Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F5ED994C2CF711EDB0E1A777C4F9AE02.roa
File: F5ED994C2CF711EDB0E1A777C4F9AE02.roa (raw, json)
Hash identifier: NmRbkbONWAI4WTq8AmXkoSH8iWocudXumJL1vBNPcGw=
Subject key identifier: 56:68:08:67:3F:5D:F2:57:11:AA:64:F2:83:48:BA:0F:DD:CD:F6:91
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 5CA1
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F5ED994C2CF711EDB0E1A777C4F9AE02.roa
Signing time: Mon 05 Sep 2022 08:51:41 +0000
ROA not before: Mon 05 Sep 2022 08:51:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 140125
IP address blocks: 103.167.224.0/23 maxlen: 24
103.167.238.0/23 maxlen: 23
103.167.239.0/24 maxlen: 24
103.168.0.0/23 maxlen: 24
103.168.23.0/24 maxlen: 24
103.168.32.0/23 maxlen: 24
103.170.36.0/23 maxlen: 24
103.171.110.0/23 maxlen: 24
103.171.174.0/23 maxlen: 24
103.173.14.0/23 maxlen: 24
103.173.98.0/23 maxlen: 24
103.179.94.0/23 maxlen: 24
103.179.96.0/23 maxlen: 24
103.179.100.0/23 maxlen: 24
103.179.118.0/23 maxlen: 24
103.179.121.0/24 maxlen: 24
103.179.224.0/23 maxlen: 24
103.179.226.0/23 maxlen: 24
103.180.110.0/23 maxlen: 24
103.180.168.0/23 maxlen: 24
103.180.172.0/23 maxlen: 24
103.180.174.0/23 maxlen: 24
103.180.176.0/23 maxlen: 24
103.180.212.0/23 maxlen: 24
103.180.214.0/23 maxlen: 24
103.180.238.0/23 maxlen: 24
103.181.64.0/23 maxlen: 24
103.181.84.0/23 maxlen: 23
103.181.85.0/24 maxlen: 24
103.181.110.0/23 maxlen: 24
103.181.114.0/23 maxlen: 24
103.181.152.0/23 maxlen: 24
103.181.154.0/23 maxlen: 24
103.181.174.0/23 maxlen: 24
103.181.198.0/23 maxlen: 24
103.182.58.0/23 maxlen: 24
103.183.216.0/23 maxlen: 24
103.189.82.0/23 maxlen: 24
103.229.209.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23713 (0x5ca1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Sep 5 08:51:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6315b89d-cc52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:b5:75:1a:46:17:2a:d9:0a:f9:0c:4e:17:8e:
62:59:ee:72:6f:b5:7d:80:9c:c0:4c:08:d0:34:4c:
7f:84:98:0e:34:c4:66:77:0b:c2:c3:b8:77:f3:68:
2b:65:48:47:e7:4a:f7:98:8b:b2:21:38:06:65:e2:
34:f3:62:1a:1f:f5:b2:80:f8:c3:b6:c1:c4:81:cd:
ce:df:82:c1:a8:49:83:73:73:2c:5d:fb:74:ca:11:
2a:3f:6a:11:c3:5f:8c:7d:d6:be:d1:4b:d8:54:0e:
9b:54:65:73:c9:17:4a:b1:cf:2f:21:43:c6:7e:41:
a5:50:89:bc:ea:22:fe:84:e2:14:6e:9b:56:c2:ed:
64:99:73:c2:5b:83:fb:1f:76:14:e6:12:74:fd:ec:
e8:67:3a:82:3f:28:e9:30:c0:3e:0b:2d:64:f6:4e:
cf:08:30:48:e4:22:65:42:0e:a0:23:21:a9:f7:84:
a5:45:d6:99:05:de:ac:ed:c6:d4:03:96:1d:da:6c:
45:07:7f:9e:a0:f2:79:3b:46:ad:87:95:8a:72:e7:
1e:dc:38:4c:27:4b:f2:b8:68:e4:e7:f1:c6:ec:3a:
1a:dc:d1:3a:6e:fc:7f:f6:6f:ec:ea:34:91:0f:9a:
5f:ea:bb:97:c1:c7:19:f4:c2:32:21:82:3b:9c:3f:
78:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:68:08:67:3F:5D:F2:57:11:AA:64:F2:83:48:BA:0F:DD:CD:F6:91
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F5ED994C2CF711EDB0E1A777C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.167.224.0/23
103.167.238.0/23
103.168.0.0/23
103.168.23.0/24
103.168.32.0/23
103.170.36.0/23
103.171.110.0/23
103.171.174.0/23
103.173.14.0/23
103.173.98.0/23
103.179.94.0-103.179.97.255
103.179.100.0/23
103.179.118.0/23
103.179.121.0/24
103.179.224.0/22
103.180.110.0/23
103.180.168.0/23
103.180.172.0-103.180.177.255
103.180.212.0/22
103.180.238.0/23
103.181.64.0/23
103.181.84.0/23
103.181.110.0/23
103.181.114.0/23
103.181.152.0/22
103.181.174.0/23
103.181.198.0/23
103.182.58.0/23
103.183.216.0/23
103.189.82.0/23
103.229.209.0/24
Signature Algorithm: sha256WithRSAEncryption
77:19:e3:4d:77:cf:27:41:f2:71:03:d5:7d:ef:5c:1f:96:08:
04:b7:38:ad:45:2d:e5:0a:cf:d5:c9:3b:f7:e4:4f:31:5a:b8:
5a:d2:02:76:51:94:d9:1d:b6:df:92:d3:47:20:40:2f:9f:a9:
3e:93:fe:d8:55:fe:71:b7:2c:a6:64:e2:49:2a:2b:95:7c:a1:
bb:41:05:f5:08:89:91:3a:e8:1b:44:a2:fa:90:1f:0a:74:a9:
66:1a:22:95:e0:2c:6b:ed:4b:c8:7d:f2:8a:83:36:f0:aa:e0:
f7:eb:a7:c7:e0:c1:14:cc:3f:ff:a7:23:81:f2:e3:02:9f:54:
1f:3e:86:d7:cf:39:35:61:50:6a:89:a0:4b:fc:32:f1:9f:a3:
05:1d:65:d5:0e:92:03:e6:04:03:ef:ae:30:ac:f4:a3:cf:49:
23:f2:5f:38:d4:4a:8b:fc:86:4c:aa:1e:d3:2a:dc:24:41:c5:
50:c8:43:24:b5:7b:09:69:f8:b3:72:8e:a7:f7:cf:b9:b2:b5:
aa:5c:7c:76:c8:96:d9:bd:b1:4f:cc:ed:71:62:f6:9e:73:79:
b8:f8:55:8e:e5:ca:bd:9f:f0:8f:51:b1:b4:53:d9:9e:47:48:
12:91:d9:de:0f:41:ae:a8:b2:86:72:f7:07:f7:b0:df:4c:99:
31:ac:ad:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:58 2023 by rpki-client on console-fra.rpki-client.org