Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/ED234306AA5511EABCEBDE19C4F9AE02.roa
File: ED234306AA5511EABCEBDE19C4F9AE02.roa (raw, json)
Hash identifier: LsNca3tvX3TGb7AgqThWDbryjupu+/5zjbLRRcoDebc=
Subject key identifier: 91:52:97:11:0B:78:99:5B:24:10:36:9F:BE:45:20:74:8B:AF:36:82
Certificate issuer: /CN=A91A09BF/serialNumber=7870F240BC4516E39A9C25958CF97B194BE76567
Certificate serial: 06E4
Authority key identifier: 78:70:F2:40:BC:45:16:E3:9A:9C:25:95:8C:F9:7B:19:4B:E7:65:67
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/ED234306AA5511EABCEBDE19C4F9AE02.roa
Signing time: Tue 26 Oct 2021 09:26:20 +0000
ROA not before: Tue 26 Oct 2021 09:26:20 +0000
ROA not after: Tue 31 Jan 2023 00:00:00 +0000
asID: 9729
IP address blocks: 202.85.128.0/20 maxlen: 20
202.85.128.0/24 maxlen: 24
202.85.129.0/24 maxlen: 24
202.85.131.0/24 maxlen: 24
202.85.132.0/24 maxlen: 24
202.85.137.0/24 maxlen: 24
202.85.138.0/24 maxlen: 24
202.85.140.0/24 maxlen: 24
202.85.144.0/20 maxlen: 20
202.85.164.0/23 maxlen: 23
202.85.165.0/24 maxlen: 24
202.85.166.0/23 maxlen: 23
202.85.167.0/24 maxlen: 24
202.85.168.0/22 maxlen: 22
202.85.169.0/24 maxlen: 24
202.85.170.0/24 maxlen: 24
202.85.171.0/24 maxlen: 24
202.85.172.0/22 maxlen: 22
202.85.172.0/24 maxlen: 24
202.85.180.0/22 maxlen: 22
202.85.181.0/24 maxlen: 24
202.85.184.0/22 maxlen: 22
202.85.188.0/24 maxlen: 24
202.85.190.0/24 maxlen: 24
202.85.191.0/24 maxlen: 24
203.194.128.0/21 maxlen: 21
203.194.133.0/24 maxlen: 24
203.194.135.0/24 maxlen: 24
203.194.136.0/21 maxlen: 21
203.194.136.0/24 maxlen: 24
203.194.141.0/24 maxlen: 24
203.194.144.0/21 maxlen: 21
203.194.144.0/24 maxlen: 24
203.194.145.0/24 maxlen: 24
203.194.146.0/24 maxlen: 24
203.194.148.0/24 maxlen: 24
203.194.149.0/24 maxlen: 24
203.194.152.0/21 maxlen: 21
203.194.153.0/24 maxlen: 24
203.194.159.0/24 maxlen: 24
203.194.160.0/22 maxlen: 22
203.194.160.0/24 maxlen: 24
203.194.164.0/22 maxlen: 22
203.194.168.0/22 maxlen: 22
203.194.168.0/24 maxlen: 24
203.194.169.0/24 maxlen: 24
203.194.170.0/24 maxlen: 24
203.194.171.0/24 maxlen: 24
203.194.176.0/22 maxlen: 22
203.194.176.0/24 maxlen: 24
203.194.177.0/24 maxlen: 24
203.194.179.0/24 maxlen: 24
203.194.183.0/24 maxlen: 24
203.194.186.0/23 maxlen: 23
203.194.188.0/22 maxlen: 22
203.194.188.0/24 maxlen: 24
203.194.192.0/21 maxlen: 21
203.194.196.0/24 maxlen: 24
203.194.199.0/24 maxlen: 24
203.194.200.0/22 maxlen: 22
203.194.200.0/23 maxlen: 23
