Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/91C0D036D27C11EC8ED6C34EC4F9AE02.roa
File: 91C0D036D27C11EC8ED6C34EC4F9AE02.roa (raw, json)
Hash identifier: OVDtKiP3/fAAyyEJC5GbzMB4hDzkD28N5HqThwLqTbo=
Subject key identifier: 19:21:1E:B6:CA:39:28:CF:62:70:64:18:C5:42:A0:E0:36:C8:92:07
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 554A
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/91C0D036D27C11EC8ED6C34EC4F9AE02.roa
Signing time: Mon 16 May 2022 16:31:52 +0000
ROA not before: Mon 16 May 2022 16:31:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 140125
IP address blocks: 103.82.48.0/22 maxlen: 24
103.114.64.0/24 maxlen: 24
103.114.65.0/24 maxlen: 24
103.114.66.0/24 maxlen: 24
103.114.67.0/24 maxlen: 24
103.163.14.0/23 maxlen: 24
103.167.212.0/23 maxlen: 24
103.167.224.0/23 maxlen: 24
103.168.0.0/23 maxlen: 24
103.168.32.0/23 maxlen: 24
103.168.60.0/23 maxlen: 24
103.170.36.0/23 maxlen: 24
103.170.38.0/23 maxlen: 24
103.170.148.0/23 maxlen: 24
103.171.108.0/23 maxlen: 24
103.171.110.0/23 maxlen: 24
103.171.174.0/23 maxlen: 24
103.173.14.0/23 maxlen: 24
103.173.98.0/23 maxlen: 24
103.177.226.0/23 maxlen: 24
103.178.166.0/23 maxlen: 24
103.178.202.0/23 maxlen: 24
103.179.94.0/23 maxlen: 24
103.179.96.0/23 maxlen: 24
103.179.100.0/23 maxlen: 24
103.179.118.0/23 maxlen: 24
103.179.120.0/23 maxlen: 24
103.179.224.0/23 maxlen: 24
103.179.226.0/23 maxlen: 24
103.180.110.0/23 maxlen: 24
103.180.168.0/23 maxlen: 24
103.180.172.0/23 maxlen: 24
103.180.174.0/23 maxlen: 24
103.180.176.0/23 maxlen: 24
103.180.212.0/23 maxlen: 24
103.180.214.0/23 maxlen: 24
103.180.236.0/23 maxlen: 24
103.180.238.0/23 maxlen: 24
103.181.64.0/23 maxlen: 24
103.181.84.0/23 maxlen: 24
103.181.86.0/23 maxlen: 24
103.181.110.0/23 maxlen: 24
103.181.114.0/23 maxlen: 24
103.181.150.0/23 maxlen: 24
103.181.152.0/23 maxlen: 24
103.181.154.0/23 maxlen: 24
103.181.174.0/23 maxlen: 24
103.181.198.0/23 maxlen: 24
103.182.58.0/23 maxlen: 24
103.183.216.0/23 maxlen: 24
103.187.92.0/23 maxlen: 24
103.194.118.0/24 maxlen: 24
103.212.134.0/24 maxlen: 24
103.229.208.0/23 maxlen: 24
103.252.40.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21834 (0x554a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: May 16 16:31:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=62827c77-ec66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:8d:fa:44:2e:e3:38:fc:2e:01:68:6e:6f:2c:
c1:0d:d2:c3:65:be:20:d1:1d:0a:53:0a:bb:7e:8c:
56:a8:f3:04:c8:57:29:80:34:30:af:fb:16:2f:ef:
