Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/617E8F22363211EB9C50E458C4F9AE02.roa
File: 617E8F22363211EB9C50E458C4F9AE02.roa (raw, json)
Hash identifier: jxx71ZfPFfqQu9tpLfwRoElLGgCY9fzUCD1dfeIhLgU=
Subject key identifier: 60:C5:BC:C0:45:A0:ED:58:8A:25:24:2D:B8:AD:91:6C:7F:72:3D:DD
Certificate issuer: /CN=A91B1185/serialNumber=FE3CD37CEC0E382307B4F9D5FFD57E97F121F053
Certificate serial: 0FF5
Authority key identifier: FE:3C:D3:7C:EC:0E:38:23:07:B4:F9:D5:FF:D5:7E:97:F1:21:F0:53
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/617E8F22363211EB9C50E458C4F9AE02.roa
Signing time: Mon 29 Mar 2021 05:42:51 +0000
ROA not before: Mon 29 Mar 2021 05:42:51 +0000
ROA not after: Fri 01 Jul 2022 00:00:00 +0000
asID: 24435
IP address blocks: 103.27.20.0/24 maxlen: 24
103.27.22.0/24 maxlen: 24
175.111.0.0/22 maxlen: 22
175.111.0.0/24 maxlen: 24
175.111.1.0/24 maxlen: 24
175.111.2.0/24 maxlen: 24
175.111.3.0/24 maxlen: 24
175.111.4.0/23 maxlen: 24
175.111.6.0/24 maxlen: 24
203.130.0.0/20 maxlen: 20
203.130.0.0/24 maxlen: 24
203.130.1.0/24 maxlen: 24
203.130.2.0/24 maxlen: 24
203.130.3.0/24 maxlen: 24
203.130.4.0/24 maxlen: 24
203.130.5.0/24 maxlen: 24
203.130.6.0/24 maxlen: 24
203.130.7.0/24 maxlen: 24
203.130.8.0/24 maxlen: 24
203.130.9.0/24 maxlen: 24
203.130.10.0/24 maxlen: 24
203.130.11.0/24 maxlen: 24
203.130.12.0/24 maxlen: 24
203.130.13.0/24 maxlen: 24
203.130.14.0/24 maxlen: 24
203.130.15.0/24 maxlen: 24
203.130.16.0/24 maxlen: 24
203.130.17.0/24 maxlen: 24
203.130.18.0/24 maxlen: 24
203.130.19.0/24 maxlen: 24
203.130.20.0/24 maxlen: 24
203.130.21.0/24 maxlen: 24
203.130.22.0/24 maxlen: 24
203.130.23.0/24 maxlen: 24
203.130.24.0/24 maxlen: 24
203.130.25.0/24 maxlen: 24
203.130.26.0/23 maxlen: 24
203.130.28.0/22 maxlen: 22
203.130.28.0/24 maxlen: 24
203.130.29.0/24 maxlen: 24
203.130.30.0/24 maxlen: 24
203.130.31.0/24 maxlen: 24
2001:fe8::/48 maxlen: 48
2001:fe8:1::/48 maxlen: 48
2001:fe8:2::/48 maxlen: 48
2001:fe8:10::/48 maxlen: 48
2001:fe8:4000::/48 maxlen: 48
2001:fe8:4001::/48 maxlen: 48
2001:fe8:4100::/48 maxlen: 48
2001:fe8:4101::/48 maxlen: 48
2001:fe8:8100::/48 maxlen: 48
2001:fe8:8101::/48 maxlen: 48
2001:fe8:8110::/48 maxlen: 48
2001:fe8:8111::/48 maxlen: 48
2001:fe8:8130::/48 maxlen: 48
2001:fe8:8131::/48 maxlen: 48
2001:fe8:c001::/48 maxlen: 48
2001:fe8:c100::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4085 (0xff5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B1185/serialNumber=FE3CD37CEC0E382307B4F9D5FFD57E97F121F053