203.194.204.0/22 maxlen: 22
203.194.206.0/24 maxlen: 24
203.194.208.0/22 maxlen: 22
203.194.208.0/24 maxlen: 24
203.194.209.0/24 maxlen: 24
203.194.211.0/24 maxlen: 24
203.194.212.0/22 maxlen: 22
203.194.212.0/23 maxlen: 23
203.194.216.0/22 maxlen: 22
203.194.216.0/24 maxlen: 24
203.194.217.0/24 maxlen: 24
203.194.218.0/24 maxlen: 24
203.194.219.0/24 maxlen: 24
203.194.220.0/22 maxlen: 22
203.194.220.0/24 maxlen: 24
203.194.221.0/24 maxlen: 24
203.194.223.0/24 maxlen: 24
203.194.224.0/22 maxlen: 22
203.194.224.0/24 maxlen: 24
203.194.227.0/24 maxlen: 24
203.194.228.0/22 maxlen: 22
203.194.228.0/24 maxlen: 24
203.194.232.0/22 maxlen: 22
203.194.232.0/24 maxlen: 24
203.194.233.0/24 maxlen: 24
203.194.236.0/22 maxlen: 22
203.194.239.0/24 maxlen: 24
203.194.240.0/22 maxlen: 22
203.194.244.0/22 maxlen: 22
203.194.244.0/24 maxlen: 24
203.194.248.0/21 maxlen: 21
210.184.96.0/22 maxlen: 22
210.184.97.0/24 maxlen: 24
210.184.99.0/24 maxlen: 24
210.184.100.0/22 maxlen: 22
210.184.108.0/22 maxlen: 22
210.184.110.0/24 maxlen: 24
210.184.112.0/21 maxlen: 21
210.184.113.0/24 maxlen: 24
210.184.114.0/24 maxlen: 24
210.184.120.0/24 maxlen: 24
210.184.121.0/24 maxlen: 24
210.184.122.0/24 maxlen: 24
210.184.124.0/24 maxlen: 24
210.184.127.0/24 maxlen: 24
210.184.128.0/17 maxlen: 17
210.184.128.0/21 maxlen: 21
210.184.136.0/22 maxlen: 22
210.184.137.0/24 maxlen: 24
210.184.139.0/24 maxlen: 24
210.184.142.0/24 maxlen: 24
210.184.152.0/22 maxlen: 22
210.184.156.0/23 maxlen: 23
210.184.158.0/23 maxlen: 23
210.184.164.0/22 maxlen: 22
210.184.167.0/24 maxlen: 24
210.184.168.0/22 maxlen: 22
210.184.172.0/23 maxlen: 23
210.184.174.0/23 maxlen: 23
210.184.178.0/23 maxlen: 23
210.184.178.0/24 maxlen: 24
210.184.180.0/22 maxlen: 22
210.184.180.0/24 maxlen: 24
210.184.184.0/22 maxlen: 22
210.184.189.0/24 maxlen: 24
210.184.190.0/23 maxlen: 23
210.184.190.0/24 maxlen: 24
210.184.192.0/24 maxlen: 24
210.184.193.0/24 maxlen: 24
210.184.194.0/24 maxlen: 24
210.184.196.0/22 maxlen: 22
210.184.196.0/24 maxlen: 24
210.184.197.0/24 maxlen: 24
210.184.198.0/23 maxlen: 24
210.184.200.0/22 maxlen: 22
210.184.200.0/24 maxlen: 24
210.184.201.0/24 maxlen: 24
210.184.202.0/24 maxlen: 24
210.184.203.0/24 maxlen: 24
210.184.204.0/22 maxlen: 22
210.184.208.0/24 maxlen: 24
210.184.209.0/24 maxlen: 24
210.184.210.0/24 maxlen: 24
210.184.211.0/24 maxlen: 24
210.184.212.0/24 maxlen: 24
210.184.213.0/24 maxlen: 24
210.184.214.0/24 maxlen: 24
