Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/89459086C06111EC93514712C4F9AE02.roa
File: 89459086C06111EC93514712C4F9AE02.roa (raw, json)
Hash identifier: pxyf41IkdLypAF/f/r216R8HU182UPxDyODHdRe2u9A=
Subject key identifier: 03:BB:E8:E6:17:0D:5D:1A:71:A8:F9:DC:DD:FC:AC:BA:6D:A6:38:C2
Certificate issuer: /CN=A91D1691/serialNumber=7AC0C00F0FCA479EE465E4F7F545E8C94993D61C
Certificate serial: 21B4
Authority key identifier: 7A:C0:C0:0F:0F:CA:47:9E:E4:65:E4:F7:F5:45:E8:C9:49:93:D6:1C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/esDADw_KR57kZeT39UXoyUmT1hw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/89459086C06111EC93514712C4F9AE02.roa
Signing time: Mon 01 Aug 2022 16:42:26 +0000
ROA not before: Mon 01 Aug 2022 16:42:26 +0000
ROA not after: Tue 31 Oct 2023 00:00:00 +0000
asID: 45352
IP address blocks: 14.102.144.0/22 maxlen: 24
14.102.148.0/24 maxlen: 24
14.102.149.0/24 maxlen: 24
14.102.150.0/24 maxlen: 24
14.102.151.0/24 maxlen: 24
43.252.152.0/23 maxlen: 23
43.252.154.0/23 maxlen: 23
43.252.154.0/24 maxlen: 24
43.252.155.0/24 maxlen: 24
45.64.168.0/22 maxlen: 22
45.64.168.0/23 maxlen: 23
45.64.168.0/24 maxlen: 24
45.64.169.0/24 maxlen: 24
45.64.170.0/24 maxlen: 24
45.64.171.0/24 maxlen: 24
58.84.8.0/22 maxlen: 22
103.3.172.0/24 maxlen: 24
103.3.173.0/24 maxlen: 24
103.3.174.0/23 maxlen: 24
103.10.156.0/23 maxlen: 24
103.10.158.0/23 maxlen: 24
118.107.200.0/21 maxlen: 21
118.107.208.0/24 maxlen: 24
118.107.209.0/24 maxlen: 24
118.107.210.0/24 maxlen: 24
118.107.211.0/24 maxlen: 24
118.107.232.0/24 maxlen: 24
118.107.233.0/24 maxlen: 24
118.107.234.0/23 maxlen: 23
118.107.235.0/24 maxlen: 24
118.107.236.0/24 maxlen: 24
118.107.237.0/24 maxlen: 24
118.107.238.0/24 maxlen: 24
118.107.239.0/24 maxlen: 24
118.107.240.0/24 maxlen: 24
118.107.241.0/24 maxlen: 24
118.107.242.0/24 maxlen: 24
118.107.243.0/24 maxlen: 24
183.81.160.0/21 maxlen: 24
192.82.56.0/21 maxlen: 21
192.82.56.0/24 maxlen: 24
192.82.57.0/24 maxlen: 24
192.82.58.0/24 maxlen: 24
192.82.59.0/24 maxlen: 24
192.82.60.0/24 maxlen: 24
192.82.61.0/24 maxlen: 24
192.82.62.0/24 maxlen: 24
192.82.63.0/24 maxlen: 24
210.5.40.0/22 maxlen: 24
210.5.44.0/22 maxlen: 24
2401:3400::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8628 (0x21b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D1691/serialNumber=7AC0C00F0FCA479EE465E4F7F545E8C94993D61C
Validity
Not Before: Aug 1 16:42:26 2022 GMT
Not After : Oct 31 00:00:00 2023 GMT
