Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/18844FA0884B11EE9C01127FC4F9AE02.roa
File: 18844FA0884B11EE9C01127FC4F9AE02.roa (raw, json)
Hash identifier: 6vcPqO9eF8acDxXaXYEdnjk5i21X4zB7NN3fI0x0Hyc=
Subject key identifier: 35:6E:F0:A4:63:56:B4:E5:DB:A6:B8:C6:A8:2D:CC:86:DB:4A:A3:2D
Certificate issuer: /CN=A91F17B1/serialNumber=FE50C385D9EB19E2EFA14FA35ADA5BDEA5B456D3
Certificate serial: 0460
Authority key identifier: FE:50:C3:85:D9:EB:19:E2:EF:A1:4F:A3:5A:DA:5B:DE:A5:B4:56:D3
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_lDDhdnrGeLvoU-jWtpb3qW0VtM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/18844FA0884B11EE9C01127FC4F9AE02.roa
Signing time: Tue 21 Nov 2023 08:55:57 +0000
ROA not before: Tue 21 Nov 2023 08:55:57 +0000
ROA not after: Mon 30 Dec 2024 00:00:00 +0000
asID: 23888
IP address blocks: 43.250.84.0/22 maxlen: 22
43.250.84.0/24 maxlen: 24
43.250.85.0/24 maxlen: 24
43.250.86.0/24 maxlen: 24
43.250.87.0/24 maxlen: 24
103.253.156.0/22 maxlen: 22
103.253.156.0/24 maxlen: 24
103.253.157.0/24 maxlen: 24
103.253.158.0/24 maxlen: 24
103.253.159.0/24 maxlen: 24
113.197.48.0/22 maxlen: 22
113.197.48.0/24 maxlen: 24
113.197.49.0/24 maxlen: 24
113.197.50.0/23 maxlen: 23
113.197.52.0/23 maxlen: 23
113.197.54.0/24 maxlen: 24
113.197.55.0/24 maxlen: 24
175.107.0.0/20 maxlen: 20
175.107.0.0/22 maxlen: 23
175.107.4.0/22 maxlen: 22
175.107.7.0/24 maxlen: 24
175.107.8.0/24 maxlen: 24
175.107.9.0/24 maxlen: 24
175.107.10.0/24 maxlen: 24
175.107.11.0/24 maxlen: 24
175.107.12.0/24 maxlen: 24
175.107.13.0/24 maxlen: 24
175.107.14.0/24 maxlen: 24
175.107.15.0/24 maxlen: 24
175.107.16.0/20 maxlen: 20
175.107.16.0/24 maxlen: 24
175.107.17.0/24 maxlen: 24
175.107.18.0/24 maxlen: 24
175.107.19.0/24 maxlen: 24
175.107.20.0/24 maxlen: 24
175.107.21.0/24 maxlen: 24
175.107.22.0/23 maxlen: 23
175.107.24.0/21 maxlen: 21
175.107.24.0/24 maxlen: 24
175.107.25.0/24 maxlen: 24
175.107.26.0/23 maxlen: 24
175.107.28.0/22 maxlen: 24
175.107.32.0/20 maxlen: 20
175.107.32.0/24 maxlen: 24
175.107.33.0/24 maxlen: 24
175.107.35.0/24 maxlen: 24
175.107.36.0/22 maxlen: 22
175.107.40.0/22 maxlen: 22
175.107.44.0/22 maxlen: 22
175.107.48.0/20 maxlen: 20
175.107.48.0/24 maxlen: 24
175.107.49.0/24 maxlen: 24
175.107.50.0/24 maxlen: 24
175.107.51.0/24 maxlen: 24
175.107.52.0/24 maxlen: 24
175.107.53.0/24 maxlen: 24
175.107.54.0/24 maxlen: 24
175.107.55.0/24 maxlen: 24
175.107.56.0/24 maxlen: 24
175.107.58.0/24 maxlen: 24
175.107.59.0/24 maxlen: 24
175.107.60.0/24 maxlen: 24
175.107.61.0/24 maxlen: 24
175.107.62.0/24 maxlen: 24
175.107.63.0/24 maxlen: 24
202.83.160.0/20 maxlen: 20
202.83.160.0/22 maxlen: 22
202.83.160.0/24 maxlen: 24
202.83.161.0/24 maxlen: 24
202.83.162.0/24 maxlen: 24
202.83.163.0/24 maxlen: 24
202.83.164.0/24 maxlen: 24
202.83.165.0/24 maxlen: 24
202.83.166.0/24 maxlen: 24
202.83.167.0/24 maxlen: 24
202.83.168.0/24 maxlen: 24
202.83.169.0/24 maxlen: 24
202.83.170.0/24 maxlen: 24
202.83.171.0/24 maxlen: 24
202.83.172.0/24 maxlen: 24
202.83.173.0/24 maxlen: 24
202.83.174.0/24 maxlen: 24
202.83.175.0/24 maxlen: 24
2407:9e00::/48 maxlen: 48
2407:9e00:1::/48 maxlen: 48
2407:9e00:2::/48 maxlen: 48
2407:9e00:3::/48 maxlen: 48
2407:9e00:4::/48 maxlen: 48
2407:9e00:5::/48 maxlen: 48
2407:9e00:6::/48 maxlen: 48
2407:9e00:7::/48 maxlen: 48
2407:9e00:8::/48 maxlen: 48
2407:9e00:9::/48 maxlen: 48
2407:9e00:10::/48 maxlen: 48
2407:9e00:11::/48 maxlen: 48
2407:9e00:12::/48 maxlen: 48
