Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/EDC54E68B4EF11EAB401D937C4F9AE02.roa
File: EDC54E68B4EF11EAB401D937C4F9AE02.roa (raw, json)
Hash identifier: qshN+EugyTlu3+OLvANdCJ6itxemuxBPzYGW2Y24Eq4=
Subject key identifier: B5:31:29:FF:21:63:A5:35:FB:30:22:34:DC:60:11:A5:23:32:4B:44
Certificate issuer: /CN=A91EA198/serialNumber=9E1C3531D0045EA389B68CFF9286A08FBCBBD8BD
Certificate serial: 1A3A
Authority key identifier: 9E:1C:35:31:D0:04:5E:A3:89:B6:8C:FF:92:86:A0:8F:BC:BB:D8:BD
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhw1MdAEXqOJtoz_koagj7y72L0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/EDC54E68B4EF11EAB401D937C4F9AE02.roa
Signing time: Fri 10 Dec 2021 05:15:03 +0000
ROA not before: Fri 10 Dec 2021 05:15:03 +0000
ROA not after: Thu 02 Mar 2023 00:00:00 +0000
asID: 45102
IP address blocks: 14.1.112.0/22 maxlen: 24
43.0.0.0/9 maxlen: 15
43.96.0.0/16 maxlen: 24
43.97.0.0/16 maxlen: 24
43.98.0.0/16 maxlen: 24
43.99.0.0/16 maxlen: 24
43.100.0.0/16 maxlen: 24
43.101.0.0/16 maxlen: 24
43.102.0.0/16 maxlen: 24
43.103.0.0/16 maxlen: 24
43.104.0.0/16 maxlen: 24
43.105.0.0/16 maxlen: 24
43.106.0.0/16 maxlen: 24
43.107.0.0/16 maxlen: 16
43.107.0.0/16 maxlen: 24
43.108.0.0/16 maxlen: 24
43.109.0.0/16 maxlen: 24
43.110.0.0/16 maxlen: 24
43.111.0.0/16 maxlen: 16
43.111.0.0/16 maxlen: 24
43.112.0.0/16 maxlen: 16
43.112.0.0/16 maxlen: 24
43.113.0.0/16 maxlen: 24
43.114.0.0/16 maxlen: 24
43.115.0.0/16 maxlen: 24
43.116.0.0/16 maxlen: 24
43.117.0.0/16 maxlen: 24
43.118.0.0/16 maxlen: 24
43.119.0.0/16 maxlen: 24
43.120.0.0/16 maxlen: 24
43.121.0.0/16 maxlen: 24
43.122.0.0/16 maxlen: 24
43.123.0.0/16 maxlen: 24
43.124.0.0/16 maxlen: 24
43.125.0.0/16 maxlen: 24
43.126.0.0/16 maxlen: 24
43.127.0.0/16 maxlen: 24
103.206.40.0/22 maxlen: 24
2404:2280::/32 maxlen: 40
240b:4000::/22 maxlen: 30
240b:4000::/32 maxlen: 40
240b:4001::/32 maxlen: 40
240b:4002::/32 maxlen: 48
240b:4003::/32 maxlen: 48
240b:4004::/32 maxlen: 48
240b:4005::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6714 (0x1a3a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EA198/serialNumber=9E1C3531D0045EA389B68CFF9286A08FBCBBD8BD
Validity
Not Before: Dec 10 05:15:03 2021 GMT
Not After : Mar 2 00:00:00 2023 GMT
Subject: CN=61b2e257-9eab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:ff:76:73:35:24:e2:bc:fb:c9:2f:de:de:1d:
9a:29:93:4e:33:fd:50:96:bc:c2:b2:3d:a7:ac:85:
31:51:0a:98:19:1a:f4:77:c2:22:ad:54:50:2e:23:
df:51:ad:e0:ad:b5:96:52:66:9c:aa:2b:d7:4c:4e:
22:fd:35:f0:29:93:bc:71:9a:68:ad:7b:06:b5:f8:
e2:22:c2:15:e5:34:f4:4b:17:a0:79:8f:98:21:57:
9e:2d:c8:e0:da:14:14:8c:c6:14:76:de:28:66:ff:
e5:04:ee:d9:25:34:55:f9:da:fd:f5:32:3f:3b:88:
ae:5a:1e:bb:1e:a1:ed:a7:75:99:a5:47:73:a6:31:
af:54:ee:a1:fe:e7:77:93:c6:c2:f5:63:97:90:88:
e6:1d:3f:50:a8:fb:d0:a1:84:3a:73:15:e3:a4:a0:
15:4c:0e:be:b1:76:24:10:11:eb:a7:9a:3b:2a:da:
7c:20:74:56:3f:81:19:8e:1b:10:13:08:8e:c4:0d:
e4:86:1d:ed:4c:e9:90:73:02:59:91:b7:37:e4:6d:
c4:9b:09:96:e0:f2:8c:96:ee:01:c1:9e:18:1b:74:
3c:d4:59:b2:7d:7f:d4:ab:d6:9a:10:84:3f:aa:cd:
0a:d0:5e:28:8f:1e:34:3f:e0:d4:30:3e:0a:b6:67:
0e:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:31:29:FF:21:63:A5:35:FB:30:22:34:DC:60:11:A5:23:32:4B:44
X509v3 Authority Key Identifier:
keyid:9E:1C:35:31:D0:04:5E:A3:89:B6:8C:FF:92:86:A0:8F:BC:BB:D8:BD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhw1MdAEXqOJtoz_koagj7y72L0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/EDC54E68B4EF11EAB401D937C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
14.1.112.0/22
43.0.0.0/9
103.206.40.0/22
IPv6:
2404:2280::/32
240b:4000::/22
Signature Algorithm: sha256WithRSAEncryption
52:64:e9:25:9c:ed:ae:3b:50:54:30:ae:9e:e7:8f:f2:41:65:
c5:38:19:a1:ed:08:be:e1:69:ca:f0:8d:ce:1b:77:f4:92:0d:
6b:1f:a2:de:32:48:8a:19:fd:03:84:58:8f:31:07:33:b5:b0:
f6:8f:b1:b4:b2:a1:ef:70:84:09:85:2b:82:12:ba:4c:12:e3:
95:55:1e:b2:6d:a6:a5:05:5d:20:1b:a0:44:24:6d:58:4c:7d:
ab:4d:b9:f9:71:ea:b1:61:05:ba:77:94:f7:28:df:9e:6e:9d:
4a:62:e2:11:69:dd:e0:1c:0f:2a:6c:69:9a:8d:c5:05:12:cc:
49:c7:f2:73:9d:9a:c0:29:72:74:61:45:d1:32:7e:d8:a5:89:
bf:0a:a4:6a:b5:47:74:37:1e:c7:41:ef:1c:3d:c3:94:2a:37:
cf:99:e3:d9:27:48:4c:ec:10:88:3a:e0:ac:f2:f2:64:c2:5f:
4e:13:69:17:07:61:b6:44:44:6c:19:a9:b5:6a:55:38:80:62:
86:51:92:30:0f:ff:93:24:44:4c:00:04:06:c4:01:f8:85:0e:
c2:5e:20:97:2f:fd:5f:ec:17:25:ce:e3:3b:ce:59:5a:ec:30:
c6:a3:af:a6:0d:e5:47:4e:99:e9:85:18:7f:e5:ea:f9:a9:bf:
82:df:9d:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:36 2024 by rpki-client on console-ams.rpki-client.org