Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/4E2FF934B59711EC9D6E426DC4F9AE02.roa
File: 4E2FF934B59711EC9D6E426DC4F9AE02.roa (raw, json)
Hash identifier: yKC4cPSv/VxzC5h297tGGUPY4KnBtz0o6bHRnkLIaQQ=
Subject key identifier: 8B:B4:3C:79:46:43:9F:A3:78:E5:AB:32:E8:50:1E:36:33:BB:8E:C7
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 06D7
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/4E2FF934B59711EC9D6E426DC4F9AE02.roa
Signing time: Wed 06 Apr 2022 10:50:00 +0000
ROA not before: Wed 06 Apr 2022 10:50:00 +0000
ROA not after: Sat 30 Jul 2022 00:00:00 +0000
asID: 38547
IP address blocks: 115.167.56.0/21 maxlen: 24
115.167.72.0/22 maxlen: 24
115.167.76.0/24 maxlen: 24
115.167.104.0/22 maxlen: 24
175.110.64.0/22 maxlen: 24
175.110.68.0/22 maxlen: 24
175.110.72.0/22 maxlen: 24
175.110.80.0/21 maxlen: 24
175.110.88.0/22 maxlen: 24
175.110.99.0/24 maxlen: 24
175.110.104.0/24 maxlen: 24
175.110.107.2/32 maxlen: 32
175.110.107.14/32 maxlen: 32
175.110.107.114/32 maxlen: 32
175.110.108.0/22 maxlen: 23
175.110.108.0/23 maxlen: 24
175.110.110.0/24 maxlen: 24
202.92.16.0/24 maxlen: 24
202.92.17.0/24 maxlen: 24
202.92.18.0/24 maxlen: 24
202.92.19.0/24 maxlen: 24
202.92.20.0/24 maxlen: 24
202.92.21.0/24 maxlen: 24
202.92.22.0/24 maxlen: 24
202.92.23.0/24 maxlen: 24
202.92.24.0/24 maxlen: 24
202.92.24.32/27 maxlen: 27
202.92.25.0/24 maxlen: 24
202.92.26.0/24 maxlen: 24
202.92.27.0/24 maxlen: 24
202.92.28.0/24 maxlen: 24
202.92.29.0/24 maxlen: 24
202.92.30.0/24 maxlen: 24
202.92.31.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1751 (0x6d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Apr 6 10:50:00 2022 GMT
Not After : Jul 30 00:00:00 2022 GMT
Subject: CN=624d7058-e0e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:f9:5b:59:0f:43:8e:b1:c3:39:a4:49:52:2b:
0a:a0:fc:a0:19:53:94:d5:87:24:a9:25:ea:fa:e4:
0b:9c:81:bf:a0:1f:51:64:65:86:05:a7:88:d9:58:
96:48:27:d0:90:68:74:42:cf:24:51:2a:99:c8:2c:
38:32:b5:8e:76:34:5a:27:1a:94:7d:4b:33:d3:25:
03:44:76:01:41:5b:e8:de:74:48:16:f6:1a:9a:0f:
86:dd:7a:b1:a4:e9:59:0d:02:9e:50:ef:f6:a0:ad:
ea:88:18:df:6c:dc:b4:fc:22:b8:f2:62:a4:a3:77:
a4:93:97:96:a6:79:31:45:d1:7f:f6:1e:a7:1a:b9:
a5:02:3d:45:62:e1:51:e8:fd:3a:0e:88:fe:fb:4d:
20:00:60:32:33:f8:f6:9c:39:1f:bf:a4:6f:8b:49:
0e:4c:78:f3:44:92:e5:15:15:6e:10:31:17:ad:ea:
07:bf:40:3f:a7:8a:12:4c:8b:ad:35:bd:8a:75:32:
e9:ef:b4:42:a1:f6:8c:b3:dd:cc:02:d5:d9:53:e4:
8b:a4:73:42:03:58:54:84:6a:80:8d:87:c4:8e:71:
d2:fb:cd:85:59:b1:ae:25:b0:8b:de:f9:9a:55:ab:
84:d5:b7:23:ae:89:93:93:ef:04:41:2f:fe:6d:ac:
17:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:B4:3C:79:46:43:9F:A3:78:E5:AB:32:E8:50:1E:36:33:BB:8E:C7
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/4E2FF934B59711EC9D6E426DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
115.167.56.0/21
115.167.72.0-115.167.76.255
115.167.104.0/22
175.110.64.0-175.110.75.255
175.110.80.0-175.110.91.255
175.110.99.0/24
175.110.104.0/24
175.110.107.2/32
175.110.107.14/32
175.110.107.114/32
175.110.108.0/22
202.92.16.0/20
Signature Algorithm: sha256WithRSAEncryption
8b:31:cd:14:a9:10:1c:f6:b2:2b:b9:5a:3d:43:61:ce:14:b7:
49:19:f8:36:49:cd:c6:0a:a6:53:e2:1f:6c:bf:e0:11:95:c2:
39:22:12:51:19:1d:8b:b9:d9:96:d0:8a:28:2b:40:dd:08:6a:
6c:12:bd:70:38:b7:4c:9b:ba:34:77:ec:db:5c:38:f2:cc:fd:
19:e4:04:e6:8f:91:bb:77:07:62:23:c2:5f:cb:0f:9a:41:9d:
ac:96:b5:33:23:4c:3e:57:fa:40:4d:23:0e:ba:19:4a:91:d6:
82:b7:87:45:89:e4:1f:c2:fd:a6:e0:85:1a:13:1c:2d:b6:57:
06:9d:94:d5:30:03:f5:2a:c4:c9:38:aa:b7:ba:8c:68:a5:b4:
f1:9f:84:af:f5:03:9b:ef:15:e4:c8:3e:e1:aa:d3:24:3e:f3:
59:28:9a:87:a5:22:e7:9e:39:13:5e:ba:0f:a1:53:4f:92:8d:
2b:05:4d:bd:3d:5a:c8:68:39:4e:3e:1c:cc:e0:2d:c3:d8:b4:
1f:74:5d:bc:97:31:3d:d6:21:2f:3d:07:7d:7d:e9:55:1c:d6:
e7:6b:ec:2f:7d:51:90:4e:57:73:78:0c:0b:0b:f2:6c:4a:16:
7e:85:98:3b:29:6e:5d:39:19:ca:f5:02:36:64:a0:be:86:bc:
9e:54:c1:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:09 2023 by rpki-client on console-ams.rpki-client.org