Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/DA203CFC8A9311ED9F4B8F13C4F9AE02.roa
File: DA203CFC8A9311ED9F4B8F13C4F9AE02.roa (raw, json)
Hash identifier: SdFAjeSeol413cr7+xDIEHPeiSG0+VhGuloZsuGxDos=
Subject key identifier: 2C:1F:0E:1F:AA:2D:71:1E:54:C7:C3:C7:5D:FD:9A:80:E8:16:07:AE
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 632F
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/DA203CFC8A9311ED9F4B8F13C4F9AE02.roa
Signing time: Mon 16 Jan 2023 11:01:45 +0000
ROA not before: Mon 16 Jan 2023 11:01:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 23860
IP address blocks: 43.252.248.0/22 maxlen: 24
45.64.220.0/22 maxlen: 24
45.64.224.0/22 maxlen: 24
45.64.236.0/22 maxlen: 24
45.112.68.0/22 maxlen: 24
45.112.240.0/22 maxlen: 24
45.249.68.0/22 maxlen: 24
45.249.72.0/22 maxlen: 24
45.249.80.0/22 maxlen: 24
45.249.164.0/22 maxlen: 24
45.250.244.0/22 maxlen: 24
103.2.132.0/22 maxlen: 24
103.18.168.0/22 maxlen: 24
103.24.84.0/22 maxlen: 24
103.50.80.0/22 maxlen: 24
103.51.148.0/22 maxlen: 24
103.55.96.0/22 maxlen: 24
103.66.8.0/24 maxlen: 24
103.66.9.0/24 maxlen: 24
103.66.10.0/24 maxlen: 24
103.66.11.0/24 maxlen: 24
103.70.46.0/24 maxlen: 24
103.75.42.0/24 maxlen: 24
103.77.44.0/22 maxlen: 24
103.77.136.0/22 maxlen: 24
103.78.16.0/22 maxlen: 24
103.87.140.0/22 maxlen: 24
103.88.216.0/22 maxlen: 24
103.89.37.0/24 maxlen: 24
103.94.136.0/22 maxlen: 24
103.101.212.0/23 maxlen: 24
103.102.116.0/23 maxlen: 24
103.119.56.0/22 maxlen: 24
103.141.246.0/24 maxlen: 24
103.175.138.0/23 maxlen: 24
103.184.78.0/23 maxlen: 24
103.187.58.0/23 maxlen: 24
103.191.164.0/24 maxlen: 24
103.215.52.0/22 maxlen: 24
103.217.228.0/22 maxlen: 24
103.217.232.0/22 maxlen: 24
103.217.240.0/22 maxlen: 24
103.218.168.0/22 maxlen: 24
103.218.236.0/22 maxlen: 24
103.240.96.0/22 maxlen: 24
103.242.188.0/22 maxlen: 24
103.242.196.0/22 maxlen: 24
103.249.4.0/22 maxlen: 24
103.249.36.0/22 maxlen: 24
103.252.164.0/22 maxlen: 24
115.187.32.0/19 maxlen: 19
115.187.32.0/22 maxlen: 24
115.187.36.0/22 maxlen: 24
115.187.40.0/22 maxlen: 24
115.187.44.0/22 maxlen: 24
115.187.48.0/22 maxlen: 24
115.187.52.0/22 maxlen: 24
115.187.56.0/22 maxlen: 24
115.187.60.0/22 maxlen: 24
116.193.128.0/22 maxlen: 24
116.193.132.0/22 maxlen: 24
116.193.136.0/22 maxlen: 24
116.193.140.0/22 maxlen: 24
116.206.200.0/22 maxlen: 24
116.206.220.0/22 maxlen: 24
144.48.224.0/22 maxlen: 24
150.107.176.0/22 maxlen: 24
150.107.212.0/22 maxlen: 24
150.129.64.0/22 maxlen: 24
150.129.100.0/22 maxlen: 24
150.242.148.0/22 maxlen: 24
202.8.112.0/22 maxlen: 24
202.8.116.0/22 maxlen: 24
202.78.232.0/21 maxlen: 24
203.171.240.0/21 maxlen: 24
2407:cb00::/32 maxlen: 37
2407:cb00:800::/38 maxlen: 44
2407:cb00:c00::/38 maxlen: 44
2407:cb00:1000::/38 maxlen: 44
2407:cb00:1400::/38 maxlen: 44
2407:cb00:1800::/38 maxlen: 44
2407:cb00:1c00::/38 maxlen: 44
2407:cb00:2000::/38 maxlen: 44
2407:cb00:2400::/38 maxlen: 44
2407:cb00:2800::/38 maxlen: 44
