Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/DF6B956AD6AE11ECA27C2C7CC4F9AE02.roa
File: DF6B956AD6AE11ECA27C2C7CC4F9AE02.roa (raw, json)
Hash identifier: ScEOAmQst11VU3jwz7EkqD6+o4dm5LqhdABhLHa8tAE=
Subject key identifier: 0E:06:E4:5C:69:B4:FB:DE:4E:B8:56:7F:A3:71:9E:A5:46:79:AA:11
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 5586
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/DF6B956AD6AE11ECA27C2C7CC4F9AE02.roa
Signing time: Wed 18 May 2022 13:31:50 +0000
ROA not before: Wed 18 May 2022 13:31:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 140125
IP address blocks: 103.82.48.0/22 maxlen: 24
103.114.66.0/24 maxlen: 24
103.114.67.0/24 maxlen: 24
103.163.14.0/23 maxlen: 24
103.167.212.0/23 maxlen: 24
103.167.224.0/23 maxlen: 24
103.168.0.0/23 maxlen: 24
103.168.32.0/23 maxlen: 24
103.168.60.0/23 maxlen: 24
103.170.36.0/23 maxlen: 24
103.170.38.0/23 maxlen: 24
103.170.148.0/23 maxlen: 24
103.171.108.0/23 maxlen: 24
103.171.110.0/23 maxlen: 24
103.171.174.0/23 maxlen: 24
103.173.14.0/23 maxlen: 24
103.173.98.0/23 maxlen: 24
103.177.226.0/23 maxlen: 24
103.178.166.0/23 maxlen: 24
103.178.202.0/23 maxlen: 24
103.179.94.0/23 maxlen: 24
103.179.96.0/23 maxlen: 24
103.179.100.0/23 maxlen: 24
103.179.118.0/23 maxlen: 24
103.179.120.0/23 maxlen: 24
103.179.224.0/23 maxlen: 24
103.179.226.0/23 maxlen: 24
103.180.110.0/23 maxlen: 24
103.180.168.0/23 maxlen: 24
103.180.172.0/23 maxlen: 24
103.180.174.0/23 maxlen: 24
103.180.176.0/23 maxlen: 24
103.180.212.0/23 maxlen: 24
103.180.214.0/23 maxlen: 24
103.180.236.0/23 maxlen: 24
103.180.238.0/23 maxlen: 24
103.181.64.0/23 maxlen: 24
103.181.84.0/23 maxlen: 24
103.181.86.0/23 maxlen: 24
103.181.110.0/23 maxlen: 24
103.181.114.0/23 maxlen: 24
103.181.150.0/23 maxlen: 24
103.181.152.0/23 maxlen: 24
103.181.154.0/23 maxlen: 24
103.181.174.0/23 maxlen: 24
103.181.198.0/23 maxlen: 24
103.182.58.0/23 maxlen: 24
103.183.216.0/23 maxlen: 24
103.187.92.0/23 maxlen: 24
103.194.118.0/24 maxlen: 24
103.212.134.0/24 maxlen: 24
103.229.208.0/23 maxlen: 24
103.252.40.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21894 (0x5586)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: May 18 13:31:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6284f546-38d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:5f:69:4e:04:de:a3:8f:45:34:84:da:31:fb:
f4:92:83:fd:ff:d0:18:ba:bf:75:50:70:4d:c6:6c:
b9:cb:80:1d:9a:d0:b2:61:f1:12:96:13:34:b8:0f:
d6:9b:a1:e1:d7:ef:d9:3e:8b:ab:70:07:b0:c4:35:
d6:97:0c:a3:b9:a0:25:d1:74:0a:9c:6c:8b:72:4a:
76:59:a8:72:ae:2f:0f:85:01:2e:df:94:99:0f:23:
5a:1e:55:50:71:cf:60:c4:2a:82:be:57:13:e5:95:
2d:4f:34:8e:9f:51:77:17:f1:3c:d4:ca:b6:10:2f:
19:60:61:f1:df:b4:a3:a1:12:60:a4:32:84:c3:8c:
c0:24:ac:40:78:62:be:f8:ef:08:1b:79:6c:53:d1:
65:6d:09:8e:0c:3a:82:bd:af:f8:14:d4:39:06:79:
4a:d5:5b:9f:c8:aa:ee:60:73:8f:59:42:be:27:25:
cd:f4:6f:02:6c:87:07:0d:23:84:64:9a:bb:3b:76:
77:81:6a:cf:b2:11:be:44:76:76:11:1c:ff:5c:4c:
22:1c:d6:42:e1:41:04:fe:40:54:8e:03:b6:ba:85:
fc:98:3c:df:b1:bb:3e:f0:26:49:54:e9:20:de:33:
8a:5d:bc:5d:dd:e4:2d:58:49:40:35:7d:39:fa:c2:
52:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:06:E4:5C:69:B4:FB:DE:4E:B8:56:7F:A3:71:9E:A5:46:79:AA:11
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/DF6B956AD6AE11ECA27C2C7CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.82.48.0/22
