Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/823861F44E7B11ECB4A55D83C4F9AE02.roa
File: 823861F44E7B11ECB4A55D83C4F9AE02.roa (raw, json)
Hash identifier: s1IK49d+97l3I+JpphtP0vjL0O5eTd2E4FjyzVk0KP8=
Subject key identifier: 26:C7:B2:10:8A:74:4A:50:2E:B0:26:3C:19:09:7A:AD:55:28:EA:11
Certificate issuer: /CN=A91CD39D/serialNumber=56B983E46BCBA115FF2265FE491909C7D74147F3
Certificate serial: 0345
Authority key identifier: 56:B9:83:E4:6B:CB:A1:15:FF:22:65:FE:49:19:09:C7:D7:41:47:F3
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrmD5GvLoRX_ImX-SRkJx9dBR_M.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/823861F44E7B11ECB4A55D83C4F9AE02.roa
Signing time: Sat 18 Feb 2023 14:03:13 +0000
ROA not before: Sat 18 Feb 2023 14:03:13 +0000
ROA not after: Fri 01 Dec 2023 00:00:00 +0000
asID: 55644
IP address blocks: 103.9.73.0/24 maxlen: 24
223.196.0.0/24 maxlen: 24
223.196.1.0/24 maxlen: 24
223.196.2.0/24 maxlen: 24
223.196.3.0/24 maxlen: 24
223.196.4.0/24 maxlen: 24
223.196.6.0/24 maxlen: 24
223.196.7.0/24 maxlen: 24
223.196.9.0/24 maxlen: 24
223.196.11.0/24 maxlen: 24
223.196.12.0/24 maxlen: 24
223.196.13.0/24 maxlen: 24
223.196.14.0/24 maxlen: 24
223.196.15.0/24 maxlen: 24
223.196.16.0/24 maxlen: 24
223.196.17.0/24 maxlen: 24
223.196.21.0/24 maxlen: 24
223.196.32.0/24 maxlen: 24
223.196.33.0/24 maxlen: 24
223.196.43.0/24 maxlen: 24
223.196.44.0/24 maxlen: 24
223.196.45.0/24 maxlen: 24
223.196.46.0/24 maxlen: 24
223.196.50.0/24 maxlen: 24
223.196.51.0/24 maxlen: 24
223.196.53.0/24 maxlen: 24
223.196.54.0/24 maxlen: 24
223.196.55.0/24 maxlen: 24
223.196.56.0/23 maxlen: 23
223.196.57.0/24 maxlen: 24
223.196.58.0/24 maxlen: 24
223.196.59.0/24 maxlen: 24
223.196.60.0/24 maxlen: 24
223.196.61.0/24 maxlen: 24
223.196.62.0/24 maxlen: 24
223.196.63.0/24 maxlen: 24
223.196.64.0/24 maxlen: 24
223.196.65.0/24 maxlen: 24
223.196.66.0/24 maxlen: 24
223.196.67.0/24 maxlen: 24
223.196.68.0/24 maxlen: 24
223.196.69.0/24 maxlen: 24
223.196.70.0/24 maxlen: 24
223.196.71.0/24 maxlen: 24
223.196.72.0/24 maxlen: 24
223.196.73.0/24 maxlen: 24
223.196.74.0/24 maxlen: 24
223.196.75.0/24 maxlen: 24
223.196.76.0/24 maxlen: 24
223.196.77.0/24 maxlen: 24
223.196.78.0/24 maxlen: 24
223.196.79.0/24 maxlen: 24
223.196.80.0/24 maxlen: 24
223.196.81.0/24 maxlen: 24
223.196.82.0/24 maxlen: 24
223.196.83.0/24 maxlen: 24
223.196.84.0/24 maxlen: 24
223.196.85.0/24 maxlen: 24
223.196.86.0/24 maxlen: 24
223.196.87.0/24 maxlen: 24
223.196.88.0/24 maxlen: 24
223.196.89.0/24 maxlen: 24
223.196.90.0/24 maxlen: 24
223.196.91.0/24 maxlen: 24
223.196.92.0/24 maxlen: 24
223.196.93.0/24 maxlen: 24
223.196.94.0/24 maxlen: 24
223.196.95.0/24 maxlen: 24
