Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/EF680F50B1D911ED89C6D084C4F9AE02.roa
File: EF680F50B1D911ED89C6D084C4F9AE02.roa (raw, json)
Hash identifier: lf8GGw9opogjluZ6ZLX0B1DudwD0Y0NPzpRBDBpGMNA=
Subject key identifier: F1:AE:E9:D9:E3:1D:64:B9:08:CE:16:D6:C8:E1:B6:4B:58:E0:13:E1
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 6566
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/EF680F50B1D911ED89C6D084C4F9AE02.roa
Signing time: Tue 21 Feb 2023 11:21:50 +0000
ROA not before: Tue 21 Feb 2023 11:21:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 55352
IP address blocks: 43.231.132.0/22 maxlen: 24
43.231.212.0/22 maxlen: 24
43.231.236.0/22 maxlen: 24
43.231.252.0/22 maxlen: 24
43.247.136.0/22 maxlen: 24
45.112.8.0/22 maxlen: 24
45.112.56.0/22 maxlen: 24
45.115.56.0/24 maxlen: 24
45.115.57.0/24 maxlen: 24
45.115.58.0/24 maxlen: 24
45.115.59.0/24 maxlen: 24
45.126.144.0/24 maxlen: 24
45.126.145.0/24 maxlen: 24
45.126.146.0/24 maxlen: 24
45.126.147.0/24 maxlen: 24
45.251.12.0/24 maxlen: 24
45.251.13.0/24 maxlen: 24
45.251.14.0/24 maxlen: 24
45.251.15.0/24 maxlen: 24
59.152.56.0/22 maxlen: 24
59.153.0.0/22 maxlen: 24
59.153.120.0/22 maxlen: 24
103.8.164.0/22 maxlen: 24
103.29.156.0/22 maxlen: 24
103.60.208.0/22 maxlen: 24
103.75.60.0/23 maxlen: 24
103.102.92.0/22 maxlen: 24
103.111.112.0/22 maxlen: 24
103.114.2.0/23 maxlen: 23
103.114.3.0/24 maxlen: 24
103.119.188.0/22 maxlen: 24
103.156.212.0/23 maxlen: 24
103.176.240.0/23 maxlen: 24
103.179.212.0/23 maxlen: 24
103.197.224.0/22 maxlen: 24
103.198.164.0/22 maxlen: 24
103.200.104.0/22 maxlen: 24
103.204.160.0/22 maxlen: 24
103.205.172.0/22 maxlen: 24
103.220.40.0/22 maxlen: 24
103.221.248.0/22 maxlen: 24
103.226.140.0/22 maxlen: 24
103.226.144.0/22 maxlen: 24
103.226.188.0/22 maxlen: 24
103.226.204.0/22 maxlen: 24
103.226.236.0/22 maxlen: 24
103.226.240.0/22 maxlen: 24
103.239.171.0/24 maxlen: 24
103.249.132.0/22 maxlen: 24
111.125.217.0/24 maxlen: 24
111.125.218.0/23 maxlen: 24
111.125.224.0/24 maxlen: 24
111.125.226.0/24 maxlen: 24
111.125.228.0/24 maxlen: 24
111.125.233.0/24 maxlen: 24
111.125.252.0/22 maxlen: 24
124.66.172.0/22 maxlen: 24
175.100.176.0/20 maxlen: 24
202.168.144.0/22 maxlen: 24
2406:9e00:20::/48 maxlen: 48
2406:9e00:21::/48 maxlen: 48
2406:9e00:22::/48 maxlen: 48
2406:9e00:23::/48 maxlen: 48
2406:9e00:24::/48 maxlen: 48
2406:9e00:25::/48 maxlen: 48
2406:9e00:26::/48 maxlen: 48
2406:9e00:27::/48 maxlen: 48
2406:9e00:28::/48 maxlen: 48
2406:9e00:29::/48 maxlen: 48
2406:9e00:2a::/48 maxlen: 48
2406:9e00:2b::/48 maxlen: 48
2406:9e00:2c::/48 maxlen: 48
2406:9e00:2d::/48 maxlen: 48
2406:9e00:2e::/48 maxlen: 48
2406:9e00:2f::/48 maxlen: 48
2406:9e00:30::/48 maxlen: 48
2406:9e00:31::/48 maxlen: 48
2406:9e00:32::/48 maxlen: 48
2406:9e00:33::/48 maxlen: 48
2406:9e00:34::/48 maxlen: 48
2406:9e00:35::/48 maxlen: 48
2406:9e00:36::/48 maxlen: 48
2406:9e00:37::/48 maxlen: 48
2406:9e00:38::/48 maxlen: 48
2406:9e00:39::/48 maxlen: 48
2406:9e00:3a::/48 maxlen: 48
2406:9e00:3b::/48 maxlen: 48
2406:9e00:3c::/48 maxlen: 48
2406:9e00:3d::/48 maxlen: 48
