Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/AA4C025A843F11ECB48B0671C4F9AE02.roa
File: AA4C025A843F11ECB48B0671C4F9AE02.roa (raw, json)
Hash identifier: cVtT45j3iIN4s21LH/E/kTuuEOZYma7KP+4mBa2bmEE=
Subject key identifier: 15:C7:A6:7B:35:C1:94:C4:37:CE:18:97:DF:95:D7:15:73:FF:76:05
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 064F
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/AA4C025A843F11ECB48B0671C4F9AE02.roa
Signing time: Thu 17 Feb 2022 10:29:03 +0000
ROA not before: Thu 17 Feb 2022 10:29:03 +0000
ROA not after: Sat 30 Jul 2022 00:00:00 +0000
asID: 38547
IP address blocks: 103.11.68.0/22 maxlen: 24
103.151.26.0/23 maxlen: 24
115.167.3.0/24 maxlen: 24
115.167.5.0/24 maxlen: 24
115.167.7.0/24 maxlen: 24
115.167.56.0/21 maxlen: 24
115.167.72.0/22 maxlen: 24
115.167.76.0/24 maxlen: 24
115.167.104.0/22 maxlen: 24
175.110.72.0/22 maxlen: 24
175.110.80.0/21 maxlen: 24
175.110.88.0/22 maxlen: 24
175.110.104.0/24 maxlen: 24
175.110.107.2/32 maxlen: 32
175.110.107.14/32 maxlen: 32
175.110.107.114/32 maxlen: 32
175.110.108.0/22 maxlen: 23
175.110.108.0/23 maxlen: 24
175.110.110.0/24 maxlen: 24
202.92.16.0/24 maxlen: 24
202.92.17.0/24 maxlen: 24
202.92.18.0/24 maxlen: 24
202.92.19.0/24 maxlen: 24
202.92.20.0/24 maxlen: 24
202.92.21.0/24 maxlen: 24
202.92.22.0/24 maxlen: 24
202.92.23.0/24 maxlen: 24
202.92.24.0/24 maxlen: 24
202.92.24.32/27 maxlen: 27
202.92.25.0/24 maxlen: 24
202.92.26.0/24 maxlen: 24
202.92.27.0/24 maxlen: 24
202.92.28.0/24 maxlen: 24
202.92.29.0/24 maxlen: 24
202.92.30.0/24 maxlen: 24
202.92.31.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1615 (0x64f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Feb 17 10:29:03 2022 GMT
Not After : Jul 30 00:00:00 2022 GMT
Subject: CN=620e236f-cbab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:ee:8a:f6:62:27:49:7a:33:77:2a:89:a8:61:
a4:02:b5:8d:7b:a4:19:f5:ad:dd:6e:89:7d:f6:d4:
32:d5:95:92:1b:d4:46:eb:c3:98:58:3f:a9:03:8b:
a0:d3:0e:4a:6d:d4:33:04:53:28:21:89:81:01:5a:
de:cc:54:76:6a:e9:0d:8d:ff:d8:86:51:09:b2:70:
57:e6:c7:eb:df:f2:d8:9c:c4:23:1f:84:22:9d:a5:
b1:73:ca:1e:a4:04:73:75:66:42:f5:ed:9a:5c:0d:
52:b5:9e:83:74:a1:d2:1b:f5:2e:8f:ec:58:a7:26:
34:35:99:fa:0d:e7:a7:e6:df:a5:ef:d0:85:1f:66:
d1:04:dd:1c:cf:04:de:77:d9:1e:35:e1:c4:93:33:
58:76:06:e4:1f:c5:62:38:ad:67:fc:6f:97:5a:7b:
5c:44:36:74:49:24:80:5a:1f:63:7b:be:4b:81:7c:
4c:96:db:bf:65:95:2e:da:66:d8:59:55:aa:aa:2a:
87:81:e5:d6:da:81:aa:df:7a:30:aa:41:e8:02:88:
b5:43:af:8b:89:55:f7:98:47:4a:22:eb:8d:c2:e4:
7a:1f:2c:6b:f3:1b:c3:dd:1d:ae:e6:bc:b2:a9:59:
64:f6:1b:6b:b6:c5:1c:8a:ab:fd:5e:67:12:df:24:
6c:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:C7:A6:7B:35:C1:94:C4:37:CE:18:97:DF:95:D7:15:73:FF:76:05
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/AA4C025A843F11ECB48B0671C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.11.68.0/22
103.151.26.0/23
115.167.3.0/24
115.167.5.0/24
115.167.7.0/24
115.167.56.0/21
115.167.72.0-115.167.76.255
115.167.104.0/22
175.110.72.0/22
175.110.80.0-175.110.91.255
175.110.104.0/24
175.110.107.2/32
175.110.107.14/32
175.110.107.114/32
175.110.108.0/22
202.92.16.0/20
Signature Algorithm: sha256WithRSAEncryption
5e:c0:71:44:62:97:c5:9f:d3:0b:06:94:b8:87:c3:5d:ee:20:
16:23:84:2f:a7:f9:76:89:11:c5:95:cd:7c:3a:7e:69:f8:4d:
94:28:3f:d8:cf:f5:93:6c:67:1a:f0:76:2d:9b:22:d2:cd:70:
3a:f7:0f:64:ef:6d:2c:27:04:9d:a9:99:86:9a:e9:7c:06:83:
9a:67:cf:d3:fa:a3:d7:47:c4:4d:d9:9a:62:c8:6d:94:29:47:
12:29:33:7f:f7:bf:64:93:11:f7:e3:9d:73:a1:68:4f:af:76:
99:a5:cb:4c:a2:fe:14:b5:75:24:41:84:1c:20:ca:3a:f0:49:
e1:8e:b6:fc:25:82:88:9b:d3:a0:85:f8:f0:d3:13:db:4d:a9:
e9:fa:1c:6c:49:49:14:bc:90:cb:a5:64:bb:83:6c:f5:9d:fd:
ee:53:fe:f0:e8:3c:a5:2c:e7:69:7b:dd:f9:0a:72:29:5d:75:
ac:34:a1:2a:5b:3f:7f:3b:53:2f:1e:1c:d0:bc:e6:02:ac:d0:
f1:b3:ff:30:5c:41:a8:35:74:27:e8:92:2e:73:c6:f9:5a:0e:
60:e9:12:10:b1:4f:52:18:a6:f4:cc:bd:36:6c:9b:d2:44:fb:
35:ad:9b:ca:c5:9e:fe:a6:c3:79:3d:dd:3d:ad:e0:78:76:76:
b7:d5:22:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:12 2023 by rpki-client on console-fra.rpki-client.org