Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/3B4945C2A96711EDA3280684C4F9AE02.roa
File: 3B4945C2A96711EDA3280684C4F9AE02.roa (raw, json)
Hash identifier: f2uwq7hiUa1lsqCllA1khRC8OSLL3UtO5IsjJgIzcM8=
Subject key identifier: 29:08:6F:AB:25:2D:66:26:41:4B:0E:32:5C:EB:76:7E:15:00:55:BF
Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Certificate serial: 3BF8
Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/3B4945C2A96711EDA3280684C4F9AE02.roa
Signing time: Fri 10 Feb 2023 17:20:36 +0000
ROA not before: Fri 10 Feb 2023 17:20:36 +0000
ROA not after: Tue 31 Oct 2023 00:00:00 +0000
asID: 7552
IP address blocks: 27.64.0.0/14 maxlen: 24
27.68.0.0/15 maxlen: 24
27.70.0.0/16 maxlen: 24
27.72.0.0/13 maxlen: 24
115.72.72.0/23 maxlen: 24
115.72.74.0/23 maxlen: 24
115.73.200.0/23 maxlen: 24
115.73.202.0/23 maxlen: 24
115.76.56.0/22 maxlen: 24
115.76.60.0/22 maxlen: 24
125.234.0.0/17 maxlen: 24
125.234.128.0/19 maxlen: 24
125.234.176.0/20 maxlen: 24
125.234.192.0/18 maxlen: 24
125.235.56.0/22 maxlen: 24
125.235.60.0/22 maxlen: 24
125.235.112.0/21 maxlen: 24
125.235.120.0/21 maxlen: 24
125.235.130.0/24 maxlen: 24
125.235.131.0/24 maxlen: 24
125.235.132.0/23 maxlen: 24
125.235.134.0/23 maxlen: 24
125.235.136.0/21 maxlen: 24
125.235.176.0/21 maxlen: 24
125.235.184.0/21 maxlen: 24
125.235.208.0/21 maxlen: 24
125.235.216.0/21 maxlen: 24
171.244.208.0/20 maxlen: 24
171.246.8.0/22 maxlen: 24
171.246.12.0/22 maxlen: 24
171.252.132.0/22 maxlen: 24
171.252.136.0/21 maxlen: 24
171.252.144.0/22 maxlen: 24
171.253.0.0/20 maxlen: 24
171.253.16.0/20 maxlen: 24
171.253.32.0/21 maxlen: 24
171.253.40.0/21 maxlen: 24
171.253.128.0/20 maxlen: 24
171.253.144.0/20 maxlen: 24
171.253.160.0/20 maxlen: 24
171.253.176.0/20 maxlen: 24
171.253.192.0/21 maxlen: 24
171.253.200.0/21 maxlen: 24
171.253.208.0/21 maxlen: 24
171.253.216.0/21 maxlen: 24
171.253.224.0/22 maxlen: 24
171.254.128.0/19 maxlen: 24
171.254.160.0/19 maxlen: 24
171.255.64.0/20 maxlen: 24
171.255.80.0/20 maxlen: 24
171.255.96.0/20 maxlen: 24
171.255.112.0/20 maxlen: 24
171.255.128.0/20 maxlen: 24
171.255.144.0/20 maxlen: 24
171.255.160.0/22 maxlen: 24
171.255.164.0/22 maxlen: 24
171.255.168.0/22 maxlen: 24
171.255.172.0/22 maxlen: 24
203.113.128.0/19 maxlen: 24
203.113.160.0/21 maxlen: 24
203.113.168.0/22 maxlen: 24
203.113.176.0/20 maxlen: 24
220.231.64.0/24 maxlen: 24
220.231.66.0/23 maxlen: 24
220.231.68.0/22 maxlen: 24
220.231.72.0/21 maxlen: 24
220.231.80.0/20 maxlen: 24
220.231.96.0/20 maxlen: 24
220.231.112.0/21 maxlen: 24
220.231.120.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15352 (0x3bf8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Validity
