Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5DF013FAD73D11ECBD2F3B1EC4F9AE02.roa
File: 5DF013FAD73D11ECBD2F3B1EC4F9AE02.roa (raw, json)
Hash identifier: HyLzrMuTczMHriRVRWcINtIsnTeJAR1g/BLJich6O2o=
Subject key identifier: 48:53:38:D8:66:89:C0:0D:B4:76:91:F8:5E:F0:EE:FC:F9:A7:40:93
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 5592
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5DF013FAD73D11ECBD2F3B1EC4F9AE02.roa
Signing time: Thu 19 May 2022 06:31:51 +0000
ROA not before: Thu 19 May 2022 06:31:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 140125
IP address blocks: 103.82.48.0/22 maxlen: 24
103.114.67.0/24 maxlen: 24
103.163.14.0/23 maxlen: 24
103.167.212.0/23 maxlen: 24
103.167.224.0/23 maxlen: 24
103.168.0.0/23 maxlen: 24
103.168.32.0/23 maxlen: 24
103.168.60.0/23 maxlen: 24
103.170.36.0/23 maxlen: 24
103.170.38.0/23 maxlen: 24
103.170.148.0/23 maxlen: 24
103.171.108.0/23 maxlen: 24
103.171.110.0/23 maxlen: 24
103.171.174.0/23 maxlen: 24
103.173.14.0/23 maxlen: 24
103.173.98.0/23 maxlen: 24
103.177.226.0/23 maxlen: 24
103.178.166.0/23 maxlen: 24
103.178.202.0/23 maxlen: 24
103.179.94.0/23 maxlen: 24
103.179.96.0/23 maxlen: 24
103.179.100.0/23 maxlen: 24
103.179.118.0/23 maxlen: 24
103.179.120.0/23 maxlen: 24
103.179.224.0/23 maxlen: 24
103.179.226.0/23 maxlen: 24
103.180.110.0/23 maxlen: 24
103.180.168.0/23 maxlen: 24
103.180.172.0/23 maxlen: 24
103.180.174.0/23 maxlen: 24
103.180.176.0/23 maxlen: 24
103.180.212.0/23 maxlen: 24
103.180.214.0/23 maxlen: 24
103.180.236.0/23 maxlen: 24
103.180.238.0/23 maxlen: 24
103.181.64.0/23 maxlen: 24
103.181.84.0/23 maxlen: 24
103.181.86.0/23 maxlen: 24
103.181.110.0/23 maxlen: 24
103.181.114.0/23 maxlen: 24
103.181.150.0/23 maxlen: 24
103.181.152.0/23 maxlen: 24
103.181.154.0/23 maxlen: 24
103.181.174.0/23 maxlen: 24
103.181.198.0/23 maxlen: 24
103.182.58.0/23 maxlen: 24
103.183.216.0/23 maxlen: 24
103.187.92.0/23 maxlen: 24
103.194.118.0/24 maxlen: 24
103.212.134.0/24 maxlen: 24
103.229.208.0/23 maxlen: 24
103.252.40.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21906 (0x5592)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: May 19 06:31:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6285e457-42fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:8e:ce:21:56:b2:a5:41:05:8e:4d:e1:77:6b:
31:c5:0d:81:ea:1a:1e:37:a9:dd:d8:96:02:41:2f:
90:4a:ff:f2:06:41:8c:27:76:3a:e0:e1:41:6a:07:
6f:75:be:4a:c4:16:5c:c5:5d:64:7b:a6:1b:83:37:
25:3d:4c:d1:5b:d3:58:0f:bd:16:1a:a8:92:fc:96:
14:85:dd:5c:08:16:be:e4:bd:8c:11:54:8a:6f:c2:
d7:2a:41:2d:5c:e9:4a:d2:7a:3f:7e:7f:6d:3d:06:
af:d3:d5:ed:33:45:08:56:ca:9e:b3:93:79:5e:35:
9f:9b:47:d6:cf:47:c3:35:2d:01:bc:a1:ae:f8:68:
0e:79:3e:d9:08:13:f3:af:51:ed:eb:17:dc:17:f0:
d6:3f:f8:d4:29:e4:1a:eb:3e:37:5c:74:ca:65:16:
dc:ac:de:27:bc:d4:0c:54:81:0f:b1:27:fe:40:2b:
21:9c:c3:b9:d1:b6:5e:5f:65:33:95:a2:a6:af:18:
9c:79:ba:e2:3d:db:9e:e4:17:61:09:70:10:a2:71:
c7:11:c8:2c:c9:ca:5e:5d:49:a2:ff:de:ac:11:bc:
c7:d2:cc:ff:cf:f0:ec:35:98:24:06:ab:57:be:1a:
9b:7d:82:15:ee:d5:b4:7b:3b:fa:66:a5:df:fd:d4:
ee:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:53:38:D8:66:89:C0:0D:B4:76:91:F8:5E:F0:EE:FC:F9:A7:40:93
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5DF013FAD73D11ECBD2F3B1EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.82.48.0/22
103.114.67.0/24
103.163.14.0/23
103.167.212.0/23
103.167.224.0/23
103.168.0.0/23
103.168.32.0/23
103.168.60.0/23
103.170.36.0/22
103.170.148.0/23
103.171.108.0/22
103.171.174.0/23
103.173.14.0/23
103.173.98.0/23
103.177.226.0/23
103.178.166.0/23
103.178.202.0/23
103.179.94.0-103.179.97.255
103.179.100.0/23
103.179.118.0-103.179.121.255
103.179.224.0/22
103.180.110.0/23
103.180.168.0/23
103.180.172.0-103.180.177.255
103.180.212.0/22
103.180.236.0/22
103.181.64.0/23
103.181.84.0/22
103.181.110.0/23
103.181.114.0/23
103.181.150.0-103.181.155.255
103.181.174.0/23
103.181.198.0/23
103.182.58.0/23
103.183.216.0/23
103.187.92.0/23
103.194.118.0/24
103.212.134.0/24
103.229.208.0/23
103.252.40.0/22
Signature Algorithm: sha256WithRSAEncryption
b0:3f:09:76:33:07:92:bf:56:91:33:f1:22:7e:ff:cf:99:11:
df:2f:4c:87:f8:d1:a8:b9:6c:bb:20:d1:df:4c:1e:05:79:bf:
82:8f:11:93:a6:17:be:29:b7:ae:81:6a:6b:cb:d4:04:ac:6a:
f2:f8:fe:bd:d9:2b:2c:4e:21:c2:c4:92:01:30:16:c8:f0:e4:
0e:fa:96:9c:51:98:d0:ef:46:97:87:ea:b1:c8:7b:67:91:33:
42:d9:65:0f:5b:83:70:64:e6:2e:db:68:cc:52:4f:f2:eb:4c:
91:be:23:51:9c:34:08:09:01:50:54:b7:08:2f:49:1e:c6:ff:
99:2d:00:ad:e5:be:06:9a:da:47:77:42:82:ea:e7:b0:08:1c:
11:ea:bc:84:4e:9e:e0:1c:e3:56:9d:11:86:71:56:0c:30:1a:
cb:d2:8e:09:90:d5:57:78:61:57:c8:a4:13:85:64:98:39:e3:
b7:1b:72:43:cc:2d:36:78:7c:5e:d9:92:b6:12:78:c8:dc:5c:
ec:31:6a:0e:63:44:64:ff:01:59:14:36:15:75:ad:e0:cf:0f:
d8:22:55:b5:49:47:40:ac:29:8a:1f:54:09:1b:a7:bc:a0:41:
78:d7:c3:2b:88:62:d2:a7:23:5a:67:7a:fd:5e:2b:ed:24:5e:
4d:92:0c:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:52 2023 by rpki-client on console-ams.rpki-client.org