Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/5728351E7D0C11ED8D3F2B30C4F9AE02.roa
File: 5728351E7D0C11ED8D3F2B30C4F9AE02.roa (raw, json)
Hash identifier: 8mIVrzEB6anRxLxM823jqAnkhnTYSlbL0YOvdCw68CU=
Subject key identifier: C9:87:70:7E:D8:A9:87:06:4C:41:E8:86:0B:F7:1F:A7:AF:1C:02:E0
Certificate issuer: /CN=A91DF93A/serialNumber=7E244310D7A456EB127B926C42F26D79E9ACDB88
Certificate serial: 068A
Authority key identifier: 7E:24:43:10:D7:A4:56:EB:12:7B:92:6C:42:F2:6D:79:E9:AC:DB:88
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/5728351E7D0C11ED8D3F2B30C4F9AE02.roa
Signing time: Fri 16 Dec 2022 06:39:07 +0000
ROA not before: Fri 16 Dec 2022 06:39:07 +0000
ROA not after: Thu 31 Aug 2023 00:00:00 +0000
asID: 10122
IP address blocks: 169.136.68.0/24 maxlen: 24
169.136.71.0/24 maxlen: 24
169.136.73.0/24 maxlen: 24
169.136.74.0/24 maxlen: 24
169.136.75.0/24 maxlen: 24
169.136.76.0/24 maxlen: 24
169.136.77.0/24 maxlen: 24
169.136.78.0/24 maxlen: 24
169.136.79.0/24 maxlen: 24
169.136.80.0/24 maxlen: 24
169.136.81.0/24 maxlen: 24
169.136.82.0/24 maxlen: 24
169.136.83.0/24 maxlen: 24
169.136.84.0/24 maxlen: 24
169.136.85.0/24 maxlen: 24
169.136.86.0/24 maxlen: 24
169.136.87.0/24 maxlen: 24
169.136.88.0/23 maxlen: 23
169.136.88.0/24 maxlen: 24
169.136.89.0/24 maxlen: 24
169.136.90.0/24 maxlen: 24
169.136.91.0/24 maxlen: 24
169.136.92.0/24 maxlen: 24
169.136.93.0/24 maxlen: 24
169.136.94.0/24 maxlen: 24
169.136.95.0/24 maxlen: 24
169.136.96.0/24 maxlen: 24
169.136.97.0/24 maxlen: 24
169.136.98.0/24 maxlen: 24
169.136.99.0/24 maxlen: 24
169.136.100.0/24 maxlen: 24
169.136.101.0/24 maxlen: 24
169.136.102.0/24 maxlen: 24
169.136.103.0/24 maxlen: 24
169.136.104.0/24 maxlen: 24
169.136.105.0/24 maxlen: 24
169.136.106.0/24 maxlen: 24
169.136.107.0/24 maxlen: 24
169.136.108.0/24 maxlen: 24
169.136.110.0/24 maxlen: 24
169.136.111.0/24 maxlen: 24
169.136.112.0/24 maxlen: 24
169.136.113.0/24 maxlen: 24
169.136.114.0/24 maxlen: 24
169.136.115.0/24 maxlen: 24
169.136.116.0/24 maxlen: 24
169.136.117.0/24 maxlen: 24
169.136.118.0/24 maxlen: 24
169.136.119.0/24 maxlen: 24
169.136.121.0/24 maxlen: 24
169.136.123.0/24 maxlen: 24
169.136.124.0/24 maxlen: 24
169.136.125.0/24 maxlen: 24
169.136.126.0/24 maxlen: 24
169.136.127.0/24 maxlen: 24
169.136.128.0/24 maxlen: 24
169.136.129.0/24 maxlen: 24
169.136.130.0/24 maxlen: 24
169.136.136.0/24 maxlen: 24
169.136.144.0/24 maxlen: 24
169.136.155.0/24 maxlen: 24
169.136.156.0/24 maxlen: 24
169.136.157.0/24 maxlen: 24
169.136.158.0/24 maxlen: 24
169.136.159.0/24 maxlen: 24
169.136.160.0/24 maxlen: 24
169.136.161.0/24 maxlen: 24
169.136.162.0/24 maxlen: 24
169.136.163.0/24 maxlen: 24
169.136.164.0/24 maxlen: 24
169.136.165.0/24 maxlen: 24
169.136.166.0/24 maxlen: 24
169.136.167.0/24 maxlen: 24
169.136.168.0/24 maxlen: 24
169.136.169.0/24 maxlen: 24
169.136.170.0/24 maxlen: 24
169.136.171.0/24 maxlen: 24
169.136.172.0/24 maxlen: 24
169.136.173.0/24 maxlen: 24
169.136.174.0/24 maxlen: 24
169.136.175.0/24 maxlen: 24
169.136.176.0/24 maxlen: 24
169.136.177.0/24 maxlen: 24
