Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/052DCF94213511EEBBE0D52DC4F9AE02.roa
File: 052DCF94213511EEBBE0D52DC4F9AE02.roa (raw, json)
Hash identifier: ZFWqFk2OK8A8R4mVtJkKJWPGHjk013vnhP/6eRw885g=
Subject key identifier: 36:C4:58:09:C6:DC:61:8E:ED:85:89:D7:0A:EC:9A:3B:4C:6C:37:AF
Certificate issuer: /CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00
Certificate serial: 174D
Authority key identifier: C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/052DCF94213511EEBBE0D52DC4F9AE02.roa
Signing time: Thu 09 Nov 2023 20:46:15 +0000
ROA not before: Thu 09 Nov 2023 20:46:15 +0000
ROA not after: Wed 01 May 2024 00:00:00 +0000
asID: 4826
IP address blocks: 14.137.106.0/24 maxlen: 24
27.106.200.0/22 maxlen: 22
43.241.188.0/22 maxlen: 22
43.252.252.0/22 maxlen: 22
49.255.0.0/16 maxlen: 16
49.255.233.0/24 maxlen: 24
49.255.249.0/24 maxlen: 24
49.255.255.0/24 maxlen: 24
103.37.120.0/24 maxlen: 24
103.233.148.0/22 maxlen: 22
103.255.16.0/22 maxlen: 22
110.5.116.0/22 maxlen: 22
112.213.192.0/19 maxlen: 19
112.213.224.0/19 maxlen: 19
113.29.240.0/22 maxlen: 22
113.29.243.0/24 maxlen: 24
114.31.192.0/20 maxlen: 20
116.212.192.0/18 maxlen: 18
116.212.204.0/24 maxlen: 24
116.212.230.0/23 maxlen: 24
116.212.253.0/24 maxlen: 24
119.161.83.0/24 maxlen: 24
119.161.84.0/24 maxlen: 24
119.161.85.0/24 maxlen: 24
119.161.86.0/23 maxlen: 23
119.161.88.0/23 maxlen: 23
119.161.90.0/24 maxlen: 24
119.161.91.0/24 maxlen: 24
119.161.92.0/24 maxlen: 24
119.161.93.0/24 maxlen: 24
119.161.94.0/24 maxlen: 24
119.161.95.0/24 maxlen: 24
121.54.128.0/19 maxlen: 19
121.54.128.0/20 maxlen: 20
121.54.136.0/24 maxlen: 24
121.54.145.0/24 maxlen: 24
121.79.0.0/17 maxlen: 17
123.103.192.0/19 maxlen: 19
124.254.64.0/18 maxlen: 18
124.254.64.0/24 maxlen: 24
124.254.95.0/24 maxlen: 24
124.254.96.0/24 maxlen: 24
175.45.64.0/18 maxlen: 18
175.45.78.0/24 maxlen: 24
175.45.82.0/24 maxlen: 24
175.45.83.0/24 maxlen: 24
175.45.85.0/24 maxlen: 24
175.45.92.0/24 maxlen: 24
175.45.94.0/23 maxlen: 23
175.45.99.0/24 maxlen: 24
175.45.100.0/24 maxlen: 24
175.45.101.0/24 maxlen: 24
175.45.105.0/24 maxlen: 24
175.45.111.0/24 maxlen: 24
175.45.125.0/24 maxlen: 24
180.148.64.0/19 maxlen: 19
180.148.76.0/24 maxlen: 24
180.148.77.0/24 maxlen: 24
180.148.83.0/24 maxlen: 24
180.148.84.0/24 maxlen: 24
180.148.95.0/24 maxlen: 24
202.62.138.0/24 maxlen: 24
202.62.139.0/24 maxlen: 24
202.62.141.0/24 maxlen: 24
202.62.142.0/24 maxlen: 24
202.62.147.0/24 maxlen: 24
202.62.152.0/24 maxlen: 24
202.62.153.0/24 maxlen: 24
202.62.154.0/24 maxlen: 24
202.62.155.0/24 maxlen: 24
202.80.176.0/20 maxlen: 20
202.89.160.0/19 maxlen: 19
202.137.96.0/20 maxlen: 20
202.137.192.0/21 maxlen: 21
202.189.64.0/20 maxlen: 20
202.189.72.0/24 maxlen: 24
202.189.73.0/24 maxlen: 24
203.12.251.0/24 maxlen: 24
203.18.212.0/23 maxlen: 23
203.22.206.0/24 maxlen: 24
203.26.237.0/24 maxlen: 24
203.28.186.0/24 maxlen: 24
203.29.177.0/24 maxlen: 24
203.55.11.0/24 maxlen: 24
203.55.250.0/24 maxlen: 24
203.55.252.0/24 maxlen: 24
203.89.64.0/19 maxlen: 19
203.89.80.0/24 maxlen: 24
203.89.92.0/24 maxlen: 24
203.92.28.0/22 maxlen: 22
203.129.128.0/19 maxlen: 19
203.153.224.0/19 maxlen: 19
203.153.226.0/24 maxlen: 24
203.161.64.0/18 maxlen: 18
203.188.128.0/19 maxlen: 19
210.50.198.0/24 maxlen: 24
211.26.193.0/24 maxlen: 24
218.100.80.0/22 maxlen: 22
223.27.96.0/21 maxlen: 21
2402:7800::/32 maxlen: 32
2402:7800:ff00::/40 maxlen: 40
