Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A916AC30/6BC4CDFE8C6211EF99464085C4F9AE02/A83C6C22D1B511EFBE031E5EC4F9AE02.roa
File: A83C6C22D1B511EFBE031E5EC4F9AE02.roa (raw, json)
Hash identifier: B8sKtbYd7JtxjAzvKKGoq6oJ786tS2BNxLVEpwPLmF0=
Subject key identifier: 5C:7A:99:5B:C9:7F:31:0E:98:86:1C:47:E4:28:AF:1D:ED:52:A0:C3
Certificate issuer: /CN=A916AC30/serialNumber=576790244CC29275C112356FF620F2620D7D615E
Certificate serial: 4D
Authority key identifier: 57:67:90:24:4C:C2:92:75:C1:12:35:6F:F6:20:F2:62:0D:7D:61:5E
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/V2eQJEzCknXBEjVv9iDyYg19YV4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916AC30/6BC4CDFE8C6211EF99464085C4F9AE02/A83C6C22D1B511EFBE031E5EC4F9AE02.roa
Signing time: Tue 14 Jan 2025 15:30:12 +0000
ROA not before: Tue 14 Jan 2025 15:30:12 +0000
ROA not after: Mon 31 Mar 2025 00:00:00 +0000
asID: 59253
IP address blocks: 23.106.48.0/21 maxlen: 21
23.106.50.0/24 maxlen: 24
23.106.64.0/20 maxlen: 20
23.106.248.0/21 maxlen: 21
23.106.248.0/22 maxlen: 22
23.106.252.0/22 maxlen: 22
23.108.96.0/21 maxlen: 21
23.108.96.0/22 maxlen: 22
23.108.100.0/22 maxlen: 22
173.234.0.0/23 maxlen: 23
209.58.160.0/20 maxlen: 20
209.58.160.0/21 maxlen: 21
209.58.168.0/21 maxlen: 21
209.58.176.0/21 maxlen: 21
209.58.176.0/22 maxlen: 22
209.58.180.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77 (0x4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916AC30, serialNumber=576790244CC29275C112356FF620F2620D7D615E
Validity
Not Before: Jan 14 15:30:12 2025 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=67868304-c76e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:4c:b6:c4:55:50:54:c9:02:39:48:e7:80:ce:
90:bb:a2:8c:29:14:44:63:ec:86:50:36:16:41:f0:
da:ec:bb:5b:29:1b:53:28:61:21:ab:a4:64:6b:41:
c3:8e:1a:13:f6:b3:b2:05:76:0e:99:bb:b5:0b:a7:
66:77:dc:4d:fe:80:14:c8:5a:0c:64:6e:0d:6d:e5:
28:0d:24:d0:9e:ee:1a:1e:79:ee:93:44:52:44:80:
c7:fb:f3:fd:97:d6:99:59:0a:4d:bc:77:8a:46:7a:
68:8d:a5:9f:49:0b:90:d3:d0:1f:4f:2e:e3:a4:49:
2b:ee:0e:3c:77:9e:7f:aa:d7:af:5b:ba:0f:58:6d:
29:96:9e:be:4b:4c:63:ad:02:87:46:d5:57:2a:31:
38:73:20:3e:de:1f:6d:af:51:6a:e4:a2:cd:0c:8a:
d4:46:be:12:21:ad:af:2b:eb:a3:e4:ef:f8:6f:9d:
26:4b:cf:43:bb:f0:56:89:c9:37:b9:98:c6:a1:6d:
42:a2:87:48:93:9d:96:4d:17:4c:47:be:6e:34:a2:
31:3e:ad:18:8f:94:af:b5:ad:07:34:ee:68:3e:17:
a1:b0:42:fd:92:29:a7:5e:89:cd:13:14:64:0f:35:
24:da:2d:7d:95:58:17:a9:1a:a5:fb:c1:bd:ef:de:
68:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:7A:99:5B:C9:7F:31:0E:98:86:1C:47:E4:28:AF:1D:ED:52:A0:C3
X509v3 Authority Key Identifier:
keyid:57:67:90:24:4C:C2:92:75:C1:12:35:6F:F6:20:F2:62:0D:7D:61:5E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916AC30/6BC4CDFE8C6211EF99464085C4F9AE02/V2eQJEzCknXBEjVv9iDyYg19YV4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/V2eQJEzCknXBEjVv9iDyYg19YV4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AC30/6BC4CDFE8C6211EF99464085C4F9AE02/A83C6C22D1B511EFBE031E5EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
23.106.48.0/21
23.106.64.0/20
23.106.248.0/21
23.108.96.0/21
173.234.0.0/23
209.58.160.0-209.58.183.255
Signature Algorithm: sha256WithRSAEncryption
c3:4d:1a:93:1f:71:0e:2a:84:77:c0:74:14:7f:57:a5:bf:61:
22:ea:ff:7f:30:15:a9:e0:de:1b:18:91:14:1a:7d:59:84:4e:
cf:1c:79:6c:8b:70:d7:4d:38:d3:14:c8:0d:c6:b0:fe:a5:26:
fe:1d:99:b6:03:86:4b:f6:5c:7b:79:1c:a1:83:d1:8f:4f:d8:
3b:e1:e5:68:d8:d4:3a:01:05:ab:f9:38:df:c2:7f:f3:fb:79:
5b:47:c1:c3:55:fa:75:69:72:59:44:0b:38:61:0c:3e:41:7f:
b6:77:1f:08:e6:11:7b:6d:9e:05:09:20:32:4a:2f:28:e7:11:
1d:80:04:1f:46:58:e2:66:fc:8d:fd:24:28:1a:e3:98:0c:2a:
59:10:63:83:1c:2d:9a:1f:c3:37:a8:8b:8f:b8:aa:14:4e:9f:
5e:45:53:57:ff:11:da:e3:df:f4:3b:75:f7:ff:fd:9b:28:62:
07:b7:27:56:98:b7:20:fe:83:ad:ff:6a:dc:94:61:d0:f7:c5:
26:58:52:38:89:17:5f:f9:3d:8f:e5:62:b8:e7:5c:8d:15:7d:
64:1f:69:e0:49:b7:ab:ee:5c:79:12:9c:9f:f1:fb:cd:c7:58:
a4:b9:96:ad:22:60:f9:3e:0d:08:aa:5b:c4:c8:09:ac:f8:38:
34:08:72:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 16:41:40 2025 by rpki-client