Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6AF1B112276F11EDAE9C8A57C4F9AE02.roa
File: 6AF1B112276F11EDAE9C8A57C4F9AE02.roa (raw, json)
Hash identifier: ivud4P63i1NN4TvzHqfkZbaKGl6K4Xv26I8umLqGoGw=
Subject key identifier: 53:1A:A1:1D:A1:11:17:7A:8B:80:24:0B:9C:14:1A:54:2D:F0:10:BD
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 5C3C
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6AF1B112276F11EDAE9C8A57C4F9AE02.roa
Signing time: Mon 29 Aug 2022 07:51:41 +0000
ROA not before: Mon 29 Aug 2022 07:51:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 140125
IP address blocks: 103.167.224.0/23 maxlen: 24
103.167.238.0/23 maxlen: 23
103.167.239.0/24 maxlen: 24
103.168.0.0/23 maxlen: 24
103.168.23.0/24 maxlen: 24
103.168.32.0/23 maxlen: 24
103.170.36.0/23 maxlen: 24
103.171.110.0/23 maxlen: 24
103.171.174.0/23 maxlen: 24
103.173.14.0/23 maxlen: 24
103.173.98.0/23 maxlen: 24
103.177.226.0/23 maxlen: 23
103.177.227.0/24 maxlen: 24
103.179.94.0/23 maxlen: 24
103.179.96.0/23 maxlen: 24
103.179.100.0/23 maxlen: 24
103.179.118.0/23 maxlen: 24
103.179.121.0/24 maxlen: 24
103.179.224.0/23 maxlen: 24
103.179.226.0/23 maxlen: 24
103.180.110.0/23 maxlen: 24
103.180.168.0/23 maxlen: 24
103.180.172.0/23 maxlen: 24
103.180.174.0/23 maxlen: 24
103.180.176.0/23 maxlen: 24
103.180.212.0/23 maxlen: 24
103.180.214.0/23 maxlen: 24
103.180.238.0/23 maxlen: 24
103.181.64.0/23 maxlen: 24
103.181.84.0/23 maxlen: 23
103.181.85.0/24 maxlen: 24
103.181.110.0/23 maxlen: 24
103.181.114.0/23 maxlen: 24
103.181.152.0/23 maxlen: 24
103.181.154.0/23 maxlen: 24
103.181.174.0/23 maxlen: 24
103.181.198.0/23 maxlen: 24
103.182.58.0/23 maxlen: 24
103.183.216.0/23 maxlen: 24
103.189.82.0/23 maxlen: 24
103.229.209.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23612 (0x5c3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Aug 29 07:51:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=630c700d-97a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:08:84:a1:af:b2:2e:f5:b3:4a:a6:82:ec:4d:
ba:e9:8e:a0:e8:1d:0e:40:35:1f:ff:a6:4b:6f:d0:
f6:83:8c:e9:60:d5:95:a0:99:76:04:77:6d:47:b9:
f1:33:38:38:96:a2:be:cb:03:cb:ef:49:68:e8:34:
fd:6d:ae:b2:ee:4b:ff:45:6b:8a:aa:59:fb:05:07:
28:8f:d7:04:06:16:e4:92:c4:ed:d2:cc:a6:77:18:
a2:a2:94:04:cf:8a:42:c9:15:64:e7:14:fd:9f:8f:
72:e6:f0:52:ae:ee:10:ee:80:80:8c:90:14:72:61:
d6:c4:47:e1:b2:f6:ef:d3:74:13:f3:56:52:e2:91:
1e:1d:6f:25:3b:ee:ab:29:5e:1e:43:41:cb:1a:e5:
0a:e1:f5:34:f7:de:a6:e7:0e:98:de:39:62:04:22:
a5:84:7a:a8:a6:82:52:4d:8b:b8:7c:58:65:e6:6f:
a8:36:88:58:cc:46:ed:ca:ee:eb:06:2b:d5:9a:7d:
f6:8d:c2:27:8d:f9:27:c0:9a:7a:57:c6:c3:7c:60:
01:71:98:e3:6e:ea:dc:f7:86:d6:11:a4:f7:78:56:
ed:ad:47:e6:e0:78:3d:1c:f3:7d:c7:b2:25:59:b1:
08:a8:5d:72:fe:c2:ed:fe:a6:71:d9:86:fc:4c:6b:
ca:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:1A:A1:1D:A1:11:17:7A:8B:80:24:0B:9C:14:1A:54:2D:F0:10:BD
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6AF1B112276F11EDAE9C8A57C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.167.224.0/23
103.167.238.0/23
103.168.0.0/23
103.168.23.0/24
103.168.32.0/23
103.170.36.0/23
103.171.110.0/23
103.171.174.0/23
103.173.14.0/23
103.173.98.0/23
103.177.226.0/23
103.179.94.0-103.179.97.255
103.179.100.0/23
103.179.118.0/23
103.179.121.0/24
103.179.224.0/22
103.180.110.0/23
103.180.168.0/23
103.180.172.0-103.180.177.255
103.180.212.0/22
103.180.238.0/23
103.181.64.0/23
103.181.84.0/23
103.181.110.0/23
103.181.114.0/23
103.181.152.0/22
103.181.174.0/23
103.181.198.0/23
103.182.58.0/23
103.183.216.0/23
103.189.82.0/23
103.229.209.0/24
Signature Algorithm: sha256WithRSAEncryption
82:03:1b:23:79:20:40:37:63:a8:cb:20:b4:18:6e:ae:f4:07:
0d:dc:89:20:91:ab:99:9c:85:5e:bd:40:f5:1b:52:50:3b:0d:
85:48:eb:76:fc:49:98:6a:ba:8a:dc:e2:f9:7a:37:ec:c5:c1:
ab:2e:0e:27:72:28:60:20:d1:77:0e:13:db:b0:3d:84:f0:91:
80:62:8e:ef:73:31:11:00:cb:da:bf:28:3d:82:60:f6:e3:80:
1a:ff:34:42:60:b3:55:26:ad:e8:96:e8:62:75:d1:0a:94:21:
79:e9:7b:f0:99:dc:f4:ba:88:3c:10:eb:4b:7f:6c:29:5a:d6:
a6:3d:fc:f1:ef:5a:bd:f6:b9:32:cd:a9:f0:91:11:e8:4f:0c:
dd:ed:6e:da:68:c7:42:16:50:47:5d:6c:06:67:18:cd:8d:28:
2a:3c:01:c5:b7:d8:d8:2f:2d:15:06:2d:0f:fd:76:d1:b6:73:
c2:1b:b0:f6:38:3b:70:b2:f8:97:94:9f:1e:6d:1c:4c:ae:e6:
a2:7c:1f:0d:bd:13:3b:8b:63:b1:1a:97:2f:91:ea:c3:4e:66:
69:12:96:54:57:1b:c6:be:de:ce:29:32:f3:b0:0b:bb:41:06:
1e:35:e2:a5:78:4e:fc:ec:a4:40:43:b9:88:9c:27:96:25:e9:
12:48:54:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:52 2023 by rpki-client on console-ams.rpki-client.org