Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/60F216A2420A11EC9A90145AC4F9AE02.roa
File: 60F216A2420A11EC9A90145AC4F9AE02.roa (raw, json)
Hash identifier: o534pS3bONnK26m1Z4VaEOy2QW03PDTasLVWEIF6ykY=
Subject key identifier: 9A:24:85:E8:95:66:B0:1E:53:57:68:F6:8B:DB:9A:9E:73:E0:33:7B
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 5FAD
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/60F216A2420A11EC9A90145AC4F9AE02.roa
Signing time: Fri 04 Nov 2022 05:01:40 +0000
ROA not before: Fri 04 Nov 2022 05:01:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 17439
IP address blocks: 45.251.76.0/22 maxlen: 24
103.19.52.0/22 maxlen: 24
103.35.164.0/23 maxlen: 23
103.48.50.0/23 maxlen: 23
103.48.50.0/24 maxlen: 24
103.48.51.0/24 maxlen: 24
103.55.244.0/22 maxlen: 24
103.96.95.0/24 maxlen: 24
103.117.117.0/24 maxlen: 24
103.129.97.0/24 maxlen: 24
103.143.38.0/24 maxlen: 24
103.165.78.0/23 maxlen: 24
103.170.114.0/24 maxlen: 24
103.171.44.0/23 maxlen: 24
103.174.54.0/23 maxlen: 23
103.175.22.0/24 maxlen: 24
103.175.23.0/24 maxlen: 24
103.175.163.0/24 maxlen: 24
103.181.20.0/23 maxlen: 24
103.214.114.0/24 maxlen: 24
103.214.115.0/24 maxlen: 24
103.214.122.0/23 maxlen: 24
103.218.124.0/24 maxlen: 24
103.218.125.0/24 maxlen: 24
103.218.126.0/24 maxlen: 24
103.218.127.0/24 maxlen: 24
103.225.99.0/24 maxlen: 24
103.235.104.0/22 maxlen: 22
103.239.136.0/22 maxlen: 24
103.247.96.0/22 maxlen: 24
202.66.172.0/22 maxlen: 24
203.112.136.0/21 maxlen: 24
203.112.144.0/21 maxlen: 24
2001:df0:3a00::/48 maxlen: 48
2001:df2:f980::/48 maxlen: 48
2407:e9c0::/48 maxlen: 48
2407:e9c0:1::/48 maxlen: 48
2407:e9c0:2::/48 maxlen: 48
2407:e9c0:5::/48 maxlen: 48
2407:e9c0:7::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24493 (0x5fad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Nov 4 05:01:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=63649cb4-2fe1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:48:42:7a:c7:fe:90:d2:1b:fb:50:9d:1c:26:
04:c9:4c:d7:b9:a8:ae:eb:07:76:00:60:41:5c:65:
15:f3:da:be:8c:69:5b:6e:da:0b:14:3f:ea:fe:e9:
55:2e:a3:9e:73:79:b8:fa:39:dc:2f:3c:1d:1b:53:
6a:6c:3c:33:75:88:78:47:43:2d:49:6a:89:4f:2a:
3a:f5:04:76:e6:66:a0:d3:e7:ce:79:c4:9e:6e:46:
47:4b:c8:f2:83:6a:88:52:58:01:eb:f7:61:f8:12:
78:85:3c:44:e3:12:3d:59:b9:cf:bb:b5:1b:b9:17:
4a:c2:9a:06:10:f5:bb:33:5d:79:8f:1d:9f:f6:bb:
80:cc:bd:95:f9:16:65:26:7e:5c:f8:f1:1a:ab:9b:
36:13:59:f8:19:d8:67:f2:2a:cd:da:7f:7a:8d:08:
13:61:94:19:02:c9:aa:99:12:84:96:9d:6c:c2:46:
28:77:4f:0c:3f:10:d7:ce:13:fb:27:3a:15:5e:8d:
58:a4:72:20:93:47:ed:01:96:ce:06:46:36:7e:95:
d5:f1:d0:ea:8b:12:7e:94:3b:68:57:3d:7b:b8:31:
dd:f9:22:cf:7e:ef:38:a9:25:b2:c7:54:f2:d5:65:
21:60:d6:fa:e7:72:c6:83:8e:e7:c0:6b:a0:cd:1a:
58:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:24:85:E8:95:66:B0:1E:53:57:68:F6:8B:DB:9A:9E:73:E0:33:7B
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/60F216A2420A11EC9A90145AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.251.76.0/22
103.19.52.0/22
103.35.164.0/23
103.48.50.0/23
103.55.244.0/22
103.96.95.0/24
103.117.117.0/24
103.129.97.0/24
103.143.38.0/24
103.165.78.0/23
103.170.114.0/24
103.171.44.0/23
103.174.54.0/23
103.175.22.0/23
103.175.163.0/24
103.181.20.0/23
103.214.114.0/23
103.214.122.0/23
103.218.124.0/22
103.225.99.0/24
103.235.104.0/22
103.239.136.0/22
103.247.96.0/22
202.66.172.0/22
203.112.136.0-203.112.151.255
IPv6:
2001:df0:3a00::/48
2001:df2:f980::/48
2407:e9c0::-2407:e9c0:2:ffff:ffff:ffff:ffff:ffff
2407:e9c0:5::/48
2407:e9c0:7::/48
Signature Algorithm: sha256WithRSAEncryption
b0:c7:fa:b1:b1:78:d4:a5:5d:80:a7:1a:35:43:39:cf:3d:12:
b2:a7:29:b2:fa:52:cc:0a:74:b7:ff:bb:20:0b:97:22:d4:28:
47:62:e5:88:37:d5:86:7e:17:2a:1e:ad:02:43:0a:c2:b5:02:
04:0d:8b:d5:bc:93:a1:0e:13:f2:b5:b9:a4:9d:cf:be:40:c6:
6a:c0:c2:57:b0:80:01:34:78:f1:f4:b5:4f:2d:65:cc:55:0f:
25:9f:cf:c7:87:95:dd:a8:28:c1:01:7a:ea:e7:9f:95:af:11:
48:22:bd:81:01:db:f2:6c:39:ef:e7:65:3a:66:ef:ef:a6:cb:
f5:c7:b4:c6:76:a0:6d:94:84:06:27:17:38:8d:d5:d5:63:2d:
1d:61:0b:5a:ba:6c:9f:13:2f:e0:a3:31:c2:e9:10:3b:19:d7:
1d:a5:9e:3f:87:28:0b:19:29:35:63:8b:ce:c9:ab:4b:dc:44:
e6:6b:5b:29:e1:7f:60:87:39:da:9b:90:11:9b:19:6e:34:8c:
64:41:86:00:30:ed:35:c6:72:c0:47:99:b7:72:d1:ec:a9:96:
57:78:4f:52:0e:0d:6b:ef:48:3e:e8:5f:8a:6a:2b:84:4d:1e:
05:94:02:b8:ef:2e:9c:68:3b:90:d1:fe:9d:92:b8:cd:fb:5c:
31:3b:77:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:52 2023 by rpki-client on console-ams.rpki-client.org