Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/BEE313A4D75811ECA8AA5A14C4F9AE02.roa
File: BEE313A4D75811ECA8AA5A14C4F9AE02.roa (raw, json)
Hash identifier: t6OYJXs6Vm2Z+VFJTGqxPQ1vvwcWUcnbgcmJ9tEA57s=
Subject key identifier: 3E:A0:8F:D8:F6:7C:56:57:29:54:B6:54:A2:4B:35:9A:FE:19:A1:22
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 0774
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/BEE313A4D75811ECA8AA5A14C4F9AE02.roa
Signing time: Thu 26 May 2022 08:57:35 +0000
ROA not before: Thu 26 May 2022 08:57:35 +0000
ROA not after: Sat 30 Jul 2022 00:00:00 +0000
asID: 38547
IP address blocks: 115.167.0.0/24 maxlen: 24
115.167.1.0/24 maxlen: 24
115.167.2.0/24 maxlen: 24
115.167.3.0/24 maxlen: 24
115.167.5.0/24 maxlen: 24
115.167.6.0/24 maxlen: 24
115.167.49.0/24 maxlen: 24
115.167.51.0/24 maxlen: 24
115.167.56.0/22 maxlen: 24
115.167.60.0/22 maxlen: 24
115.167.72.0/22 maxlen: 24
115.167.79.0/24 maxlen: 24
175.110.68.0/22 maxlen: 24
175.110.72.0/22 maxlen: 24
175.110.80.0/21 maxlen: 24
175.110.88.0/22 maxlen: 24
175.110.96.0/24 maxlen: 24
175.110.97.0/24 maxlen: 24
175.110.104.0/24 maxlen: 24
175.110.107.2/32 maxlen: 32
175.110.107.14/32 maxlen: 32
175.110.107.114/32 maxlen: 32
175.110.108.0/22 maxlen: 23
175.110.108.0/23 maxlen: 24
175.110.110.0/24 maxlen: 24
202.92.16.0/24 maxlen: 24
202.92.17.0/24 maxlen: 24
202.92.18.0/24 maxlen: 24
202.92.19.0/24 maxlen: 24
202.92.20.0/24 maxlen: 24
202.92.21.0/24 maxlen: 24
202.92.22.0/24 maxlen: 24
202.92.23.0/24 maxlen: 24
202.92.24.0/24 maxlen: 24
202.92.24.32/27 maxlen: 27
202.92.25.0/24 maxlen: 24
202.92.26.0/24 maxlen: 24
202.92.27.0/24 maxlen: 24
202.92.28.0/24 maxlen: 24
202.92.29.0/24 maxlen: 24
202.92.30.0/24 maxlen: 24
202.92.31.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1908 (0x774)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: May 26 08:57:35 2022 GMT
Not After : Jul 30 00:00:00 2022 GMT
Subject: CN=628f40ff-f741
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:d5:9d:06:e9:0d:17:6c:35:f7:a3:26:f5:7a:
be:6e:72:f9:2d:be:60:8d:eb:a9:94:53:6d:3b:34:
be:28:35:a2:10:49:fb:a5:e5:d4:5f:8b:17:8c:bc:
3d:8c:d9:fe:aa:71:85:54:1f:5a:48:67:6d:0f:c7:
cf:19:f9:13:64:6c:3a:85:15:7e:89:c8:18:c4:72:
05:78:3c:4a:10:85:26:70:51:2b:66:5d:68:da:9a:
6f:70:04:01:f9:3b:36:ce:3f:c0:2b:0b:54:94:98:
d7:1d:b5:93:5a:de:c2:32:60:6e:c4:5f:7a:cd:f8:
e7:cc:d7:fb:57:af:33:0f:f2:4b:96:a8:53:cf:8c:
74:9c:4a:ee:4e:bf:5d:7e:f7:fd:33:a7:c4:88:92:
8f:7a:3b:52:f6:83:ce:2f:c1:a2:c1:1a:16:8d:2b:
59:56:25:1a:5e:13:30:a4:0a:40:2d:7e:ea:c8:9b:
f8:c8:7c:ad:fb:e0:69:6f:18:3c:d8:4a:24:6a:fd:
47:3c:61:f7:0e:cc:fe:91:6e:66:43:da:46:33:af:
f0:36:2b:f3:9a:bc:7d:1c:4a:0e:29:22:3b:d7:d6:
40:ae:d4:c6:dc:9f:ed:d5:73:b7:e2:1f:fd:b0:32:
8a:05:e2:2a:95:41:59:06:eb:b0:73:e1:cf:70:a5:
0b:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:A0:8F:D8:F6:7C:56:57:29:54:B6:54:A2:4B:35:9A:FE:19:A1:22
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/BEE313A4D75811ECA8AA5A14C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
115.167.0.0/22
115.167.5.0-115.167.6.255
115.167.49.0/24
115.167.51.0/24
115.167.56.0/21
115.167.72.0/22
115.167.79.0/24
175.110.68.0-175.110.75.255
175.110.80.0-175.110.91.255
175.110.96.0/23
175.110.104.0/24
175.110.107.2/32
175.110.107.14/32
175.110.107.114/32
175.110.108.0/22
202.92.16.0/20
Signature Algorithm: sha256WithRSAEncryption
07:bf:f0:db:36:82:55:38:0c:fc:f8:9a:75:80:ba:52:2f:13:
cc:d6:8d:5a:d7:10:e8:22:4e:ae:3b:c4:02:e5:a6:b1:03:b5:
bd:e9:dd:aa:c9:b7:f1:c3:69:ac:d1:98:67:21:2a:dc:3f:56:
68:3f:f5:5f:f7:84:ed:c4:8b:76:e2:ed:c5:82:d3:ad:5c:c4:
d0:5b:53:af:49:0f:e4:21:2d:b6:b2:07:45:6d:cb:10:b0:3b:
25:7f:ea:dc:88:5d:11:0c:0a:f1:0e:da:59:4c:e4:44:5f:65:
3d:57:63:7c:2e:26:50:c6:37:fc:e6:39:05:35:7b:65:d1:15:
ea:28:0b:c0:a7:6a:97:70:c7:7e:1c:da:fb:fc:c3:ad:48:f3:
a5:77:cc:c7:07:7b:da:86:81:81:57:b8:8f:b1:31:d6:9f:94:
ea:b5:37:d2:05:27:da:11:e9:03:e5:06:3d:1b:35:a2:ae:f6:
b5:11:61:e2:31:70:d8:0b:61:da:b3:19:5e:e8:4f:65:2f:42:
5e:77:27:89:86:df:b4:48:ff:cd:37:2d:e4:b0:f9:07:76:8d:
3c:67:1e:86:c1:5c:a2:cb:31:6f:2b:e2:60:ed:52:56:88:ab:
6a:61:fe:76:2e:71:e4:58:11:25:f0:fb:ef:ee:0f:7d:7b:ea:
cb:d1:8a:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:10 2023 by rpki-client on console-ams.rpki-client.org