14:97:9a:ff:33:65:2f:34:76:68:75:e3:87:8c:f7:64:
99:78:75:3a:95:0b:1a:e8:c3:c3:b9:80:19:88:85:03:7a:3e:
70:95:80:66:4b:fb:b7:9a:29:a4:b2:8c:cc:3f:35:ce:a1:d5:
f2:4c:20:63:00:ba:d4:0f:83:d3:80:a0:4f:e0:8e:90:ef:b3:
20:14:7b:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:55 2023 by rpki-client on console-fra.rpki-client.org