2407:cb00:2c00::/38 maxlen: 44
2407:cb00:3000::/38 maxlen: 44
2407:cb00:a000::/38 maxlen: 38
2407:cb00:a000::/40 maxlen: 44
2407:cb00:a100::/40 maxlen: 44
2407:cb00:a200::/39 maxlen: 44
2407:cb00:a800::/38 maxlen: 44
2407:cb00:ac00::/38 maxlen: 44
2407:cb00:b000::/38 maxlen: 44
2407:cb00:b400::/38 maxlen: 44
2407:cb00:b800::/38 maxlen: 38
2407:cb00:bc00::/38 maxlen: 44
2407:cb00:c000::/38 maxlen: 44
2407:cb00:c400::/38 maxlen: 44
2407:cb00:d800::/38 maxlen: 44
2407:cb00:dc00::/38 maxlen: 38
2407:cb00:dc00::/40 maxlen: 40
2407:cb00:dc00::/44 maxlen: 44
2407:cb00:dc10::/44 maxlen: 44
2407:cb00:dc20::/43 maxlen: 44
2407:cb00:dc40::/44 maxlen: 44
2407:cb00:dc50::/44 maxlen: 44
2407:cb00:dc60::/44 maxlen: 44
2407:cb00:dc70::/44 maxlen: 44
2407:cb00:dc80::/44 maxlen: 44
2407:cb00:dc90::/44 maxlen: 44
2407:cb00:dca0::/44 maxlen: 44
2407:cb00:dcb0::/44 maxlen: 44
2407:cb00:dcc0::/44 maxlen: 44
2407:cb00:dcd0::/44 maxlen: 44
2407:cb00:dce0::/44 maxlen: 44
2407:cb00:dcf0::/44 maxlen: 44
2407:cb00:dd00::/40 maxlen: 40
2407:cb00:dd00::/44 maxlen: 44
2407:cb00:dd10::/44 maxlen: 44
2407:cb00:dd20::/44 maxlen: 44
2407:cb00:dd30::/44 maxlen: 44
2407:cb00:dd40::/44 maxlen: 44
2407:cb00:dd50::/44 maxlen: 44
2407:cb00:dd60::/44 maxlen: 44
2407:cb00:dd70::/44 maxlen: 44
2407:cb00:dd80::/44 maxlen: 44
2407:cb00:dd90::/44 maxlen: 44
2407:cb00:dda0::/44 maxlen: 44
2407:cb00:ddb0::/44 maxlen: 44
2407:cb00:ddc0::/44 maxlen: 44
2407:cb00:ddd0::/44 maxlen: 44
2407:cb00:dde0::/44 maxlen: 44
2407:cb00:ddf0::/44 maxlen: 44
2407:cb00:de00::/40 maxlen: 40
2407:cb00:de00::/44 maxlen: 44
2407:cb00:de10::/44 maxlen: 44
2407:cb00:de20::/44 maxlen: 44
2407:cb00:de30::/44 maxlen: 44
2407:cb00:de40::/44 maxlen: 44
2407:cb00:de50::/44 maxlen: 44
2407:cb00:de60::/44 maxlen: 44
2407:cb00:de70::/44 maxlen: 44
2407:cb00:de80::/44 maxlen: 44
2407:cb00:de90::/44 maxlen: 44
2407:cb00:dea0::/44 maxlen: 44
2407:cb00:deb0::/44 maxlen: 44
2407:cb00:dec0::/44 maxlen: 44
2407:cb00:ded0::/44 maxlen: 44
2407:cb00:dee0::/44 maxlen: 44
2407:cb00:def0::/44 maxlen: 44
2407:cb00:df00::/40 maxlen: 40
2407:cb00:df00::/44 maxlen: 44
2407:cb00:df10::/44 maxlen: 44
2407:cb00:df20::/44 maxlen: 44
2407:cb00:df30::/44 maxlen: 44
2407:cb00:df40::/44 maxlen: 44
2407:cb00:df50::/44 maxlen: 44
2407:cb00:df60::/44 maxlen: 44
2407:cb00:df70::/44 maxlen: 44
2407:cb00:df80::/44 maxlen: 44
2407:cb00:df90::/44 maxlen: 44
2407:cb00:dfa0::/44 maxlen: 44
2407:cb00:dfb0::/44 maxlen: 44
2407:cb00:dfc0::/44 maxlen: 44
2407:cb00:dfd0::/44 maxlen: 44
2407:cb00:dfe0::/44 maxlen: 44
2407:cb00:dff0::/44 maxlen: 44
2407:cb00:e000::/38 maxlen: 40
2407:cb00:e400::/38 maxlen: 44
2407:cb00:e800::/38 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25391 (0x632f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Jan 16 11:01:45 2023 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=63c52e99-4224
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:b9:f1:84:65:1f:a5:aa:ec:b4:4f:a8:ae:21:
