Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C2FD8D18F78111ECB11B2715C4F9AE02.roa
File: C2FD8D18F78111ECB11B2715C4F9AE02.roa (raw, json)
Hash identifier: ANyv4EifCZmlzDc7xf6ihA/JqDlpLg/6fBeYR7DdKM8=
Subject key identifier: 65:0E:88:4A:14:8D:9E:04:63:67:AA:88:29:22:FC:30:8C:48:09:8A
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 5832
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C2FD8D18F78111ECB11B2715C4F9AE02.roa
Signing time: Wed 29 Jun 2022 08:02:04 +0000
ROA not before: Wed 29 Jun 2022 08:02:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 140125
IP address blocks: 103.82.48.0/22 maxlen: 24
103.114.64.0/22 maxlen: 24
103.163.14.0/23 maxlen: 24
103.167.212.0/23 maxlen: 24
103.167.224.0/23 maxlen: 24
103.168.0.0/23 maxlen: 24
103.168.32.0/23 maxlen: 24
103.170.36.0/23 maxlen: 24
103.170.38.0/23 maxlen: 24
103.170.148.0/23 maxlen: 24
103.171.108.0/23 maxlen: 24
103.171.110.0/23 maxlen: 24
103.171.174.0/23 maxlen: 24
103.173.14.0/23 maxlen: 24
103.173.98.0/23 maxlen: 24
103.177.226.0/23 maxlen: 24
103.178.166.0/23 maxlen: 24
103.178.202.0/23 maxlen: 24
103.179.94.0/23 maxlen: 24
103.179.96.0/23 maxlen: 24
103.179.100.0/23 maxlen: 24
103.179.118.0/23 maxlen: 24
103.179.120.0/23 maxlen: 24
103.179.224.0/23 maxlen: 24
103.179.226.0/23 maxlen: 24
103.180.110.0/23 maxlen: 24
103.180.168.0/23 maxlen: 24
103.180.172.0/23 maxlen: 24
103.180.174.0/23 maxlen: 24
103.180.212.0/23 maxlen: 24
103.180.214.0/23 maxlen: 24
103.180.236.0/23 maxlen: 24
103.180.238.0/23 maxlen: 24
103.181.4.0/23 maxlen: 24
103.181.64.0/23 maxlen: 24
103.181.84.0/23 maxlen: 24
103.181.86.0/23 maxlen: 24
103.181.110.0/23 maxlen: 24
103.181.114.0/23 maxlen: 24
103.181.150.0/23 maxlen: 24
103.181.152.0/23 maxlen: 24
103.181.154.0/23 maxlen: 24
103.181.174.0/23 maxlen: 24
103.181.198.0/23 maxlen: 24
103.182.58.0/23 maxlen: 24
103.183.216.0/23 maxlen: 24
103.187.92.0/23 maxlen: 24
103.194.118.0/24 maxlen: 24
103.212.134.0/24 maxlen: 24
103.229.208.0/22 maxlen: 24
103.252.40.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22578 (0x5832)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Jun 29 08:02:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=62bc06fb-08dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:2d:06:1d:8a:03:07:09:36:31:1b:02:5c:a8:
77:73:79:12:cd:1e:09:a4:87:79:71:1e:c8:57:61:
11:c5:82:3e:48:73:59:78:cd:53:e4:65:24:30:a2:
3b:e7:b3:e7:3d:eb:34:10:0f:ce:6c:04:10:1d:ea:
63:67:b1:40:36:47:4a:3a:35:11:fa:88:76:cc:07:
86:32:27:17:b2:85:5f:0d:71:0c:aa:3d:58:2b:53:
1d:38:49:d3:4c:d3:6f:5d:85:5e:5b:22:32:70:e4:
8d:54:03:1e:c8:dd:df:bc:5b:36:f8:6b:8d:99:9f:
b4:d3:64:35:92:1e:74:1c:1d:80:61:5c:cf:f0:f2:
87:c2:e7:ce:74:4d:f0:3f:7d:ae:15:e3:93:e2:af:
61:de:57:d9:dc:35:49:88:46:c0:45:4d:75:04:94:
ff:5f:52:cb:dc:d5:ce:05:fb:15:25:8e:0c:71:c2:
95:ff:36:c7:b4:1d:ed:6d:19:5d:11:9d:a8:08:c4:
37:b7:89:e0:bb:38:d5:05:8e:80:0e:be:b4:9f:63:
6c:43:73:90:8e:ee:4e:e6:5c:50:b4:37:11:c4:a4:
33:37:60:13:47:60:a7:47:86:60:5c:3f:9c:68:9a:
c5:5c:2c:d5:b3:56:76:a7:32:29:e5:59:a5:96:6a:
44:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:0E:88:4A:14:8D:9E:04:63:67:AA:88:29:22:FC:30:8C:48:09:8A
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C2FD8D18F78111ECB11B2715C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.82.48.0/22
103.114.64.0/22
103.163.14.0/23
103.167.212.0/23
103.167.224.0/23
103.168.0.0/23
103.168.32.0/23
103.170.36.0/22
103.170.148.0/23
103.171.108.0/22
103.171.174.0/23
103.173.14.0/23
103.173.98.0/23
103.177.226.0/23
103.178.166.0/23
103.178.202.0/23
103.179.94.0-103.179.97.255
103.179.100.0/23
103.179.118.0-103.179.121.255
103.179.224.0/22
103.180.110.0/23
103.180.168.0/23
103.180.172.0/22
103.180.212.0/22
103.180.236.0/22
103.181.4.0/23
103.181.64.0/23
103.181.84.0/22
103.181.110.0/23
103.181.114.0/23
103.181.150.0-103.181.155.255
103.181.174.0/23
103.181.198.0/23
103.182.58.0/23
103.183.216.0/23
103.187.92.0/23
103.194.118.0/24
103.212.134.0/24
103.229.208.0/22
103.252.40.0/22
Signature Algorithm: sha256WithRSAEncryption
6f:8e:3d:1b:49:6f:c9:d1:ca:d2:8a:00:63:1b:89:db:f0:30:
77:4f:5c:6e:51:ec:f1:50:2b:d9:d1:8e:ed:66:2c:a7:6d:26:
a8:e8:1b:e4:7c:ba:9a:5d:67:b3:d7:c0:d8:d8:ec:64:6b:ce:
7c:92:24:3a:cd:87:21:a9:71:b6:56:67:08:d3:dd:57:5b:c0:
0c:3c:f8:5f:c2:17:9e:26:1e:99:e7:0c:02:c8:e4:53:5a:0e:
8b:ac:20:e2:23:4f:0b:b4:66:b7:a9:52:85:00:69:fc:cd:c4:
c9:ea:d9:99:7f:02:2c:46:47:93:e0:ea:2d:c2:d9:43:9c:56:
d3:61:58:49:5c:ed:b8:26:75:ce:ac:f9:56:1e:a3:b8:74:20:
67:08:dc:c1:af:b8:25:3d:4a:67:e3:05:63:d5:fa:f3:0b:ea:
f8:42:01:58:7b:e7:79:63:9f:77:93:f7:2a:96:30:16:b0:72:
33:38:af:58:d9:de:f6:df:f7:42:30:eb:85:14:c7:20:a4:60:
03:2a:1b:7a:f5:51:e1:ee:4d:32:42:02:05:3a:d0:25:b1:9c:
aa:cb:68:ac:5e:f6:82:c0:c7:c6:cf:d4:f5:a6:0d:5d:9d:67:
2f:49:a3:8f:de:9c:26:91:0c:83:19:5d:9f:f6:2b:85:c2:31:
e2:71:e3:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:54 2023 by rpki-client on console-ams.rpki-client.org