223.196.96.0/24 maxlen: 24
223.196.97.0/24 maxlen: 24
223.196.98.0/24 maxlen: 24
223.196.99.0/24 maxlen: 24
223.196.100.0/24 maxlen: 24
223.196.101.0/24 maxlen: 24
223.196.102.0/24 maxlen: 24
223.196.112.0/24 maxlen: 24
223.196.113.0/24 maxlen: 24
223.196.114.0/24 maxlen: 24
223.196.115.0/24 maxlen: 24
223.196.116.0/24 maxlen: 24
223.196.144.0/24 maxlen: 24
223.196.145.0/24 maxlen: 24
223.196.146.0/24 maxlen: 24
223.196.147.0/24 maxlen: 24
223.196.148.0/24 maxlen: 24
223.196.149.0/24 maxlen: 24
223.196.150.0/24 maxlen: 24
223.196.151.0/24 maxlen: 24
223.196.152.0/24 maxlen: 24
223.196.153.0/24 maxlen: 24
223.196.154.0/24 maxlen: 24
223.196.155.0/24 maxlen: 24
2400:c700::/32 maxlen: 32
2400:c700::/48 maxlen: 48
2400:c700:3::/48 maxlen: 48
2400:c700:4::/48 maxlen: 48
2400:c700:6::/48 maxlen: 48
2400:c700:7::/48 maxlen: 48
2400:c700:8::/48 maxlen: 48
2400:c700:10::/48 maxlen: 48
2400:c700:80::/48 maxlen: 48
2400:c700:81::/48 maxlen: 48
2400:c700:82::/48 maxlen: 48
2400:c700:83::/48 maxlen: 48
2400:c700:85::/48 maxlen: 48
2400:c700:86::/48 maxlen: 48
2400:c700:87::/48 maxlen: 48
2400:c700:100::/48 maxlen: 48
2400:c700:101::/48 maxlen: 48
2400:c700:102::/48 maxlen: 48
2400:c700:103::/48 maxlen: 48
2400:c700:104::/48 maxlen: 48
2400:c700:105::/48 maxlen: 48
2400:c700:180::/48 maxlen: 48
2400:c700:182::/48 maxlen: 48
2400:c700:183::/48 maxlen: 48
2400:c700:185::/48 maxlen: 48
2400:c700:186::/48 maxlen: 48
2400:c700:187::/48 maxlen: 48
2400:c700:200::/48 maxlen: 48
2400:c700:201::/48 maxlen: 48
2400:c700:202::/48 maxlen: 48
2400:c700:203::/48 maxlen: 48
2400:c700:204::/48 maxlen: 48
2400:c700:205::/48 maxlen: 48
2400:c700:280::/48 maxlen: 48
2400:c700:281::/48 maxlen: 48
2400:c700:282::/48 maxlen: 48
2400:c700:380::/48 maxlen: 48
2400:c700:1000::/36 maxlen: 36
2400:c700:1080::/48 maxlen: 48
2400:c700:1081::/48 maxlen: 48
2400:c700:1085::/48 maxlen: 48
2400:c700:1100::/48 maxlen: 48
2400:c700:1101::/48 maxlen: 48
2400:c700:1102::/48 maxlen: 48
2400:c700:1103::/48 maxlen: 48
2400:c700:1181::/48 maxlen: 48
2400:c700:1182::/48 maxlen: 48
2400:c700:1183::/48 maxlen: 48
2400:c700:1200::/48 maxlen: 48
2400:c700:1201::/48 maxlen: 48
2400:c700:1202::/48 maxlen: 48
2400:c700:1280::/48 maxlen: 48
2400:c700:1281::/48 maxlen: 48
2400:c700:1301::/48 maxlen: 48
2400:c700:2000::/48 maxlen: 48
2400:c700:3001::/48 maxlen: 48
2400:c700:4000::/48 maxlen: 48
2400:c700:4001::/48 maxlen: 48
2400:c700:5000::/48 maxlen: 48
2400:c700:9000::/48 maxlen: 48
2400:c700:a000::/48 maxlen: 48
2400:c700:b000::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 837 (0x345)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CD39D/serialNumber=56B983E46BCBA115FF2265FE491909C7D74147F3
