Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/83B0ABD460D311EDA6465F0CC4F9AE02.roa
File: 83B0ABD460D311EDA6465F0CC4F9AE02.roa (raw, json)
Hash identifier: jigXGofstviu0alsXay1funD0vIqW5pxsSQWk27uA0E=
Subject key identifier: E5:2B:06:22:F5:C1:3A:19:B7:C5:65:3F:72:8C:8F:88:A4:6A:5B:29
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 5FF4
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/83B0ABD460D311EDA6465F0CC4F9AE02.roa
Signing time: Thu 10 Nov 2022 08:41:48 +0000
ROA not before: Thu 10 Nov 2022 08:41:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 45804
IP address blocks: 43.239.80.0/22 maxlen: 24
43.251.168.0/22 maxlen: 24
43.251.172.0/22 maxlen: 24
43.251.176.0/22 maxlen: 24
45.116.188.0/22 maxlen: 24
45.123.216.0/22 maxlen: 24
45.248.56.0/22 maxlen: 24
103.27.140.0/22 maxlen: 24
103.56.236.0/22 maxlen: 24
103.59.88.0/24 maxlen: 24
103.60.219.0/24 maxlen: 24
103.76.80.0/22 maxlen: 24
103.93.100.0/22 maxlen: 24
103.192.60.0/22 maxlen: 24
103.193.88.0/22 maxlen: 24
103.205.163.0/24 maxlen: 24
103.216.204.0/22 maxlen: 24
103.234.93.0/24 maxlen: 24
103.244.240.0/22 maxlen: 24
103.244.244.0/24 maxlen: 24
103.245.2.0/24 maxlen: 24
103.245.20.0/24 maxlen: 24
103.251.80.0/22 maxlen: 24
114.29.224.0/22 maxlen: 24
139.5.140.0/24 maxlen: 24
139.5.141.0/24 maxlen: 24
139.5.142.0/24 maxlen: 24
139.5.143.0/24 maxlen: 24
150.129.108.0/22 maxlen: 24
150.129.132.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24564 (0x5ff4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Nov 10 08:41:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=636cb94c-eb44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c7:e5:bf:77:1d:23:a9:d8:03:60:14:ae:ec:
85:0d:bb:21:fc:3d:9c:b6:25:9c:e4:cf:5c:81:49:
e4:43:fe:09:2e:82:a3:d5:59:f0:0f:8e:4a:07:91:
1c:94:c9:f1:20:fe:dd:c4:83:83:e2:71:71:33:c2:
bb:82:28:45:e2:f6:bd:7b:ec:1c:d0:84:91:f0:14:
4f:17:c9:80:69:38:37:12:8f:7b:04:ef:75:07:52:
51:7c:00:81:04:a8:8b:a3:0a:19:87:7a:d8:4f:0c:
58:63:83:51:ef:38:41:36:58:6a:e3:5a:70:54:dc:
2e:67:6e:34:e3:93:6d:ba:00:e9:bb:6c:a2:07:0a:
f3:05:4b:7c:44:b6:e4:c9:ba:a8:e4:26:e0:01:e7:
cc:34:3c:10:ce:5f:fc:d4:09:d9:7a:e7:c7:24:21:
22:e9:df:10:2c:38:f7:95:65:b5:90:f4:9c:15:1b:
54:04:57:8c:e4:84:0f:30:58:7d:96:ac:b2:84:f9:
e7:ee:1d:b6:9b:69:4e:e0:07:f8:be:0e:32:88:ad:
78:ed:79:07:55:6c:5b:6a:08:a8:0c:b8:d4:43:9c:
69:00:aa:51:90:bb:b3:94:2a:41:c0:cf:7b:f3:da:
ab:28:54:1f:8b:3c:94:4f:bb:5e:5c:3d:f1:d9:66:
38:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:2B:06:22:F5:C1:3A:19:B7:C5:65:3F:72:8C:8F:88:A4:6A:5B:29
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/83B0ABD460D311EDA6465F0CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.80.0/22
43.251.168.0-43.251.179.255
45.116.188.0/22
45.123.216.0/22
45.248.56.0/22
103.27.140.0/22
103.56.236.0/22
103.59.88.0/24
103.60.219.0/24
103.76.80.0/22
103.93.100.0/22
103.192.60.0/22
103.193.88.0/22
103.205.163.0/24
103.216.204.0/22
103.234.93.0/24
103.244.240.0-103.244.244.255
103.245.2.0/24
103.245.20.0/24
103.251.80.0/22
114.29.224.0/22
139.5.140.0/22
150.129.108.0/22
150.129.132.0/22
Signature Algorithm: sha256WithRSAEncryption
02:a3:3c:00:61:cb:f4:f7:63:69:4e:9e:49:68:4e:cf:55:8b:
d9:7c:54:a9:ab:cc:d8:24:a8:0c:d3:e6:32:ca:07:96:07:37:
8b:48:5f:63:c3:48:e5:c9:3c:6e:72:58:46:53:e1:98:90:67:
19:11:47:a3:cc:43:c9:8a:54:6c:fe:5d:12:36:7e:83:54:ed:
a7:23:22:47:f5:73:34:a5:50:3d:1a:6f:c2:e2:83:3e:d3:01:
95:4a:4e:d3:d4:ad:36:1b:18:29:b0:48:c4:73:77:ae:e9:0f:
f9:80:79:03:66:23:61:fb:bf:a4:5d:fe:32:82:52:a6:e3:84:
1f:a8:a2:08:0d:f5:1e:11:b9:4a:49:1b:7f:82:f1:4c:1d:d4:
3c:ba:2d:74:e0:6b:5f:bc:d3:46:ad:91:d3:1c:c6:aa:06:5d:
e3:b8:d9:14:76:17:64:4b:42:f3:e5:ee:f6:5b:7f:42:00:1f:
9e:8d:32:94:c5:57:94:d2:14:44:2e:d3:ab:e6:5d:aa:9c:8b:
20:ae:29:ad:51:79:88:21:b2:b7:8b:e7:75:7d:82:ff:49:ca:
73:fa:b4:da:16:78:b4:c5:db:31:22:36:ff:4d:f8:52:99:1a:
a0:e5:b7:ef:00:bf:df:99:d6:b9:ee:e5:8d:da:08:19:fb:02:
85:64:b3:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:56 2023 by rpki-client on console-fra.rpki-client.org