Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/29F263E4B70F11EC9893B179C4F9AE02.roa
File: 29F263E4B70F11EC9893B179C4F9AE02.roa (raw, json)
Hash identifier: tDujpQwmXfCJMQNjjbi/EucuxWs8KUvXIC8IKGOlW1A=
Subject key identifier: 8B:19:DE:24:9B:6B:03:34:B5:DE:AA:3B:6E:95:76:B8:37:58:25:BE
Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Certificate serial: 363F
Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/29F263E4B70F11EC9893B179C4F9AE02.roa
Signing time: Fri 08 Apr 2022 07:40:30 +0000
ROA not before: Fri 08 Apr 2022 07:40:30 +0000
ROA not after: Mon 31 Oct 2022 00:00:00 +0000
asID: 131429
IP address blocks: 42.1.64.0/18 maxlen: 24
45.121.24.0/22 maxlen: 24
59.153.220.0/22 maxlen: 24
59.153.224.0/22 maxlen: 24
59.153.228.0/22 maxlen: 24
59.153.232.0/22 maxlen: 24
59.153.236.0/22 maxlen: 24
59.153.240.0/22 maxlen: 24
59.153.244.0/22 maxlen: 24
59.153.248.0/22 maxlen: 24
59.153.252.0/22 maxlen: 24
103.7.174.0/23 maxlen: 24
103.156.0.0/23 maxlen: 23
103.156.0.0/24 maxlen: 24
103.156.1.0/24 maxlen: 24
103.156.2.0/23 maxlen: 23
103.156.2.0/24 maxlen: 24
103.156.3.0/24 maxlen: 24
103.156.4.0/23 maxlen: 23
103.156.4.0/24 maxlen: 24
103.156.5.0/24 maxlen: 24
103.156.6.0/24 maxlen: 24
103.156.7.0/24 maxlen: 24
103.156.8.0/24 maxlen: 24
103.156.9.0/24 maxlen: 24
103.156.38.0/24 maxlen: 24
103.156.39.0/24 maxlen: 24
103.156.40.0/24 maxlen: 24
103.156.41.0/24 maxlen: 24
103.156.42.0/24 maxlen: 24
103.156.43.0/24 maxlen: 24
103.156.44.0/24 maxlen: 24
103.156.45.0/24 maxlen: 24
103.156.46.0/24 maxlen: 24
103.156.47.0/24 maxlen: 24
103.156.48.0/24 maxlen: 24
103.156.49.0/24 maxlen: 24
103.156.58.0/24 maxlen: 24
103.156.59.0/24 maxlen: 24
103.156.60.0/24 maxlen: 24
103.156.61.0/24 maxlen: 24
103.199.24.0/24 maxlen: 24
103.199.28.0/22 maxlen: 24
103.199.32.0/23 maxlen: 24
103.199.36.0/22 maxlen: 24
103.199.40.0/22 maxlen: 24
103.199.44.0/22 maxlen: 24
103.199.48.0/22 maxlen: 24
103.199.52.0/22 maxlen: 24
103.199.56.0/22 maxlen: 24
103.199.60.0/22 maxlen: 24
103.199.68.0/22 maxlen: 24
103.199.72.0/22 maxlen: 24
103.199.76.0/22 maxlen: 24
137.59.26.0/24 maxlen: 24
137.59.28.0/22 maxlen: 24
137.59.32.0/23 maxlen: 24
137.59.36.0/22 maxlen: 24
137.59.40.0/22 maxlen: 24
137.59.44.0/22 maxlen: 24
2402:9d80::/41 maxlen: 48
2402:9d80:80::/41 maxlen: 48
2402:9d80:100::/40 maxlen: 48
2402:9d80:200::/40 maxlen: 48
2402:9d80:300::/40 maxlen: 48
2402:9d80:400::/40 maxlen: 48
2402:9d80:500::/40 maxlen: 48
2402:9d80:600::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13887 (0x363f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Validity