Validity
Not Before: Feb 18 14:03:13 2023 GMT
Not After : Dec 1 00:00:00 2023 GMT
Subject: CN=63f0daa0-3005
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ca:72:80:fd:4f:97:e6:34:89:0a:79:25:69:
bc:2b:f4:be:31:14:a8:f9:31:7d:d5:34:fb:63:0f:
7e:9b:ea:80:fa:be:69:51:c7:5e:b4:9e:2a:2b:c5:
c7:f3:86:a9:57:11:4b:14:d9:db:63:80:a7:c6:d7:
f8:a7:81:06:28:bf:6d:a9:5d:73:1b:8a:5b:d0:07:
71:94:b5:40:93:eb:d2:1b:a6:12:2d:b1:c3:29:13:
bc:8a:b6:01:f1:41:9b:26:5b:e1:16:10:be:62:00:
0c:d6:75:82:35:c6:6b:9a:1e:e7:43:71:17:c9:59:
ee:a6:66:69:7d:b1:57:37:3d:ec:d3:7b:ad:93:30:
fb:fd:24:2c:6b:35:38:f2:fe:22:16:b4:38:05:6d:
e9:f0:e7:6e:6c:da:b0:e7:34:d2:49:27:21:fe:28:
94:79:88:62:e8:9a:99:70:8f:f7:38:59:b4:d3:c4:
5f:85:85:d3:81:e2:a6:a0:b9:45:ca:2f:2d:6b:fa:
28:b2:cb:ce:f9:dd:6d:11:06:a1:80:fd:da:35:0d:
eb:2f:3c:21:71:50:04:b0:8d:42:da:ff:61:ea:c0:
9b:b9:53:a1:19:19:3a:db:7d:ad:b7:f5:5d:f6:93:
f4:a3:73:30:26:15:58:0d:e6:af:e8:a2:7a:cf:30:
8c:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:C7:B2:10:8A:74:4A:50:2E:B0:26:3C:19:09:7A:AD:55:28:EA:11
X509v3 Authority Key Identifier:
keyid:56:B9:83:E4:6B:CB:A1:15:FF:22:65:FE:49:19:09:C7:D7:41:47:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/VrmD5GvLoRX_ImX-SRkJx9dBR_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrmD5GvLoRX_ImX-SRkJx9dBR_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/823861F44E7B11ECB4A55D83C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.9.73.0/24
223.196.0.0-223.196.4.255
223.196.6.0/23
223.196.9.0/24
223.196.11.0-223.196.17.255
223.196.21.0/24
223.196.32.0/23
223.196.43.0-223.196.46.255
223.196.50.0/23
223.196.53.0-223.196.102.255
223.196.112.0-223.196.116.255
223.196.144.0-223.196.155.255
IPv6:
2400:c700::/32
Signature Algorithm: sha256WithRSAEncryption
35:16:d9:ef:a9:4d:a0:85:c0:39:1f:cd:37:cf:da:48:99:0d:
c8:1c:5a:25:ed:9d:b0:d2:f7:11:1f:ad:74:15:8b:05:45:99:
6c:22:5c:19:75:9b:03:bd:93:36:c2:43:97:94:0e:80:66:b9:
ab:5e:0d:60:de:ac:1a:ff:9f:84:76:b1:07:eb:bd:90:e3:23:
ae:be:1d:f0:0d:88:0d:87:49:e3:e7:36:23:77:39:35:c1:2e:
a9:f6:1c:f2:f6:de:ce:e2:28:92:7a:9e:49:d8:63:51:6a:a3:
81:be:e6:e7:1d:b7:72:e9:19:aa:b0:f6:55:1c:be:d1:eb:51:
56:5a:6e:c2:9b:88:07:44:c6:b6:66:d0:fa:d7:a4:63:ce:b2:
0f:ad:6f:1a:53:32:77:92:4e:58:bc:fa:08:6f:c3:96:27:c6:
5e:9a:9b:39:f9:2f:5f:ae:81:19:d7:03:c8:53:aa:4d:d9:d4:
7d:30:e3:04:81:a5:fb:cc:8b:a2:dd:a8:69:34:e4:53:ee:2b:
84:15:01:eb:1c:24:c6:51:ca:6b:3d:af:3f:17:b4:39:0a:27:
23:45:4b:ab:23:06:5d:24:76:56:f0:7e:56:fd:05:99:90:78:
13:81:d1:6a:45:e8:ac:41:9d:0e:80:35:4f:5c:38:4b:9b:cb:
b7:c3:38:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:27 2024 by rpki-client on console-ams.rpki-client.org