2402:7800:ff00::/48 maxlen: 48
2402:7800:ff01::/48 maxlen: 48
2402:7800:ff20::/48 maxlen: 48
2402:7800:ff40::/44 maxlen: 44
2402:7800:ffe0::/48 maxlen: 48
2403:d600::/32 maxlen: 32
2403:fc00:300::/40 maxlen: 40
2404:b000::/32 maxlen: 32
2404:bc00::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5965 (0x174d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00
Validity
Not Before: Nov 9 20:46:15 2023 GMT
Not After : May 1 00:00:00 2024 GMT
Subject: CN=654d4517-7ed0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:be:03:99:16:17:da:03:f6:ec:c5:c9:d9:18:
b1:8d:8e:c8:76:ed:ec:74:f8:86:68:8a:b8:61:c0:
b9:fb:4b:31:5d:58:bf:43:0f:11:2e:a0:e5:1c:b6:
e2:fb:90:85:be:4a:5d:3e:5a:29:d4:7c:b9:52:5f:
94:03:40:13:55:14:36:9a:be:87:2b:70:7a:67:27:
b6:b3:f3:b3:06:37:33:41:ce:24:55:c7:8f:81:e6:
74:12:44:6d:41:25:d8:66:ed:7a:17:f4:43:36:c6:
99:fc:f9:90:c4:1c:f9:48:0a:b9:8e:a3:0e:a7:16:
06:ef:40:8d:6d:87:ca:1e:f8:c4:8b:ee:47:9c:62:
0c:12:1f:e1:87:cd:d0:66:20:27:02:33:3d:ac:0e:
b4:75:34:9e:e1:cf:08:85:ef:cf:f7:a0:ff:e6:7b:
08:c9:4e:bb:29:0f:3f:f7:64:af:2f:18:22:fe:8f:
55:a4:55:86:e2:5e:5e:19:16:04:09:d8:16:c4:b5:
fd:57:7c:73:47:b7:3c:5b:23:26:e1:52:60:a0:0f:
f5:2c:62:93:35:50:7f:21:ac:65:26:17:e9:32:31:
15:c3:57:64:f4:93:f8:f6:a7:c2:41:3f:c5:e7:ae:
36:9a:24:9b:0a:58:22:cb:2c:05:51:84:06:66:30:
c6:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:C4:58:09:C6:DC:61:8E:ED:85:89:D7:0A:EC:9A:3B:4C:6C:37:AF
X509v3 Authority Key Identifier:
keyid:C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/052DCF94213511EEBBE0D52DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
14.137.106.0/24
27.106.200.0/22
43.241.188.0/22
43.252.252.0/22
49.255.0.0/16
103.37.120.0/24
103.233.148.0/22
103.255.16.0/22
110.5.116.0/22
112.213.192.0/18
113.29.240.0/22
114.31.192.0/20
116.212.192.0/18
119.161.83.0-119.161.95.255
121.54.128.0/19
121.79.0.0/17
123.103.192.0/19
124.254.64.0/18
175.45.64.0/18
180.148.64.0/19
202.62.138.0/23
202.62.141.0-202.62.142.255
202.62.147.0/24
202.62.152.0/22
202.80.176.0/20
202.89.160.0/19
202.137.96.0/20
202.137.192.0/21
202.189.64.0/20
203.12.251.0/24
203.18.212.0/23
203.22.206.0/24
203.26.237.0/24
203.28.186.0/24
203.29.177.0/24
203.55.11.0/24
203.55.250.0/24
203.55.252.0/24
203.89.64.0/19
203.92.28.0/22
203.129.128.0/19
203.153.224.0/19
203.161.64.0/18
203.188.128.0/19
210.50.198.0/24
211.26.193.0/24
218.100.80.0/22
223.27.96.0/21
IPv6:
2402:7800::/32
2403:d600::/32
2403:fc00:300::/40
2404:b000::/32
2404:bc00::/32
Signature Algorithm: sha256WithRSAEncryption
18:a7:c7:98:4b:f6:a2:45:4f:68:f3:ee:f5:1b:26:15:c2:53:
f4:7a:14:3d:1b:f5:04:40:91:1b:78:6d:f0:db:76:b3:90:46:
e8:2e:6c:48:7c:14:68:fc:b6:04:2a:b2:99:9c:0a:c0:02:86:
97:1a:8a:3a:4f:37:fe:fe:d1:e6:67:9a:0e:7f:e8:ca:a2:35:
86:e8:12:5a:4e:c4:d3:ae:2e:47:53:99:1e:b3:f9:a6:e1:bd:
28:77:11:79:4d:ff:df:1a:8f:de:be:18:35:65:ec:b6:21:93:
a1:b8:7b:5e:a2:3e:48:53:76:bd:f4:4e:9c:6c:41:60:95:c2:
af:de:1d:06:93:41:23:02:15:05:29:35:2e:4a:df:75:49:7c:
ff:6d:f8:29:0b:a8:8a:e8:98:17:dd:68:d5:ae:8e:86:dc:82:
44:24:2f:3c:58:b8:eb:af:31:c6:eb:d6:25:56:fa:15:3f:d9:
09:04:0f:87:38:17:6f:6a:0e:37:ba:f6:7a:f2:0a:db:33:19:
b5:cd:64:67:27:dd:37:8b:67:e9:c6:0e:55:7f:c9:17:8a:c8:
dc:87:5e:34:7e:fa:e7:4e:f7:53:ae:89:fa:72:60:97:e2:cc:
96:18:ae:d6:d4:b7:97:fd:ee:6e:86:bd:f7:b5:07:7d:31:9c:
da:86:8f:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:36 2024 by rpki-client on console-ams.rpki-client.org