2406:9e00:3e::/48 maxlen: 48
2406:9e00:3f::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25958 (0x6566)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Feb 21 11:21:50 2023 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=63f4a94e-e19a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:cc:30:29:a0:c9:a8:54:dc:1f:f6:31:88:73:
f4:f8:dd:43:76:30:09:c0:b5:72:b5:ca:f8:e5:14:
76:d5:73:dd:53:52:fa:a1:9b:b2:b7:42:49:78:81:
1a:81:00:c5:97:a0:43:98:26:a9:a5:7f:6f:4e:10:
92:e4:d3:f8:c7:0e:46:41:c8:ec:08:0c:47:53:2a:
3e:40:f4:29:53:d1:48:dc:8b:77:45:48:82:64:0d:
f6:dc:cb:48:61:a2:66:9f:65:ba:ac:f2:05:40:fa:
19:54:17:04:ac:a5:8d:1e:f9:63:da:ae:74:ee:f8:
bb:f4:4c:8e:41:a5:55:6f:a0:95:56:97:2c:d1:d9:
d2:30:e1:c6:be:de:ab:7f:e0:f2:86:97:48:ba:1d:
fd:5f:69:69:fc:d6:97:7d:83:f2:d0:b2:53:e3:d4:
21:51:e1:84:cd:dd:c8:52:9e:33:82:04:8d:53:2b:
3c:f1:6d:29:92:1a:02:16:7a:ad:2f:d1:da:26:d5:
91:4c:4e:27:8d:33:3a:18:75:3d:f5:74:a7:d1:d9:
71:3c:51:11:2c:82:9c:f6:13:53:06:03:83:c7:73:
6d:d5:38:d3:9e:55:da:65:8f:e8:58:f3:ba:d4:f0:
6c:30:a5:b2:dd:fc:9d:31:d3:33:97:bd:c2:f6:4c:
3b:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:AE:E9:D9:E3:1D:64:B9:08:CE:16:D6:C8:E1:B6:4B:58:E0:13:E1
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/EF680F50B1D911ED89C6D084C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.231.132.0/22
43.231.212.0/22
43.231.236.0/22
43.231.252.0/22
43.247.136.0/22
45.112.8.0/22
45.112.56.0/22
45.115.56.0/22
45.126.144.0/22
45.251.12.0/22
59.152.56.0/22
59.153.0.0/22
59.153.120.0/22
103.8.164.0/22
103.29.156.0/22
103.60.208.0/22
103.75.60.0/23
103.102.92.0/22
103.111.112.0/22
103.114.2.0/23
103.119.188.0/22
103.156.212.0/23
103.176.240.0/23
103.179.212.0/23
103.197.224.0/22
103.198.164.0/22
103.200.104.0/22
103.204.160.0/22
103.205.172.0/22
103.220.40.0/22
103.221.248.0/22
103.226.140.0-103.226.147.255
103.226.188.0/22
103.226.204.0/22
103.226.236.0-103.226.243.255
103.239.171.0/24
103.249.132.0/22
111.125.217.0-111.125.219.255
111.125.224.0/24
111.125.226.0/24
111.125.228.0/24
111.125.233.0/24
111.125.252.0/22
124.66.172.0/22
175.100.176.0/20
202.168.144.0/22
IPv6:
2406:9e00:20::/43
Signature Algorithm: sha256WithRSAEncryption
24:de:75:af:a3:b2:be:b1:9b:93:56:c8:5e:49:88:cd:80:c0:
43:3d:0f:26:82:4a:e3:f5:99:f3:ca:ae:52:41:70:aa:c2:2a:
d4:b9:e2:f0:3c:96:66:92:74:f3:1b:f6:74:9d:13:ca:1d:10:
25:bb:1d:46:9e:44:70:a6:eb:f0:3b:cb:b8:0b:0b:26:e4:e1:
d8:d2:99:17:39:be:e7:7f:e4:9b:a0:c1:fc:1d:68:ef:1a:57:
29:29:df:27:ba:1f:8e:98:2f:b5:46:2d:9d:13:5d:02:3b:6b:
6d:b4:ec:b8:51:46:3d:b8:7f:e6:92:38:9f:4b:aa:ac:c4:05:
99:5e:91:78:0c:49:b6:78:a0:d4:37:a3:4e:4d:40:b1:2e:5b:
04:db:e5:61:42:46:f0:4b:1e:c8:df:c6:6a:05:77:2b:1b:06:
fe:3e:3f:f7:82:a3:c5:03:f2:74:d2:09:3c:0a:8d:07:a7:ab:
3b:aa:52:19:a1:43:c9:03:da:f5:30:3e:91:7f:21:f6:20:3b:
be:75:73:d7:68:af:64:5e:d0:35:ae:24:8d:c6:57:80:40:e9:
7e:1b:f8:ab:e9:5a:77:db:36:03:16:77:d6:4e:dc:96:21:0d:
06:11:e6:ac:06:d5:be:25:dc:7e:5f:aa:d6:b5:59:0f:de:5d:
72:7e:d2:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:58 2023 by rpki-client on console-fra.rpki-client.org