Not Before: Apr 8 07:40:30 2022 GMT
Not After : Oct 31 00:00:00 2022 GMT
Subject: CN=624fe6ee-9277
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:d1:2e:d5:e8:5d:ed:5f:68:bc:cd:c5:3e:b7:
d8:42:67:43:e4:93:90:6e:17:7a:07:7e:e5:68:ca:
95:90:62:91:eb:75:a7:2c:38:00:17:19:8b:d0:10:
ec:dc:46:37:84:0e:b9:ac:da:fa:c4:c6:2b:e9:0a:
05:fe:5e:04:35:96:48:7b:34:a4:2b:58:9a:be:17:
ca:56:7b:38:0d:26:d1:9b:fe:49:92:46:35:2f:8c:
75:9b:bc:bb:21:29:7b:d8:36:4c:d0:ae:58:3b:cd:
f5:24:da:df:c5:22:b1:f2:c2:77:e6:cf:d2:17:2b:
9c:80:99:54:0a:64:7e:eb:38:04:4c:8b:28:e2:39:
d6:09:d6:87:e2:de:0a:f0:d6:49:d1:a6:87:3d:48:
a7:33:58:4c:a7:62:f1:a9:78:1f:53:e0:ff:c2:7a:
ec:21:6b:b3:1b:2e:60:42:5f:07:d6:12:5a:26:88:
37:d0:e5:71:d6:29:e4:5e:b4:53:75:e5:f4:87:00:
39:eb:2b:3f:a5:12:97:85:fa:e5:6f:88:69:c8:4a:
2f:17:bd:bd:92:17:fd:a2:63:b8:a1:95:2c:9a:3a:
f1:c4:e0:a3:bf:46:0d:be:c5:03:d6:84:aa:8b:3c:
02:56:34:49:78:2d:cf:a8:ce:34:76:a0:3d:d6:29:
46:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:19:DE:24:9B:6B:03:34:B5:DE:AA:3B:6E:95:76:B8:37:58:25:BE
X509v3 Authority Key Identifier:
keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/29F263E4B70F11EC9893B179C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
42.1.64.0/18
45.121.24.0/22
59.153.220.0-59.153.255.255
103.7.174.0/23
103.156.0.0-103.156.9.255
103.156.38.0-103.156.49.255
103.156.58.0-103.156.61.255
103.199.24.0/24
103.199.28.0-103.199.33.255
103.199.36.0-103.199.63.255
103.199.68.0-103.199.79.255
137.59.26.0/24
137.59.28.0-137.59.33.255
137.59.36.0-137.59.47.255
IPv6:
2402:9d80::-2402:9d80:6ff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
bc:a3:b8:c5:ef:28:cc:67:03:4e:63:d7:67:2c:9f:1b:b9:25:
27:bd:64:2d:ad:79:68:12:4f:e0:e6:c8:c7:64:27:50:ca:69:
da:f6:0b:7c:0d:ba:5c:cf:74:7f:05:b9:d8:58:93:d5:68:ae:
a8:65:0f:98:e4:14:28:3f:ff:37:cf:aa:02:f1:2f:d3:9e:1d:
b3:46:71:de:eb:18:d0:d3:6d:f3:99:6e:66:94:e8:c7:a4:ce:
80:9f:e4:8e:79:f8:d0:06:07:25:5c:76:39:a1:99:20:dd:cd:
27:5b:fe:59:a2:f5:c9:1b:94:eb:af:bf:84:72:da:ed:eb:a2:
80:bb:99:03:8e:49:80:69:ce:96:12:a9:08:e6:af:79:d6:83:
8a:88:cc:ac:6c:33:af:71:79:b3:72:ba:b6:d3:45:87:2e:9c:
f9:b5:dd:a2:6d:0e:59:8c:bc:0b:b8:18:2b:78:0a:76:8b:0d:
57:55:d6:c2:35:ce:d2:61:5b:12:3b:57:a4:fc:e2:87:84:75:
c7:99:07:55:02:af:ef:a1:02:2e:8c:5e:9b:1c:01:01:4c:b2:
3e:dc:46:39:be:90:67:5e:d5:a8:df:fe:d4:11:98:de:bd:a5:
cd:d3:34:e7:21:d0:fb:48:db:a4:e9:6a:11:af:f3:26:c1:2f:
e7:98:62:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:53 2024 by rpki-client on console-ams.rpki-client.org