Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/8EA0B1B6EC7E11EC87A0D169C4F9AE02.roa
File: 8EA0B1B6EC7E11EC87A0D169C4F9AE02.roa (raw, json)
Hash identifier: YvyCb0q5+CvMKewwzbanAnLa+rHbHv/JHOByLvlVnws=
Subject key identifier: 24:BC:44:48:2D:73:63:AD:6E:3C:7D:1A:EF:F1:53:06:19:D5:9C:5D
Certificate issuer: /CN=A91F17B1/serialNumber=FE50C385D9EB19E2EFA14FA35ADA5BDEA5B456D3
Certificate serial: 0325
Authority key identifier: FE:50:C3:85:D9:EB:19:E2:EF:A1:4F:A3:5A:DA:5B:DE:A5:B4:56:D3
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_lDDhdnrGeLvoU-jWtpb3qW0VtM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/8EA0B1B6EC7E11EC87A0D169C4F9AE02.roa
Signing time: Tue 30 Aug 2022 04:42:10 +0000
ROA not before: Tue 30 Aug 2022 04:42:10 +0000
ROA not after: Fri 30 Dec 2022 00:00:00 +0000
asID: 23888
IP address blocks: 43.250.84.0/22 maxlen: 22
43.250.84.0/24 maxlen: 24
43.250.85.0/24 maxlen: 24
43.250.86.0/24 maxlen: 24
43.250.87.0/24 maxlen: 24
103.253.156.0/22 maxlen: 22
103.253.156.0/24 maxlen: 24
103.253.157.0/24 maxlen: 24
103.253.158.0/24 maxlen: 24
103.253.159.0/24 maxlen: 24
113.197.48.0/22 maxlen: 22
113.197.48.0/24 maxlen: 24
113.197.49.0/24 maxlen: 24
113.197.50.0/23 maxlen: 23
113.197.52.0/23 maxlen: 23
113.197.54.0/24 maxlen: 24
113.197.55.0/24 maxlen: 24
175.107.0.0/20 maxlen: 20
175.107.0.0/22 maxlen: 22
175.107.4.0/22 maxlen: 22
175.107.8.0/24 maxlen: 24
175.107.9.0/24 maxlen: 24
175.107.10.0/24 maxlen: 24
175.107.11.0/24 maxlen: 24
175.107.12.0/24 maxlen: 24
175.107.13.0/24 maxlen: 24
175.107.14.0/24 maxlen: 24
175.107.15.0/24 maxlen: 24
175.107.16.0/20 maxlen: 20
175.107.16.0/24 maxlen: 24
175.107.17.0/24 maxlen: 24
175.107.18.0/24 maxlen: 24
175.107.19.0/24 maxlen: 24
175.107.20.0/24 maxlen: 24
175.107.21.0/24 maxlen: 24
175.107.22.0/23 maxlen: 23
175.107.24.0/21 maxlen: 21
175.107.24.0/24 maxlen: 24
175.107.25.0/24 maxlen: 24
175.107.26.0/23 maxlen: 24
175.107.28.0/22 maxlen: 24
175.107.32.0/20 maxlen: 20
175.107.32.0/24 maxlen: 24
175.107.33.0/24 maxlen: 24
175.107.35.0/24 maxlen: 24
175.107.36.0/22 maxlen: 22
175.107.40.0/22 maxlen: 22
175.107.44.0/22 maxlen: 22
175.107.48.0/20 maxlen: 20
175.107.48.0/24 maxlen: 24
175.107.49.0/24 maxlen: 24
175.107.50.0/24 maxlen: 24
175.107.51.0/24 maxlen: 24
175.107.52.0/24 maxlen: 24
175.107.53.0/24 maxlen: 24
175.107.54.0/24 maxlen: 24
175.107.55.0/24 maxlen: 24
175.107.56.0/24 maxlen: 24
175.107.58.0/24 maxlen: 24
175.107.59.0/24 maxlen: 24
175.107.60.0/24 maxlen: 24
175.107.61.0/24 maxlen: 24
175.107.62.0/24 maxlen: 24
175.107.63.0/24 maxlen: 24
202.83.160.0/20 maxlen: 20
202.83.160.0/22 maxlen: 22
202.83.160.0/24 maxlen: 24
202.83.161.0/24 maxlen: 24
202.83.162.0/24 maxlen: 24
202.83.163.0/24 maxlen: 24
202.83.164.0/24 maxlen: 24
202.83.165.0/24 maxlen: 24
202.83.166.0/24 maxlen: 24
202.83.167.0/24 maxlen: 24
202.83.168.0/24 maxlen: 24
202.83.169.0/24 maxlen: 24
202.83.170.0/24 maxlen: 24
202.83.171.0/24 maxlen: 24
202.83.172.0/24 maxlen: 24
202.83.173.0/24 maxlen: 24
202.83.174.0/24 maxlen: 24
202.83.175.0/24 maxlen: 24
2407:9e00::/32 maxlen: 32
