Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B770BD50722211ED93665911C4F9AE02.roa
File: B770BD50722211ED93665911C4F9AE02.roa (raw, json)
Hash identifier: KjpGwcPuGcvmQe10LeqNpREAntzvbrXDzArDiRd3FBc=
Subject key identifier: 63:B5:E9:41:81:40:43:86:3B:02:2B:DF:9F:95:E9:4F:45:DC:5E:B0
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 6190
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B770BD50722211ED93665911C4F9AE02.roa
Signing time: Mon 19 Dec 2022 11:11:38 +0000
ROA not before: Mon 19 Dec 2022 11:11:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 138296
IP address blocks: 103.41.32.0/22 maxlen: 24
103.93.192.0/22 maxlen: 24
103.111.69.0/24 maxlen: 24
103.111.70.0/23 maxlen: 24
103.123.224.0/24 maxlen: 24
103.123.225.0/24 maxlen: 24
103.123.226.0/24 maxlen: 24
103.123.227.0/24 maxlen: 24
103.127.252.0/24 maxlen: 24
103.134.4.0/22 maxlen: 24
103.142.198.0/23 maxlen: 24
103.143.8.0/24 maxlen: 24
103.143.9.0/24 maxlen: 24
103.157.178.0/23 maxlen: 24
103.158.48.0/23 maxlen: 24
103.163.190.0/23 maxlen: 24
103.167.176.0/23 maxlen: 24
103.171.210.0/23 maxlen: 24
103.172.86.0/23 maxlen: 24
103.172.156.0/23 maxlen: 24
103.173.120.0/23 maxlen: 24
103.173.205.0/24 maxlen: 24
103.173.244.0/24 maxlen: 24
103.173.245.0/24 maxlen: 24
103.174.244.0/23 maxlen: 24
103.175.60.0/23 maxlen: 24
103.179.46.0/23 maxlen: 24
103.179.232.0/23 maxlen: 24
103.179.236.0/23 maxlen: 24
103.181.54.0/23 maxlen: 24
103.195.80.0/23 maxlen: 24
103.204.132.0/22 maxlen: 24
110.44.10.0/24 maxlen: 24
110.44.11.0/24 maxlen: 24
2001:df2:380::/48 maxlen: 48
2400:4fe0::/32 maxlen: 32
2404:58c0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24976 (0x6190)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Dec 19 11:11:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=63a046e9-484b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:ce:fc:01:0e:bd:c8:ec:cd:93:fe:03:8c:02:
5b:f4:07:52:72:6d:57:89:e5:50:ed:de:b6:2c:a2:
f3:e5:d2:3d:02:8e:9f:f8:3b:1c:f6:73:e4:c3:b3:
d9:e0:1f:cd:0c:41:29:82:77:31:37:fb:1a:a1:c8:
85:6e:17:1c:1b:92:17:93:75:75:58:c3:bc:c9:c2:
b8:fe:c0:7e:5d:bc:81:e2:ae:9e:8c:46:d5:6b:1e:
4a:32:9e:83:56:30:2c:e6:70:ce:88:22:4f:cb:4d:
60:9a:1e:84:7d:3f:cd:b3:1e:ab:01:a7:04:81:23:
d4:75:83:b1:ec:78:0e:1d:d0:fc:ed:7d:29:e1:22:
6a:61:b1:98:e1:bf:ec:37:b0:11:2a:9c:0a:60:7a:
66:ab:33:2c:a9:31:2c:6e:4c:ee:51:e4:d8:90:8e:
d9:59:ab:3f:b1:e1:00:9b:a2:8e:8d:b0:31:48:8c:
67:a5:98:fc:6b:89:2d:e8:ba:2e:f2:34:b4:ba:97:
c0:81:00:71:cf:f6:57:2a:58:37:e4:73:83:94:1a:
f8:7c:73:20:54:0a:cb:2c:07:f1:e6:7a:68:83:83:
35:d0:2f:fd:72:29:85:8d:c1:2f:1e:6b:6c:dd:4d:
8b:a6:0b:95:d5:6e:d9:d1:07:a7:1d:68:5f:30:15:
32:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:B5:E9:41:81:40:43:86:3B:02:2B:DF:9F:95:E9:4F:45:DC:5E:B0
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B770BD50722211ED93665911C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.41.32.0/22
103.93.192.0/22
103.111.69.0-103.111.71.255
103.123.224.0/22
103.127.252.0/24
103.134.4.0/22
103.142.198.0/23
103.143.8.0/23
103.157.178.0/23
103.158.48.0/23
103.163.190.0/23
103.167.176.0/23
103.171.210.0/23
103.172.86.0/23
103.172.156.0/23
103.173.120.0/23
103.173.205.0/24
103.173.244.0/23
103.174.244.0/23
103.175.60.0/23
103.179.46.0/23
103.179.232.0/23
103.179.236.0/23
103.181.54.0/23
103.195.80.0/23
103.204.132.0/22
110.44.10.0/23
IPv6:
2001:df2:380::/48
2400:4fe0::/32
2404:58c0::/48
Signature Algorithm: sha256WithRSAEncryption
8f:b0:d6:9b:94:d5:2e:d2:01:44:f6:75:c0:81:a1:af:3c:f7:
a2:33:de:a6:66:ba:bc:83:c8:79:a3:22:d6:7b:b5:40:17:94:
eb:07:f4:96:b0:c3:89:36:87:0d:cd:d7:39:9c:19:82:a1:55:
07:6e:de:5a:d1:13:b5:51:0d:b0:fe:6b:c1:7f:36:34:12:5d:
26:f4:14:3e:67:89:ae:eb:a7:b2:4c:25:a5:91:ba:ba:12:51:
b2:ed:a4:40:cd:1e:00:3c:73:24:69:47:22:1d:e2:24:26:37:
dc:52:22:5a:f9:fe:ca:9e:34:2d:3f:3f:ae:5b:de:f2:72:46:
b7:06:43:01:02:2f:c0:db:de:aa:10:70:69:c9:ae:57:e7:aa:
1f:2d:a1:b9:bd:33:6a:26:b4:46:0d:24:ac:f5:10:62:f8:60:
35:7a:c0:9c:99:d2:c1:4d:4c:41:42:a7:a2:d5:f6:dc:d7:e9:
fe:67:45:e6:e4:ab:75:3b:07:22:e7:1b:d3:72:25:86:31:e2:
e8:a3:93:9e:ac:c9:65:b3:74:83:da:00:1b:40:ae:d0:b5:cb:
c6:58:8f:d0:57:c3:83:c1:cb:4b:eb:7c:67:02:7d:29:2d:97:
5a:a4:c8:fd:b3:19:45:ff:09:5e:23:18:5b:52:c0:d9:bc:da:
13:77:1a:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:57 2023 by rpki-client on console-fra.rpki-client.org