210.184.215.0/24 maxlen: 24
210.184.216.0/24 maxlen: 24
210.184.217.0/24 maxlen: 24
210.184.218.0/24 maxlen: 24
210.184.219.0/24 maxlen: 24
210.184.220.0/24 maxlen: 24
210.184.221.0/24 maxlen: 24
210.184.222.0/24 maxlen: 24
210.184.223.0/24 maxlen: 24
210.184.224.0/24 maxlen: 24
210.184.225.0/24 maxlen: 24
210.184.226.0/24 maxlen: 24
210.184.252.0/22 maxlen: 22
210.184.254.0/24 maxlen: 24
2403:2400::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1764 (0x6e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A09BF/serialNumber=7870F240BC4516E39A9C25958CF97B194BE76567
Validity
Not Before: Oct 26 09:26:20 2021 GMT
Not After : Jan 31 00:00:00 2023 GMT
Subject: CN=6177c9bc-00df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:89:83:9d:7d:93:dd:a0:10:6f:f1:63:fb:1a:
14:44:ac:f2:6e:06:82:47:e8:b6:71:78:57:bc:27:
c9:16:c6:4f:42:81:82:94:dd:d4:ca:3f:8e:23:72:
c5:fa:73:a2:02:78:53:d7:de:e7:00:a1:31:bf:29:
59:b9:a5:9c:bf:dc:28:19:62:c0:39:ab:e6:9c:60:
a3:8c:82:86:34:f0:04:bd:2c:25:2d:68:da:5f:6d:
79:a9:d8:dc:d0:4a:3e:db:ad:69:fe:39:63:e1:6c:
a5:6d:49:ab:56:5e:c1:a4:f4:4c:58:e6:75:2d:55:
a1:1e:31:20:3b:f7:74:1e:0d:1a:cc:6f:b9:a2:4e:
af:46:a2:34:33:b8:61:f2:ca:35:80:e6:49:19:8e:
28:0b:80:f3:9b:71:be:f2:95:00:f3:c7:55:de:55:
5d:59:fe:b1:85:8b:b9:72:41:a4:0a:cb:63:1c:34:
4a:29:83:6d:39:52:04:a6:38:0b:4d:8f:2e:8b:ab:
45:cf:5c:a8:56:6e:63:b6:b2:a7:39:1b:54:82:0f:
07:7c:06:4d:ec:bf:9d:15:5b:23:f1:18:2d:0a:5b:
72:8c:99:8e:9e:6f:34:3a:f7:8f:be:f7:5c:9f:3f:
cc:da:8c:78:91:37:7b:c2:f4:51:18:ce:04:65:66:
ce:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:52:97:11:0B:78:99:5B:24:10:36:9F:BE:45:20:74:8B:AF:36:82
X509v3 Authority Key Identifier:
keyid:78:70:F2:40:BC:45:16:E3:9A:9C:25:95:8C:F9:7B:19:4B:E7:65:67
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/ED234306AA5511EABCEBDE19C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.85.128.0/19
202.85.164.0-202.85.175.255
202.85.180.0-202.85.188.255
202.85.190.0/23
203.194.128.0-203.194.171.255
203.194.176.0/22
203.194.183.0/24
203.194.186.0-203.194.255.255
210.184.96.0/21
210.184.108.0-210.184.122.255
210.184.124.0/24
210.184.127.0-210.184.255.255
IPv6:
2403:2400::/32
Signature Algorithm: sha256WithRSAEncryption
8e:c1:b5:16:1a:56:69:3f:ba:56:db:81:4f:a7:c2:2e:ba:cf:
88:8f:50:47:26:75:7d:cd:63:0d:16:b3:c6:03:ef:7d:a0:eb:
bb:be:4c:30:c4:f4:86:b6:14:61:c6:1c:68:7b:b8:40:50:84:
8e:db:e1:9b:ce:38:e7:f4:c1:0f:95:dc:54:97:64:a4:82:fd:
ec:60:c5:95:e4:9f:83:4a:e6:f5:c8:75:75:5c:88:95:69:68:
f4:e0:6e:0b:11:26:46:29:d9:42:54:f4:d7:97:17:e5:79:35:
9a:55:30:99:80:41:70:0a:9c:24:b3:cf:07:70:b2:63:c1:55:
9a:cd:ea:f6:73:f0:77:9a:88:2c:38:cb:e0:3c:17:5e:2a:1b:
d4:52:e7:26:84:7d:9e:be:ef:5c:cb:f9:8d:50:c8:33:bf:cb:
d6:0c:07:4d:b8:61:bd:41:61:ff:00:c8:f2:c4:b4:4c:04:b9:
25:36:79:d7:0a:b7:a1:17:2e:0c:2f:9f:70:de:3c:c1:f5:73:
7b:24:b6:04:9a:c8:16:18:36:e5:4e:5a:ab:8d:27:ee:7d:06:
18:14:3f:90:02:34:32:19:91:b8:6f:cd:c0:b9:c4:51:fa:fe:
71:61:89:e6:a3:5e:66:cc:a8:e2:14:56:bc:1a:01:09:dd:1d:
c3:5c:cd:32
-----BEGIN CERTIFICATE-----
MIIF8zCCBNugAwIBAgICBuQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QTA5QkYxMTAvBgNVBAUTKDc4NzBGMjQwQkM0NTE2RTM5QTlDMjU5NThDRjk3QjE5
NEJFNzY1NjcwHhcNMjExMDI2MDkyNjIwWhcNMjMwMTMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02MTc3YzliYy0wMGRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAuomDnX2T3aAQb/Fj+xoURKzybgaCR+i2cXhXvCfJFsZPQoGClN3Uyj+OI3LF
+nOiAnhT197nAKExvylZuaWcv9woGWLAOavmnGCjjIKGNPAEvSwlLWjaX215qdjc
0Eo+261p/jlj4WylbUmrVl7BpPRMWOZ1LVWhHjEgO/d0Hg0azG+5ok6vRqI0M7hh
8so1gOZJGY4oC4Dzm3G+8pUA88dV3lVdWf6xhYu5ckGkCstjHDRKKYNtOVIEpjgL
TY8ui6tFz1yoVm5jtrKnORtUgg8HfAZN7L+dFVsj8RgtCltyjJmOnm80OvePvvdc
nz/M2ox4kTd7wvRRGM4EZWbODQIDAQABo4IDFzCCAxMwHQYDVR0OBBYEFJFSlxEL
eJlbJBA2n75FIHSLrzaCMB8GA1UdIwQYMBaAFHhw8kC8RRbjmpwllYz5exlL52Vn
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDlCRi9EMTNEQTFENDJE
RkMxMUVBQkMxQjZCODJDNEY5QUUwMi9lSER5UUx4RkZ1T2FuQ1dWalBsN0dVdm5a
V2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2VIRHlRTHhGRnVPYW5DV1ZqUGw3R1V2blpXYy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QTA5QkYvRDEzREExRDQyREZDMTFFQUJDMUI2QjgyQzRGOUFFMDIvRUQyMzQzMDZB
QTU1MTFFQUJDRUJERTE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwgaAGCCsGAQUFBwEHAQH/
BIGQMIGNMHwEAgABMHYDBAXKVYAwDAMEAspVpAMEBMpVoDAMAwQCylW0AwQAylW8
AwQBylW+MAwDBAfLwoADBALLwqgDBALLwrADBADLwrcwCwMEAcvCugMDAMvCAwQD
0rhgMAwDBALSuGwDBADSuHoDBADSuHwwCwMEANK4fwMDANK4MA0EAgACMAcDBQAk
AyQAMA0GCSqGSIb3DQEBCwUAA4IBAQCOwbUWGlZpP7pW24FPp8Iuus+Ij1BHJnV9
zWMNFrPGA+99oOu7vkwwxPSGthRhxhxoe7hAUISO2+Gbzjjn9MEPldxUl2Skgv3s
YMWV5J+DSub1yHV1XIiVaWj04G4LESZGKdlCVPTXlxfleTWaVTCZgEFwCpwks88H
cLJjwVWazer2c/B3mogsOMvgPBdeKhvUUucmhH2evu9cy/mNUMgzv8vWDAdNuGG9
QWH/AMjyxLRMBLklNnnXCrehFy4ML59w3jzB9XN7JLYEmsgWGDblTlqrjSfufQYY
FD+QAjQyGZG4b83AucRR+v5xYYnmo15mzKjiFFa8GgEJ3R3DXM0y
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:53 2024 by rpki-client on console-ams.rpki-client.org