2407:9e00::/48 maxlen: 48
2407:9e00:1::/48 maxlen: 48
2407:9e00:2::/48 maxlen: 48
2407:9e00:3::/48 maxlen: 48
2407:9e00:4::/48 maxlen: 48
2407:9e00:5::/48 maxlen: 48
2407:9e00:6::/48 maxlen: 48
2407:9e00:7::/48 maxlen: 48
2407:9e00:8::/48 maxlen: 48
2407:9e00:9::/48 maxlen: 48
2407:9e00:a::/48 maxlen: 48
2407:9e00:b::/48 maxlen: 48
2407:9e00:c::/48 maxlen: 48
2407:9e00:d::/48 maxlen: 48
2407:9e00:e::/48 maxlen: 48
2407:9e00:f::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 805 (0x325)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F17B1/serialNumber=FE50C385D9EB19E2EFA14FA35ADA5BDEA5B456D3
Validity
Not Before: Aug 30 04:42:10 2022 GMT
Not After : Dec 30 00:00:00 2022 GMT
Subject: CN=630d9521-9322
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:77:32:0c:5f:0b:df:9b:3f:4d:73:69:1f:34:
2f:e5:2b:18:44:c1:18:c8:3d:b4:93:4c:4c:29:99:
48:3c:e6:5f:ad:f1:03:4a:85:a8:9f:f9:72:c9:f9:
94:3d:54:cf:eb:26:d2:f4:28:65:d2:f3:fa:65:18:
9e:52:03:0d:50:c4:52:42:bf:62:9d:f6:a9:22:88:
25:3b:c9:ea:e1:1f:51:cb:bf:37:65:a2:84:4a:a6:
77:d0:de:29:72:07:d6:a2:aa:52:5c:9e:9f:de:1c:
1c:97:6b:b2:9e:e9:ec:27:cf:12:08:05:c9:8c:a7:
59:37:b9:b8:e2:62:f7:a0:e9:1d:d1:03:e8:cd:b6:
0a:ec:9f:85:22:5b:eb:27:81:f1:7b:f1:fe:ef:f5:
f9:37:0c:10:38:3b:b1:f4:f0:10:6a:9c:c9:a0:ed:
50:67:e3:19:be:3d:82:10:d2:4e:f3:f6:0f:9d:17:
5d:3b:60:c8:1a:06:0e:98:6f:9a:6b:88:6b:c9:bd:
43:ef:40:26:ac:f1:9c:39:4c:da:e2:13:07:ee:2a:
e1:69:b0:cd:de:e6:04:38:35:6f:77:23:6d:ed:38:
41:34:75:4b:1b:d1:46:67:aa:21:bc:ac:23:8a:33:
1b:c7:50:d8:a4:b1:c0:6a:e2:a5:eb:4e:14:d2:b2:
9b:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:BC:44:48:2D:73:63:AD:6E:3C:7D:1A:EF:F1:53:06:19:D5:9C:5D
X509v3 Authority Key Identifier:
keyid:FE:50:C3:85:D9:EB:19:E2:EF:A1:4F:A3:5A:DA:5B:DE:A5:B4:56:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/_lDDhdnrGeLvoU-jWtpb3qW0VtM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_lDDhdnrGeLvoU-jWtpb3qW0VtM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/8EA0B1B6EC7E11EC87A0D169C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.250.84.0/22
103.253.156.0/22
113.197.48.0/21
175.107.0.0/18
202.83.160.0/20
IPv6:
2407:9e00::/32
Signature Algorithm: sha256WithRSAEncryption
46:bb:a2:f6:a1:4a:63:7a:81:f9:77:b3:ef:4d:1c:50:4d:c4:
b1:16:53:b2:b4:70:66:d7:16:b9:f1:b8:7a:fa:25:31:a2:2d:
3d:76:64:28:0e:91:55:f0:1b:03:ea:88:da:9a:70:9b:c4:06:
65:50:6b:37:d1:54:0c:f8:19:1b:c7:52:94:6f:4b:1b:2f:83:
05:5b:08:02:45:a0:2c:98:a1:08:86:8e:d8:5e:35:e8:1a:41:
92:9d:a0:ea:b8:cc:bf:e7:b4:88:6e:53:69:b8:2d:07:c3:d0:
c8:a1:43:34:20:17:61:aa:ec:10:1d:75:db:2b:dd:a2:0f:b3:
22:a7:11:66:21:95:07:5e:59:f4:60:a7:a5:f3:90:1b:8c:99:
41:4e:1b:c8:5e:cd:58:b9:58:16:79:f1:0d:94:df:0c:c0:90:
a7:11:e6:12:00:4e:08:c2:24:27:e0:dc:c1:6a:ca:83:70:15:
f7:ad:ba:17:b3:fa:01:5f:52:95:0a:04:21:ca:93:90:be:79:
49:8c:47:45:37:18:cb:82:82:92:ea:4d:95:6f:50:76:a7:2c:
82:01:fa:90:a3:8a:a4:91:65:b9:e6:46:f4:9d:0e:c9:64:ba:
da:05:9d:64:35:d1:02:50:20:32:f4:dc:65:33:db:e2:69:8b:
e7:c3:69:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:12 2023 by rpki-client on console-ams.rpki-client.org