5d:cf:2a:bb:a8:eb:a4:bf:e1:15:17:89:02:c8:0c:
2e:d0:ff:ab:3c:0b:68:f9:a4:e0:6a:49:81:23:6b:
9f:ed:ae:7d:41:20:f3:95:da:4d:f9:73:0b:80:2c:
e3:bf:7a:12:41:cb:be:45:72:48:e6:58:de:39:5d:
62:2a:8b:18:40:55:0f:b4:f9:43:18:b2:f9:10:e9:
df:c6:78:77:62:c1:4c:40:7c:45:41:72:bb:42:42:
3c:2c:1b:12:37:f4:68:fb:a3:ef:3a:3b:22:76:d1:
05:1c:9c:3e:f2:b5:5b:07:ad:1a:3c:cf:53:6b:c0:
ca:a1:14:30:50:bb:7a:62:1c:40:39:a7:c7:11:9d:
61:77:23:e6:94:78:b0:61:7a:8f:b9:a3:a6:9c:cb:
88:62:26:3a:1c:1f:e7:1f:ee:a0:f0:a3:15:07:7c:
cc:d3:61:ea:2b:f2:3c:ec:07:e0:22:0f:53:84:97:
5c:d0:34:0d:b8:3a:26:f3:32:bd:5f:e0:45:61:43:
11:1b:57:90:8a:44:2b:5b:80:06:2a:fd:08:06:fe:
00:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:21:1E:B6:CA:39:28:CF:62:70:64:18:C5:42:A0:E0:36:C8:92:07
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/91C0D036D27C11EC8ED6C34EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.82.48.0/22
103.114.64.0/22
103.163.14.0/23
103.167.212.0/23
103.167.224.0/23
103.168.0.0/23
103.168.32.0/23
103.168.60.0/23
103.170.36.0/22
103.170.148.0/23
103.171.108.0/22
103.171.174.0/23
103.173.14.0/23
103.173.98.0/23
103.177.226.0/23
103.178.166.0/23
103.178.202.0/23
103.179.94.0-103.179.97.255
103.179.100.0/23
103.179.118.0-103.179.121.255
103.179.224.0/22
103.180.110.0/23
103.180.168.0/23
103.180.172.0-103.180.177.255
103.180.212.0/22
103.180.236.0/22
103.181.64.0/23
103.181.84.0/22
103.181.110.0/23
103.181.114.0/23
103.181.150.0-103.181.155.255
103.181.174.0/23
103.181.198.0/23
103.182.58.0/23
103.183.216.0/23
103.187.92.0/23
103.194.118.0/24
103.212.134.0/24
103.229.208.0/23
103.252.40.0/22
Signature Algorithm: sha256WithRSAEncryption
27:0b:1b:56:d9:7e:79:e9:b0:78:f1:23:ce:d1:66:3a:7b:70:
2a:d8:8d:89:75:fa:76:43:e3:77:74:0c:8d:72:d0:71:ea:78:
51:bd:aa:6e:fd:47:0c:d4:f5:e9:b1:3e:fa:53:fa:af:50:07:
75:4a:ce:25:31:68:34:f6:d4:3d:a6:46:94:70:d1:fb:d7:b5:
ff:d4:4e:0b:4b:b6:85:52:d2:47:15:7c:b5:ae:eb:71:25:96:
91:af:d8:17:de:ef:b9:c8:b0:a8:bd:1a:bb:7d:79:f5:eb:3c:
49:af:fe:0f:40:0c:3d:a2:95:a9:29:25:a8:63:72:98:ca:27:
7b:30:ea:b7:bb:b4:ab:33:f9:21:96:6a:88:98:a8:3c:4b:e6:
50:6d:2a:78:4f:3c:a0:9c:aa:5d:7e:d1:0a:fa:18:8e:45:89:
6c:66:da:0b:12:9c:6f:38:3b:a7:d2:12:55:a2:f2:7e:12:4d:
b4:62:be:62:d6:98:46:63:5c:b9:bc:46:60:d4:05:79:4d:c3:
51:f6:0a:9e:ec:f1:ca:ed:05:1b:6e:f3:7b:24:a6:25:6a:bf:
76:0f:45:a5:9f:d2:b6:68:a4:74:80:b2:f6:d8:b0:e9:0a:86:
a2:f6:4e:87:3f:2a:de:d1:ad:76:5f:37:ed:e7:b3:95:75:49:
50:c9:4a:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:53 2023 by rpki-client on console-ams.rpki-client.org