Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/B416B9D4893F11EBAABF1225C4F9AE02.roa
File: B416B9D4893F11EBAABF1225C4F9AE02.roa (raw, json)
Hash identifier: 7CL437idBHIW7EMCyAt/TZ5PVUCIGJfloAhpw0k6vcU=
Subject key identifier: 3C:E3:B5:03:E5:53:42:C4:C1:46:D2:DE:AB:2C:CD:AB:FD:1F:2F:C2
Certificate issuer: /CN=A91DC31B/serialNumber=8B8AD5CA1C3E8B8CF468B5F496A91ABB0E48CFA8
Certificate serial: 0453
Authority key identifier: 8B:8A:D5:CA:1C:3E:8B:8C:F4:68:B5:F4:96:A9:1A:BB:0E:48:CF:A8
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i4rVyhw-i4z0aLX0lqkauw5Iz6g.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/B416B9D4893F11EBAABF1225C4F9AE02.roa
Signing time: Wed 17 Aug 2022 09:41:12 +0000
ROA not before: Wed 17 Aug 2022 09:41:12 +0000
ROA not after: Fri 31 Mar 2023 00:00:00 +0000
asID: 38166
IP address blocks: 166.81.5.0/24 maxlen: 24
166.81.9.0/24 maxlen: 24
166.81.10.0/24 maxlen: 24
166.81.11.0/24 maxlen: 24
166.81.12.0/24 maxlen: 24
166.81.13.0/24 maxlen: 24
166.81.14.0/24 maxlen: 24
166.81.15.0/24 maxlen: 24
166.81.16.0/24 maxlen: 24
166.81.17.0/24 maxlen: 24
166.81.18.0/24 maxlen: 24
166.81.19.0/24 maxlen: 24
166.81.20.0/24 maxlen: 24
166.81.21.0/24 maxlen: 24
166.81.22.0/24 maxlen: 24
166.81.23.0/24 maxlen: 24
166.81.24.0/24 maxlen: 24
166.81.25.0/24 maxlen: 24
166.81.26.0/24 maxlen: 24
166.81.27.0/24 maxlen: 24
166.81.28.0/24 maxlen: 24
166.81.29.0/24 maxlen: 24
166.81.30.0/24 maxlen: 24
166.81.33.0/24 maxlen: 24
166.81.34.0/24 maxlen: 24
166.81.35.0/24 maxlen: 24
166.81.38.0/24 maxlen: 24
166.81.39.0/24 maxlen: 24
166.81.40.0/24 maxlen: 24
166.81.51.0/24 maxlen: 24
166.81.52.0/24 maxlen: 24
166.81.53.0/24 maxlen: 24
166.81.54.0/24 maxlen: 24
166.81.55.0/24 maxlen: 24
166.81.56.0/24 maxlen: 24
166.81.57.0/24 maxlen: 24
166.81.58.0/24 maxlen: 24
166.81.59.0/24 maxlen: 24
166.81.60.0/24 maxlen: 24
166.81.61.0/24 maxlen: 24
166.81.65.0/24 maxlen: 24
166.81.66.0/24 maxlen: 24
166.81.67.0/24 maxlen: 24
166.81.68.0/24 maxlen: 24
166.81.69.0/24 maxlen: 24
166.81.70.0/24 maxlen: 24
166.81.246.0/24 maxlen: 24
166.81.247.0/24 maxlen: 24
166.81.248.0/24 maxlen: 24
166.81.249.0/24 maxlen: 24
166.81.250.0/24 maxlen: 24
166.81.251.0/24 maxlen: 24
166.81.252.0/24 maxlen: 24
166.81.253.0/24 maxlen: 24
166.81.254.0/24 maxlen: 24
166.81.255.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1107 (0x453)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DC31B/serialNumber=8B8AD5CA1C3E8B8CF468B5F496A91ABB0E48CFA8
Validity
Not Before: Aug 17 09:41:12 2022 GMT