2407:9e00:13::/48 maxlen: 48
2407:9e00:14::/48 maxlen: 48
2407:9e00:15::/48 maxlen: 48
2407:9e00:20::/48 maxlen: 48
2407:9e00:21::/48 maxlen: 48
2407:9e00:24::/48 maxlen: 48
2407:9e00:25::/48 maxlen: 48
2407:9e00:30::/48 maxlen: 48
2407:9e00:31::/48 maxlen: 48
2407:9e00:34::/48 maxlen: 48
2407:9e00:35::/48 maxlen: 48
2407:9e00:40::/48 maxlen: 48
2407:9e00:41::/48 maxlen: 48
2407:9e00:42::/48 maxlen: 48
2407:9e00:43::/48 maxlen: 48
2407:9e00:44::/48 maxlen: 48
2407:9e00:50::/48 maxlen: 48
2407:9e00:60::/48 maxlen: 48
2407:9e00:70::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1120 (0x460)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F17B1, serialNumber=FE50C385D9EB19E2EFA14FA35ADA5BDEA5B456D3
Validity
Not Before: Nov 21 08:55:57 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=655c709d-3a98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:d3:63:5b:9e:39:fb:60:06:f1:95:9f:f4:26:
1f:2f:95:d5:79:b1:50:44:f1:55:f3:d8:48:fa:de:
97:3c:be:55:e2:06:e3:bc:c7:4c:91:f3:a2:40:2d:
20:c6:41:9b:f8:66:cf:1c:5d:f6:93:af:7c:a6:e9:
f0:29:b6:b9:28:16:d2:7e:ec:2a:86:8d:d2:34:2d:
61:56:e6:3a:36:c5:06:59:e6:ab:bb:88:92:33:19:
0a:f5:d7:68:f2:47:4f:f8:16:bb:2e:05:24:4b:40:
ac:54:89:eb:ca:7c:ca:09:62:10:09:eb:2a:a1:75:
b2:0c:d3:cf:a5:4d:31:ff:48:b9:cb:1b:5c:63:4a:
e1:25:02:44:99:57:2e:c7:d4:af:95:c8:06:23:ad:
16:e6:a1:dc:63:b2:b0:fd:cf:37:6b:89:bf:82:53:
38:e0:e7:43:ff:c8:06:14:ad:d1:66:e2:5a:9a:2c:
e1:58:b8:10:5a:6a:dd:97:ca:a1:c0:1d:ee:9d:06:
7b:91:66:7d:c1:50:c8:ac:30:0d:70:30:be:b8:7a:
d9:f8:cd:a5:c7:88:2c:63:93:45:fe:be:cf:e7:ee:
17:7d:fc:6b:76:e1:2d:bd:02:41:1e:98:73:9c:be:
5c:3f:9e:ad:57:29:90:bb:fc:1d:54:81:f6:26:b6:
97:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:6E:F0:A4:63:56:B4:E5:DB:A6:B8:C6:A8:2D:CC:86:DB:4A:A3:2D
X509v3 Authority Key Identifier:
keyid:FE:50:C3:85:D9:EB:19:E2:EF:A1:4F:A3:5A:DA:5B:DE:A5:B4:56:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/_lDDhdnrGeLvoU-jWtpb3qW0VtM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_lDDhdnrGeLvoU-jWtpb3qW0VtM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/18844FA0884B11EE9C01127FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.250.84.0/22
103.253.156.0/22
113.197.48.0/21
175.107.0.0/18
202.83.160.0/20
IPv6:
2407:9e00::-2407:9e00:9:ffff:ffff:ffff:ffff:ffff
2407:9e00:10::-2407:9e00:15:ffff:ffff:ffff:ffff:ffff
2407:9e00:20::/47
2407:9e00:24::/47
2407:9e00:30::/47
2407:9e00:34::/47
2407:9e00:40::-2407:9e00:44:ffff:ffff:ffff:ffff:ffff
2407:9e00:50::/48
2407:9e00:60::/48
2407:9e00:70::/48
Signature Algorithm: sha256WithRSAEncryption
54:5f:4e:2a:9f:e0:59:6a:a3:aa:13:80:5d:b3:3d:cd:ff:fe:
65:7b:17:d2:1a:3d:ee:0d:87:8c:17:76:31:a2:1f:57:64:87:
e9:37:71:bf:0e:e8:ac:f3:36:5b:d9:4b:0e:66:5f:2d:fb:20:
f4:cf:30:ac:52:f3:e5:3f:92:c4:ba:03:4b:54:f1:71:ef:db:
6e:8e:12:7d:d8:14:86:ce:fb:ec:2a:54:a5:f7:44:26:7a:cb:
7e:f2:20:7d:5b:32:a4:92:dd:87:c7:85:4a:57:69:ed:d4:bb:
68:b8:5c:e5:03:aa:c4:8e:c8:90:b9:f3:b5:17:73:8e:34:8f:
70:47:73:b3:b6:ab:6e:ea:5d:ab:d7:3e:89:02:56:ae:2c:a8:
66:2f:56:2a:ca:12:a1:30:2f:d6:3f:37:d2:61:27:5f:af:f7:
18:55:97:55:ca:71:aa:70:e0:f7:8b:12:c8:bc:27:cf:7f:26:
20:8e:0e:5a:5e:dd:17:e8:ca:fd:ab:79:c3:f8:6b:40:4f:06:
d2:bf:b2:9d:32:4e:0f:f7:5f:e5:05:c7:3e:87:79:c7:7c:60:
54:46:68:6b:52:7a:1f:01:af:0d:94:07:09:89:13:6f:21:63:
e9:1c:8e:fa:7f:b5:77:53:cc:8c:b4:9b:7f:4f:8e:f6:38:ff:
f4:1f:52:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 13:46:36 2025 by rpki-client