Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A4A411BA4A2511EDADA77743C4F9AE02.roa
File: A4A411BA4A2511EDADA77743C4F9AE02.roa (raw, json)
Hash identifier: 5/PvqDwYiAtkqEdu14l3l7pXl+cEgSrUc/idMK3jDjA=
Subject key identifier: 6A:B4:B1:83:55:22:C6:1D:42:20:3D:A0:9F:D4:E3:62:2D:95:0C:3C
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 5E86
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A4A411BA4A2511EDADA77743C4F9AE02.roa
Signing time: Wed 12 Oct 2022 12:01:46 +0000
ROA not before: Wed 12 Oct 2022 12:01:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9830
IP address blocks: 103.60.198.0/24 maxlen: 24
103.60.199.0/24 maxlen: 24
103.163.126.0/23 maxlen: 24
103.170.20.0/24 maxlen: 24
103.216.172.0/24 maxlen: 24
103.216.173.0/24 maxlen: 24
103.216.174.0/24 maxlen: 24
103.216.175.0/24 maxlen: 24
202.91.64.0/24 maxlen: 24
202.91.65.0/24 maxlen: 24
202.91.66.0/24 maxlen: 24
202.91.67.0/24 maxlen: 24
202.91.68.0/24 maxlen: 24
202.91.69.0/24 maxlen: 24
202.91.70.0/24 maxlen: 24
202.91.71.0/24 maxlen: 24
202.91.72.0/24 maxlen: 24
202.91.73.0/24 maxlen: 24
202.91.74.0/24 maxlen: 24
202.91.75.0/24 maxlen: 24
202.91.76.0/24 maxlen: 24
202.91.77.0/24 maxlen: 24
202.91.78.0/24 maxlen: 24
202.91.79.0/24 maxlen: 24
202.91.80.0/24 maxlen: 24
202.91.81.0/24 maxlen: 24
202.91.82.0/24 maxlen: 24
202.91.83.0/24 maxlen: 24
202.91.84.0/24 maxlen: 24
202.91.85.0/24 maxlen: 24
202.91.86.0/24 maxlen: 24
202.91.87.0/24 maxlen: 24
202.91.88.0/24 maxlen: 24
202.91.89.0/24 maxlen: 24
202.91.90.0/24 maxlen: 24
202.91.91.0/24 maxlen: 24
202.91.92.0/24 maxlen: 24
202.91.93.0/24 maxlen: 24
202.91.94.0/24 maxlen: 24
202.91.95.0/24 maxlen: 24
2001:df0:cf80::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24198 (0x5e86)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Oct 12 12:01:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6346aca9-54b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:22:0b:d8:2a:b8:07:a4:d2:b2:59:0b:71:4a:
7f:ed:4f:d9:ba:76:62:c2:42:c6:9d:87:f6:0f:08:
a0:20:ad:7e:78:af:c0:bc:df:22:a4:84:38:b5:ff:
e1:a6:08:72:da:7b:0e:fa:66:ca:c7:af:b3:31:ad:
c1:49:4b:60:81:cb:ae:a7:a0:3b:b0:15:48:65:e0:
40:ed:30:2e:76:fe:69:d1:46:27:7a:3c:69:9b:6f:
2e:31:37:45:25:e9:47:45:9a:c6:20:46:ca:40:23:
42:45:76:37:d8:85:3d:6b:76:ad:56:5e:fe:d0:44:
ac:65:05:eb:bb:1c:24:b8:13:4c:21:df:f0:eb:4a:
01:7a:4d:1b:4b:89:de:33:ac:ea:d6:28:a1:50:0c:
56:de:64:6b:2d:76:9d:8f:a4:35:0f:fb:2b:78:46:
96:05:3f:39:da:71:00:f6:63:92:82:a6:dc:4b:60:
aa:b2:3f:7b:da:d8:a8:ec:93:1d:2f:c4:4d:3f:92:
8e:9b:c1:37:bd:0d:39:e8:16:0c:f7:36:35:e6:30:
51:4c:b7:a1:4f:51:ea:d9:bb:39:99:29:6b:a9:8e:
92:19:da:c2:c9:e6:38:56:4f:00:59:35:b5:7f:78:
63:13:a7:c1:fe:59:d8:79:dc:15:9b:8b:ec:12:cb:
b1:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:B4:B1:83:55:22:C6:1D:42:20:3D:A0:9F:D4:E3:62:2D:95:0C:3C
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A4A411BA4A2511EDADA77743C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.60.198.0/23
103.163.126.0/23
103.170.20.0/24
103.216.172.0/22
202.91.64.0/19
IPv6:
2001:df0:cf80::/48
Signature Algorithm: sha256WithRSAEncryption
ae:54:c6:aa:ca:24:2a:e5:9e:41:40:e3:02:00:76:af:bb:5e:
5b:db:c6:83:b8:d4:df:3d:49:f6:75:d0:6d:18:a9:b6:c1:8a:
cd:46:61:27:2a:95:b9:aa:c6:28:60:c5:48:ca:20:a9:4e:c3:
6f:b5:15:cf:54:98:ba:3a:c9:b7:43:bd:c3:13:f4:f2:5c:15:
d6:65:a6:14:2a:c7:fb:7e:75:eb:e1:e0:19:d8:92:f1:06:e1:
69:b8:e1:c4:de:a8:57:53:1a:09:85:a1:dc:7c:2e:e4:32:1d:
c6:22:43:56:16:76:5d:02:16:85:07:0e:1c:7d:4d:fa:e8:42:
3b:9c:89:0e:ff:dc:80:b5:a2:53:02:88:63:ad:49:fb:76:8e:
8c:06:7e:09:87:d3:7f:e0:65:8d:c6:10:28:af:b4:49:ae:ff:
c3:65:52:94:fb:8c:90:8a:de:26:b2:3e:8e:9a:68:6c:37:68:
a9:eb:d0:22:8d:9e:64:1b:96:84:41:33:bf:b7:d9:3f:83:75:
04:99:79:c7:5c:6a:77:b4:be:6e:37:7e:f8:b3:31:95:ee:ce:
e6:b1:f9:96:4b:75:7d:bf:8a:05:cd:a1:72:1b:88:98:5f:8e:
43:52:0e:2f:67:51:35:13:a5:52:24:da:59:7e:95:8d:79:4d:
09:1e:6f:91
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:57 2023 by rpki-client on console-fra.rpki-client.org