Subject: CN=62e80272-f164
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:4b:cf:12:96:e6:ca:8f:2c:37:ec:66:4f:9b:
42:24:53:19:b3:b8:30:12:6c:5e:c7:54:86:15:5a:
53:fe:fb:96:85:53:07:ff:c3:a2:8a:10:ca:f7:a3:
66:6b:ed:0e:7a:a9:23:31:62:5e:22:a8:e9:af:b9:
45:54:dc:df:ae:19:c4:a2:f1:fc:92:a3:38:f4:4f:
eb:da:46:69:0f:28:a7:b4:2a:f7:e0:bb:15:fa:82:
e0:9b:d8:c1:f0:f0:f5:44:39:2f:c6:85:d9:0f:2a:
94:62:43:43:48:b0:98:5f:bb:8e:35:33:8c:f5:26:
17:cb:ef:d5:b1:d2:55:f0:a7:e1:24:7c:d6:cf:6b:
6d:9d:51:5e:56:18:18:83:db:8b:24:71:51:c2:68:
6f:b2:75:85:01:4e:b2:0c:7f:a3:62:34:12:c0:4b:
d3:8f:71:62:e3:ac:71:d8:08:2a:68:94:0f:4d:08:
65:f2:a3:07:b4:ba:c7:f0:50:64:be:68:0e:b2:06:
18:7c:c1:d3:f7:46:e7:92:e6:4c:bd:41:52:e2:20:
28:53:b8:c9:19:7b:94:9d:0a:9c:4c:97:b3:42:0e:
7b:cd:70:d1:89:a7:2f:8b:6d:05:25:8a:d8:8c:1b:
63:f2:15:19:11:6b:cd:63:86:73:5c:f1:71:19:df:
99:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:BB:E8:E6:17:0D:5D:1A:71:A8:F9:DC:DD:FC:AC:BA:6D:A6:38:C2
X509v3 Authority Key Identifier:
keyid:7A:C0:C0:0F:0F:CA:47:9E:E4:65:E4:F7:F5:45:E8:C9:49:93:D6:1C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/esDADw_KR57kZeT39UXoyUmT1hw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/89459086C06111EC93514712C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
14.102.144.0/21
43.252.152.0/22
45.64.168.0/22
58.84.8.0/22
103.3.172.0/22
103.10.156.0/22
118.107.200.0-118.107.211.255
118.107.232.0-118.107.243.255
183.81.160.0/21
192.82.56.0/21
210.5.40.0/21
IPv6:
2401:3400::/32
Signature Algorithm: sha256WithRSAEncryption
8e:ba:22:63:64:16:2f:6b:03:b3:cf:34:3a:87:7f:f6:58:68:
8a:f3:ca:51:4c:a2:f6:e7:b2:64:63:17:3e:75:e0:91:e5:18:
ec:51:8c:93:51:a3:15:0d:a2:31:49:ab:7a:65:07:6a:00:90:
d4:fa:e6:58:22:0e:75:d3:08:5f:c6:e8:bf:5a:7f:80:30:b6:
85:3d:fd:f6:b6:8d:3d:9e:38:ab:8a:78:07:85:b6:a4:6a:44:
ea:da:cf:f1:b6:65:69:28:ad:5d:71:a9:cd:2f:51:46:56:8b:
28:86:02:25:e7:bf:ad:9b:15:a1:73:a0:f8:45:90:0e:e8:09:
84:97:09:c3:4d:4e:a3:3f:99:1f:41:18:2b:61:04:31:c4:3d:
ee:6d:c8:71:8e:ce:c6:1b:a3:3d:1c:e1:06:35:c8:ec:91:dd:
85:c1:4e:b7:5f:19:1b:2a:1a:2e:93:c3:31:68:6a:03:a7:2c:
af:2d:77:37:f4:fa:d3:6e:a1:40:66:b5:d5:3d:8d:5e:dd:98:
83:3b:d0:e8:6c:da:37:7b:43:76:05:ac:69:5b:d4:1f:8f:da:
0d:5c:3c:10:cb:19:ed:8c:06:e0:9b:f9:14:93:cd:31:d3:76:
68:d5:89:3f:46:02:13:2f:4b:a5:01:c3:9b:a6:5c:c4:e4:91:
a2:60:99:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:29 2024 by rpki-client on console-ams.rpki-client.org