8a:05:50:79:38:eb:6b:f2:c6:9e:96:47:90:7b:2e:
e2:b7:8c:8c:7d:cc:bf:b0:07:e7:b8:16:db:17:3c:
25:38:fc:2e:ca:02:ac:30:6c:f8:b8:0d:43:73:8d:
16:fb:91:75:51:2e:47:e4:1b:41:15:42:dc:f0:0e:
9f:ff:d4:94:f6:ac:87:20:6d:cf:68:03:95:c9:5a:
6f:a0:0a:e7:0d:f4:4d:11:ff:4b:1a:e1:c7:fd:b2:
d5:98:d3:a8:f1:ae:35:95:1f:e7:bd:1f:99:3e:0e:
59:ff:6e:ad:f2:47:ee:34:69:9f:ba:57:8a:63:41:
10:86:8e:a6:15:ab:70:1f:34:40:10:61:10:ad:86:
92:83:c8:9f:e0:6e:29:c2:c0:b5:4a:3f:eb:09:1e:
e4:52:02:c1:ea:4a:70:db:18:d3:8c:af:3f:00:d1:
47:e5:da:a2:7b:7c:3d:aa:d8:75:b7:f1:26:8d:72:
ce:42:10:e5:fd:f0:e2:e2:37:09:0f:83:7f:de:80:
33:d0:e5:03:d5:66:00:20:ea:4b:46:88:fe:f7:1f:
43:62:eb:de:f6:1f:a9:15:a8:66:1d:b4:0e:b9:9e:
95:89:3c:72:6e:98:87:87:9a:a7:93:a0:8a:dc:d0:
25:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:1F:0E:1F:AA:2D:71:1E:54:C7:C3:C7:5D:FD:9A:80:E8:16:07:AE
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/DA203CFC8A9311ED9F4B8F13C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.252.248.0/22
45.64.220.0-45.64.227.255
45.64.236.0/22
45.112.68.0/22
45.112.240.0/22
45.249.68.0-45.249.75.255
45.249.80.0/22
45.249.164.0/22
45.250.244.0/22
103.2.132.0/22
103.18.168.0/22
103.24.84.0/22
103.50.80.0/22
103.51.148.0/22
103.55.96.0/22
103.66.8.0/22
103.70.46.0/24
103.75.42.0/24
103.77.44.0/22
103.77.136.0/22
103.78.16.0/22
103.87.140.0/22
103.88.216.0/22
103.89.37.0/24
103.94.136.0/22
103.101.212.0/23
103.102.116.0/23
103.119.56.0/22
103.141.246.0/24
103.175.138.0/23
103.184.78.0/23
103.187.58.0/23
103.191.164.0/24
103.215.52.0/22
103.217.228.0-103.217.235.255
103.217.240.0/22
103.218.168.0/22
103.218.236.0/22
103.240.96.0/22
103.242.188.0/22
103.242.196.0/22
103.249.4.0/22
103.249.36.0/22
103.252.164.0/22
115.187.32.0/19
116.193.128.0/20
116.206.200.0/22
116.206.220.0/22
144.48.224.0/22
150.107.176.0/22
150.107.212.0/22
150.129.64.0/22
150.129.100.0/22
150.242.148.0/22
202.8.112.0/21
202.78.232.0/21
203.171.240.0/21
IPv6:
2407:cb00::/32
Signature Algorithm: sha256WithRSAEncryption
50:fd:65:44:40:3f:c8:2c:44:9a:5b:4d:7d:94:d6:67:9d:47:
3e:d9:fb:a8:9c:0a:88:09:7f:5a:50:9d:57:a8:c1:b0:ec:09:
7c:ca:dc:3d:2b:d5:9a:e1:f8:19:43:d5:cd:e2:28:4a:15:d8:
12:6c:91:f0:04:75:04:bd:f1:e8:66:6a:04:8d:2b:7f:a7:b8:
86:d0:75:fa:ea:1d:f7:22:74:9f:26:06:80:8f:cf:07:3c:45:
1f:53:54:26:80:4f:46:1d:24:07:af:b2:39:ec:93:11:de:bd:
ea:0b:53:49:59:79:01:fc:f3:62:2c:bd:b7:59:6a:ad:11:2c:
4d:7b:91:be:66:b9:64:b8:75:13:28:ee:6f:db:c1:34:7b:ff:
a1:01:4e:af:c6:a1:a0:68:25:60:2b:f9:63:30:d9:f8:b3:dd:
62:8a:1f:c4:af:5e:a9:84:c5:2c:3c:33:db:0d:b1:d2:61:01:
31:e3:b5:ad:ea:96:0f:14:8f:2e:79:2e:e8:1d:6e:a0:71:44:
dd:47:54:1c:bb:75:14:6b:7d:a3:30:8d:d6:c7:5f:6d:0e:65:
8b:7a:b7:94:b6:49:de:5c:05:37:0d:5f:f5:3c:c4:5d:3e:0b:
7d:fe:0c:4b:23:d7:fa:98:7c:a2:28:1b:0a:77:5a:19:8a:98:
71:1c:90:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:58 2023 by rpki-client on console-fra.rpki-client.org