103.114.66.0/23
103.163.14.0/23
103.167.212.0/23
103.167.224.0/23
103.168.0.0/23
103.168.32.0/23
103.168.60.0/23
103.170.36.0/22
103.170.148.0/23
103.171.108.0/22
103.171.174.0/23
103.173.14.0/23
103.173.98.0/23
103.177.226.0/23
103.178.166.0/23
103.178.202.0/23
103.179.94.0-103.179.97.255
103.179.100.0/23
103.179.118.0-103.179.121.255
103.179.224.0/22
103.180.110.0/23
103.180.168.0/23
103.180.172.0-103.180.177.255
103.180.212.0/22
103.180.236.0/22
103.181.64.0/23
103.181.84.0/22
103.181.110.0/23
103.181.114.0/23
103.181.150.0-103.181.155.255
103.181.174.0/23
103.181.198.0/23
103.182.58.0/23
103.183.216.0/23
103.187.92.0/23
103.194.118.0/24
103.212.134.0/24
103.229.208.0/23
103.252.40.0/22
Signature Algorithm: sha256WithRSAEncryption
16:26:1b:f7:1d:fa:47:88:75:7f:09:c2:1d:a1:15:09:bd:ae:
a4:88:6c:01:84:5a:9d:b3:90:64:01:90:87:53:3a:7a:58:5d:
53:87:e2:af:1a:2f:91:28:2e:2e:4e:2c:4b:1b:a7:69:a2:5b:
8d:b0:99:00:a6:d2:60:4d:ed:11:5d:fa:f1:eb:5e:71:c2:0a:
56:a8:69:e5:9f:bc:49:24:d6:cb:7c:58:92:96:0e:f3:8f:be:
a4:9f:81:b3:cd:7a:bf:f9:d2:0b:63:67:86:21:78:f8:62:51:
9f:3a:47:10:e6:53:14:40:58:35:26:29:41:c7:68:de:31:5c:
31:48:44:22:06:b0:80:b6:00:3a:39:db:1e:7d:d7:77:f4:02:
5d:13:5f:06:de:98:07:80:af:a5:e5:fc:e7:e7:97:e7:72:ae:
e4:5e:13:17:3b:63:42:5e:b8:4c:49:29:0f:b4:d4:e5:20:45:
83:32:6b:60:7b:c3:be:c9:af:59:bf:83:36:d2:1f:30:b7:1f:
f1:83:2a:2a:69:2a:c3:50:19:ae:3e:bd:65:23:92:5d:c7:8c:
32:22:e1:02:e1:52:86:1a:9e:b6:44:8f:22:01:0a:c3:ae:90:
f5:77:16:f3:78:82:9d:44:ee:94:23:38:50:ed:5e:06:de:c0:
42:d8:2f:6a
-----BEGIN CERTIFICATE-----
MIIGhTCCBW2gAwIBAgICVYYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz
RTNBQkM4MjMwHhcNMjIwNTE4MTMzMTUwWhcNMjMwNzAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02Mjg0ZjU0Ni0zOGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAtF9pTgTeo49FNITaMfv0koP9/9AYur91UHBNxmy5y4AdmtCyYfESlhM0uA/W
m6Hh1+/ZPourcAewxDXWlwyjuaAl0XQKnGyLckp2Wahyri8PhQEu35SZDyNaHlVQ
cc9gxCqCvlcT5ZUtTzSOn1F3F/E81Mq2EC8ZYGHx37SjoRJgpDKEw4zAJKxAeGK+
+O8IG3lsU9FlbQmODDqCva/4FNQ5BnlK1VufyKruYHOPWUK+JyXN9G8CbIcHDSOE
ZJq7O3Z3gWrPshG+RHZ2ERz/XEwiHNZC4UEE/kBUjgO2uoX8mDzfsbs+8CZJVOkg
3jOKXbxd3eQtWElANX05+sJSGwIDAQABo4IDqTCCA6UwHQYDVR0OBBYEFA4G5Fxp
tPveTrhWf6NxnqVGeaoRMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw
RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5
Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvREY2Qjk1NkFE
NkFFMTFFQ0EyN0MyQzdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwggExBggrBgEFBQcBBwEB
/wSCASAwggEcMIIBGAQCAAEwggEQAwQCZ1IwAwQBZ3JCAwQBZ6MOAwQBZ6fUAwQB
Z6fgAwQBZ6gAAwQBZ6ggAwQBZ6g8AwQCZ6okAwQBZ6qUAwQCZ6tsAwQBZ6uuAwQB
Z60OAwQBZ61iAwQBZ7HiAwQBZ7KmAwQBZ7LKMAwDBAFns14DBAFns2ADBAFns2Qw
DAMEAWezdgMEAWezeAMEAmez4AMEAWe0bgMEAWe0qDAMAwQCZ7SsAwQBZ7SwAwQC
Z7TUAwQCZ7TsAwQBZ7VAAwQCZ7VUAwQBZ7VuAwQBZ7VyMAwDBAFntZYDBAJntZgD
BAFnta4DBAFntcYDBAFntjoDBAFnt9gDBAFnu1wDBABnwnYDBABn1IYDBAFn5dAD
BAJn/CgwDQYJKoZIhvcNAQELBQADggEBABYmG/cd+keIdX8Jwh2hFQm9rqSIbAGE
Wp2zkGQBkIdTOnpYXVOH4q8aL5EoLi5OLEsbp2miW42wmQCm0mBN7RFd+vHrXnHC
ClaoaeWfvEkk1st8WJKWDvOPvqSfgbPNer/50gtjZ4YhePhiUZ86RxDmUxRAWDUm
KUHHaN4xXDFIRCIGsIC2ADo52x5913f0Al0TXwbemAeAr6Xl/Ofnl+dyruReExc7
Y0JeuExJKQ+01OUgRYMya2B7w77Jr1m/gzbSHzC3H/GDKippKsNQGa4+vWUjkl3H
jDIi4QLhUoYanrZEjyIBCsOukPV3FvN4gp1E7pQjOFDtXgbewELYL2o=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:55 2023 by rpki-client on console-ams.rpki-client.org