Validity
Not Before: Mar 29 05:42:51 2021 GMT
Not After : Jul 1 00:00:00 2022 GMT
Subject: CN=606168db-915a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:27:69:a7:87:ca:61:45:e4:8a:77:ed:37:95:
98:d1:6f:73:0a:f9:35:95:e2:e5:d1:29:1a:66:69:
33:54:83:81:4f:0b:4a:54:87:36:0b:94:d1:06:f1:
0e:b6:6f:15:a7:95:b9:cc:81:72:cf:1e:88:15:81:
fb:00:f5:fa:8a:03:92:b5:83:7d:f6:38:49:28:a9:
12:bf:0b:04:c2:da:e2:8b:43:9e:83:d5:56:14:62:
ab:ca:44:3d:70:ef:aa:49:20:87:39:41:46:d2:23:
5a:b7:b1:93:7e:e1:c4:9c:50:c1:68:2f:1d:fc:3b:
65:0b:7e:74:15:43:0a:89:ce:34:d2:91:1e:b0:4b:
54:76:d1:e6:b1:e5:c6:83:1b:a3:28:81:35:55:b4:
02:f2:00:1c:da:88:5c:95:36:d8:69:26:4c:ce:b1:
f9:1e:a7:82:db:4e:43:7d:51:be:4e:bc:2f:3d:13:
7e:ac:2f:bf:60:c8:51:69:ee:94:46:72:4a:72:86:
1e:7e:97:74:87:9c:71:f1:3e:9e:a1:a9:43:61:17:
3f:51:79:d1:10:93:28:40:01:0e:65:2e:18:c1:29:
9d:cc:f3:89:68:81:3c:89:66:32:4b:b0:6e:9e:07:
f6:a1:e6:1e:67:64:62:27:a1:db:dc:49:40:7d:d9:
b7:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:C5:BC:C0:45:A0:ED:58:8A:25:24:2D:B8:AD:91:6C:7F:72:3D:DD
X509v3 Authority Key Identifier:
keyid:FE:3C:D3:7C:EC:0E:38:23:07:B4:F9:D5:FF:D5:7E:97:F1:21:F0:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/617E8F22363211EB9C50E458C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.27.20.0/24
103.27.22.0/24
175.111.0.0-175.111.6.255
203.130.0.0/19
IPv6:
2001:fe8::-2001:fe8:2:ffff:ffff:ffff:ffff:ffff
2001:fe8:10::/48
2001:fe8:4000::/47
2001:fe8:4100::/47
2001:fe8:8100::/47
2001:fe8:8110::/47
2001:fe8:8130::/47
2001:fe8:c001::/48
2001:fe8:c100::/48
Signature Algorithm: sha256WithRSAEncryption
aa:2e:04:61:60:c0:3a:6b:24:83:c0:d0:f9:8f:42:56:b5:14:
28:c3:d7:6d:13:59:46:ab:ff:6f:db:b5:c8:75:8a:13:09:77:
52:2c:00:32:8a:03:f0:10:d0:3f:b2:b0:fc:59:b3:e3:fd:a9:
99:7c:c0:00:00:4e:b8:f9:f4:61:cd:5b:8c:f5:97:86:34:ce:
28:ca:57:b9:8a:c9:59:ac:f8:52:b1:24:a8:fd:25:89:dd:8b:
4e:19:c0:aa:e9:24:28:9c:ab:4c:23:71:7e:74:e1:6f:f3:d5:
35:2a:57:68:b8:1e:13:41:fe:46:ec:f3:df:8b:e6:0b:35:3c:
29:21:35:8f:76:14:04:14:4c:b4:8e:b6:7b:ac:d1:5a:a2:21:
e2:1c:e3:02:61:1f:f6:42:89:f9:0f:6e:64:f7:92:ff:f5:24:
ea:8f:67:eb:44:19:17:ed:03:5f:39:30:1f:79:10:44:3a:07:
f9:1e:6c:03:4f:86:28:b6:73:9e:3e:83:f5:2d:87:77:a1:09:
41:d0:89:92:c9:a5:53:5a:e8:b6:a0:35:49:3e:9e:ba:88:09:
38:31:40:ac:74:be:5d:6d:bd:de:ce:a1:7a:74:21:51:8c:46:
c6:44:64:5a:09:a3:0c:f9:8a:7e:f2:c7:53:2a:80:27:28:cb:
8c:7d:31:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:04 2023 by rpki-client on console-fra.rpki-client.org