Not After : Mar 31 00:00:00 2023 GMT
Subject: CN=62fcb7b8-3d16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:9b:ce:2a:47:b7:d7:04:e2:56:d4:c7:75:57:
b4:dd:17:c6:c7:9f:c7:9c:3c:f2:23:be:57:c5:9b:
c0:60:9a:b2:16:14:c0:49:d7:92:2b:96:8a:a3:f1:
e2:6e:b8:61:44:03:16:69:f6:17:df:d5:22:33:d3:
87:94:4a:cf:c3:4f:da:e2:23:a1:97:e7:f1:f5:e9:
b3:58:78:22:77:fd:62:6b:4b:bc:c5:14:5c:23:21:
6b:cb:77:d7:5a:f3:bf:90:fa:6a:1b:de:b0:fa:31:
91:a7:56:56:78:f9:75:a2:49:74:99:a7:f2:e2:d6:
a2:ee:70:f5:bf:98:c0:42:28:ca:e3:49:fc:15:97:
54:95:28:22:8c:96:10:76:43:fb:b6:9a:9f:07:04:
c6:b2:4e:80:a5:7e:49:0c:f4:b4:5c:64:5b:ac:1d:
a5:c5:d1:fe:b9:f4:b7:1b:fa:88:f6:62:4a:8f:23:
5c:45:55:68:bd:01:7b:7b:c7:d4:e5:a8:ca:8a:68:
55:88:df:bb:b2:7b:8f:8d:fe:6f:6f:31:7d:f9:74:
1a:59:10:6c:c9:8a:32:63:79:b9:f8:7a:de:59:cc:
0f:fe:d0:f8:70:b8:1d:7d:11:7e:13:22:57:10:32:
a7:f6:00:5f:e8:e0:5a:d8:99:19:bf:b3:44:0e:bf:
9f:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:E3:B5:03:E5:53:42:C4:C1:46:D2:DE:AB:2C:CD:AB:FD:1F:2F:C2
X509v3 Authority Key Identifier:
keyid:8B:8A:D5:CA:1C:3E:8B:8C:F4:68:B5:F4:96:A9:1A:BB:0E:48:CF:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/i4rVyhw-i4z0aLX0lqkauw5Iz6g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i4rVyhw-i4z0aLX0lqkauw5Iz6g.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/B416B9D4893F11EBAABF1225C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
166.81.5.0/24
166.81.9.0-166.81.30.255
166.81.33.0-166.81.35.255
166.81.38.0-166.81.40.255
166.81.51.0-166.81.61.255
166.81.65.0-166.81.70.255
166.81.246.0-166.81.255.255
Signature Algorithm: sha256WithRSAEncryption
92:f4:30:52:64:f6:1b:89:32:97:cf:36:d9:b0:a9:c6:6d:a0:
46:ae:99:b5:88:15:7b:d8:61:5c:57:4a:63:df:71:a8:49:69:
79:fc:13:33:6a:3e:15:e7:5f:31:41:fe:13:13:ad:1e:11:49:
ae:44:7b:1f:44:f5:04:a5:7e:09:eb:ef:e0:b8:fc:9e:e4:bc:
13:97:4d:7f:b8:29:9e:7a:08:29:0f:e4:5c:12:89:86:e2:7a:
03:59:d2:8f:25:f2:87:5c:97:fe:02:a1:e4:d2:0b:45:56:30:
20:7c:03:09:da:47:75:3b:41:50:30:ed:d1:74:03:32:e1:4c:
14:df:de:dc:bf:9a:8b:96:fe:4c:63:d3:8b:33:e6:6c:80:93:
00:6c:cd:6a:09:ec:c5:17:82:04:cc:bb:eb:62:d2:e7:0e:ac:
f6:d0:c1:b5:c7:88:3d:c1:6e:60:eb:37:3a:c1:d8:d4:3b:2f:
ec:9e:9a:38:08:9b:1e:14:23:cd:5d:3f:75:83:d8:ce:cd:6a:
9f:eb:16:23:bf:5a:47:96:8f:b4:7a:30:82:bf:88:c0:45:11:
46:4d:fd:1d:af:d7:fa:6b:b0:c0:af:18:92:f9:18:1f:f9:cd:
c7:50:57:92:46:e0:d5:ed:cc:aa:99:0e:52:f7:ad:fc:ee:c8:
ca:af:e2:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:43 2024 by rpki-client on console-fra.rpki-client.org