169.136.178.0/24 maxlen: 24
169.136.179.0/24 maxlen: 24
169.136.180.0/24 maxlen: 24
169.136.181.0/24 maxlen: 24
169.136.182.0/24 maxlen: 24
169.136.183.0/24 maxlen: 24
169.136.184.0/24 maxlen: 24
169.136.185.0/24 maxlen: 24
169.136.186.0/24 maxlen: 24
169.136.187.0/24 maxlen: 24
169.136.188.0/24 maxlen: 24
169.136.189.0/24 maxlen: 24
169.136.190.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1674 (0x68a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DF93A/serialNumber=7E244310D7A456EB127B926C42F26D79E9ACDB88
Validity
Not Before: Dec 16 06:39:07 2022 GMT
Not After : Aug 31 00:00:00 2023 GMT
Subject: CN=639c128b-ffe6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:9a:e1:04:32:aa:9d:ff:78:b3:3f:b8:9d:0b:
86:9a:39:52:10:95:a7:d8:d7:62:91:f1:90:b1:e6:
ce:fa:e8:f5:c1:6a:8b:bf:3a:ac:0d:22:b0:0d:9e:
a7:2a:fd:9a:5d:63:da:49:e6:4f:2d:8b:c2:96:ae:
51:6a:19:87:95:cb:b2:8c:9a:73:f1:12:55:11:b6:
0e:ae:fe:34:fb:cf:bc:f2:ac:15:d5:27:05:56:d6:
62:6d:0a:6b:3b:7c:2d:78:df:64:25:b5:89:ff:0a:
9b:f2:6a:fe:0a:1a:1c:59:9a:88:58:81:6b:6e:3d:
ec:83:a3:f5:86:b9:9e:79:5a:83:9e:4d:4b:c2:6e:
d2:58:c5:44:a7:43:d7:aa:a8:4a:2b:d9:69:71:67:
3a:8d:db:d2:8c:90:10:66:52:ac:d0:ea:bd:6b:07:
02:48:b2:68:00:57:ff:9f:cf:e3:60:21:56:2d:59:
85:64:b6:d6:98:f6:2d:7d:36:70:04:de:07:c1:9c:
ec:c4:43:94:ec:3d:35:73:1e:6e:0f:81:d1:5c:87:
f5:1f:a1:82:70:d8:c2:13:9b:c5:3e:79:6e:54:be:
62:65:eb:0d:7d:8c:a6:54:da:86:0c:8d:43:1e:e3:
52:b6:2e:e2:0d:03:17:f3:37:7f:91:92:97:f2:b2:
cf:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:87:70:7E:D8:A9:87:06:4C:41:E8:86:0B:F7:1F:A7:AF:1C:02:E0
X509v3 Authority Key Identifier:
keyid:7E:24:43:10:D7:A4:56:EB:12:7B:92:6C:42:F2:6D:79:E9:AC:DB:88
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/fiRDENekVusSe5JsQvJteems24g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/5728351E7D0C11ED8D3F2B30C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
169.136.68.0/24
169.136.71.0/24
169.136.73.0-169.136.108.255
169.136.110.0-169.136.119.255
169.136.121.0/24
169.136.123.0-169.136.130.255
169.136.136.0/24
169.136.144.0/24
169.136.155.0-169.136.190.255
Signature Algorithm: sha256WithRSAEncryption
95:19:89:4f:cb:f5:fb:d3:87:df:dd:97:d1:16:d4:7e:5b:07:
8d:db:fe:31:77:7f:9c:3f:58:1d:e3:d8:af:85:db:e0:80:eb:
58:44:13:9b:f2:11:43:29:72:88:15:79:7e:60:b5:1e:8d:cf:
90:63:b3:50:22:23:0d:6f:25:70:eb:dc:6f:a2:58:1c:de:3b:
f9:b4:9b:b4:67:a5:c0:97:bb:74:09:37:83:e0:9f:59:9b:dc:
de:c0:ea:32:0b:7f:cd:f9:09:c4:26:76:16:0f:54:3b:43:69:
57:9e:5f:31:ac:23:93:80:29:40:e9:ce:03:37:71:9e:be:87:
dc:db:c7:2c:59:db:c6:7b:b2:f2:62:55:08:4b:0e:ae:00:ac:
fe:db:3c:1d:b2:00:fe:b2:ff:cf:db:fe:58:57:3e:69:51:c8:
06:37:41:8b:47:53:04:5c:7a:0d:ae:94:2f:d6:d6:f9:c0:f0:
8c:e3:3a:15:68:d0:15:21:88:46:a4:0a:c3:76:08:52:c9:0a:
9a:5e:be:6a:da:a3:35:9a:1b:ea:dc:cc:11:98:4e:18:41:4c:
56:0b:21:04:c3:c6:0b:0e:3c:c9:e8:3d:42:40:23:e8:65:01:
f8:c0:8b:40:62:60:5c:62:00:77:0e:a9:46:63:4a:a9:61:76:
45:da:9b:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:43 2024 by rpki-client on console-fra.rpki-client.org