Not Before: Feb 10 17:20:36 2023 GMT
Not After : Oct 31 00:00:00 2023 GMT
Subject: CN=63e67ce4-439d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e0:66:4e:bf:d4:bb:48:ec:c4:6e:ab:a1:68:
d3:de:52:49:1b:7d:a8:7a:8f:8f:28:64:1e:f1:b7:
08:9b:07:e1:aa:d2:f2:5e:40:c6:dd:de:2f:34:c9:
93:b3:c4:37:5a:08:74:50:44:8f:08:13:4f:5a:2e:
47:7c:c2:fc:3f:b2:bf:03:c1:41:d5:1a:34:a8:01:
33:8c:e1:c3:aa:2f:38:4d:76:98:be:f6:0b:91:59:
0d:0f:7c:7c:65:18:1b:ea:f8:7c:8e:e4:c4:b5:ce:
d1:d2:31:98:a6:fe:74:8f:7f:4e:89:46:71:4a:a0:
70:53:c2:3a:51:5a:24:e7:1d:00:35:28:ea:a3:51:
47:9b:07:a2:a1:ae:6a:79:12:98:7d:29:bd:df:d2:
ec:1d:7a:9d:ef:d8:aa:4b:cb:31:52:0a:58:cd:ff:
cd:8a:ab:b9:b9:30:73:76:c4:43:44:db:b6:2a:3f:
04:c0:a8:f2:af:c9:67:b1:74:5f:3e:f0:6d:a8:67:
12:3f:83:82:71:c0:43:bb:65:f2:6e:90:5a:12:3c:
ab:3d:6b:73:ab:4d:2e:ad:0e:0a:9a:a5:c2:38:3a:
5b:fa:75:70:b0:e1:8c:13:6f:f3:ff:43:29:af:c8:
cf:bb:e4:56:26:4b:62:12:dd:1b:b2:c4:de:08:e5:
6f:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:08:6F:AB:25:2D:66:26:41:4B:0E:32:5C:EB:76:7E:15:00:55:BF
X509v3 Authority Key Identifier:
keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/3B4945C2A96711EDA3280684C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
27.64.0.0-27.70.255.255
27.72.0.0/13
115.72.72.0/22
115.73.200.0/22
115.76.56.0/21
125.234.0.0-125.234.159.255
125.234.176.0-125.234.255.255
125.235.56.0/21
125.235.112.0/20
125.235.130.0-125.235.143.255
125.235.176.0/20
125.235.208.0/20
171.244.208.0/20
171.246.8.0/21
171.252.132.0-171.252.147.255
171.253.0.0-171.253.47.255
171.253.128.0-171.253.227.255
171.254.128.0/18
171.255.64.0-171.255.175.255
203.113.128.0-203.113.171.255
203.113.176.0/20
220.231.64.0/24
220.231.66.0-220.231.123.255
Signature Algorithm: sha256WithRSAEncryption
8a:25:4d:d5:4c:df:89:4e:b3:39:8a:27:ac:28:61:f1:8d:8a:
25:8e:02:26:3b:0b:c3:3b:af:5a:d8:a4:f7:88:50:46:39:fb:
88:28:70:66:85:d3:3c:91:1c:96:5f:e4:6b:51:7c:45:49:04:
eb:c9:8d:b3:2e:ae:02:d0:c9:a3:d7:9f:5e:b4:51:32:bb:99:
49:1a:a8:ee:84:2a:b1:12:f4:24:21:0d:73:3f:60:22:d9:41:
04:7c:4b:f4:9f:5f:ec:b2:b9:cc:ad:94:41:3d:32:0f:2d:d6:
ea:1b:bc:51:8a:75:40:b2:ea:91:57:63:28:3f:c1:e6:78:fd:
35:c6:59:7a:d0:53:a9:6e:f2:6e:75:80:c0:10:09:0d:cc:83:
19:79:5f:47:2c:9a:2c:4a:f7:c8:cb:48:52:f5:2f:ad:7e:51:
b3:c3:aa:b9:31:28:28:59:da:12:18:fb:2f:38:c8:9e:95:13:
1d:70:b4:2d:bd:cc:7d:98:a5:f3:a7:d5:8e:ee:1c:71:f6:7a:
40:bb:ee:e1:d9:17:c9:4c:d6:2b:57:a2:93:03:b9:e5:88:7e:
ad:32:b0:18:2b:cb:18:bf:ec:0a:8d:de:83:39:3d:41:2a:61:
75:c5:ef:fb:f1:2f:cf:f0:59:25:34:f0:39:5c:0f:46:d2:72:
0b:00:80:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:36 2024 by rpki-client on console-fra.rpki-client.org