Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915C281/002013461D9911E2BC10668308B02CD2/59BEE166087911EFAF713C2AC4F9AE02.roa
File: 59BEE166087911EFAF713C2AC4F9AE02.roa (raw, json)
Hash identifier: r9rirlSNrV+fezapTL1WjpNjeUvmA0gcaZEXNdwqTUs=
Subject key identifier: 80:FE:BC:71:10:E8:48:98:2D:58:EA:6A:7D:95:C8:54:FC:E6:B3:70
Certificate issuer: /CN=A915C281/serialNumber=131768A36B30346E3DBEBEBF87B8481BAABE3EEB
Certificate serial: 341A
Authority key identifier: 13:17:68:A3:6B:30:34:6E:3D:BE:BE:BF:87:B8:48:1B:AA:BE:3E:EB
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Exdoo2swNG49vr6_h7hIG6q-Pus.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915C281/002013461D9911E2BC10668308B02CD2/59BEE166087911EFAF713C2AC4F9AE02.roa
Signing time: Thu 02 May 2024 11:47:41 +0000
ROA not before: Thu 02 May 2024 11:47:41 +0000
ROA not after: Mon 30 Sep 2024 00:00:00 +0000
asID: 45245
IP address blocks: 27.54.144.0/22 maxlen: 24
43.245.120.0/23 maxlen: 24
43.245.122.0/23 maxlen: 24
43.255.20.0/22 maxlen: 24
59.152.0.0/21 maxlen: 24
103.15.164.0/22 maxlen: 24
103.67.156.0/23 maxlen: 24
103.67.158.0/23 maxlen: 24
103.239.4.0/22 maxlen: 24
103.244.12.0/22 maxlen: 24
103.253.44.0/22 maxlen: 24
116.58.200.0/22 maxlen: 24
116.58.204.0/22 maxlen: 24
150.242.104.0/22 maxlen: 24
202.86.216.0/21 maxlen: 24
203.223.92.0/23 maxlen: 24
203.223.94.0/23 maxlen: 24
2401:1900::/32 maxlen: 36
2401:1900::/42 maxlen: 48
2401:1900:40::/42 maxlen: 42
2401:1900:100::/42 maxlen: 46
2401:1900:1000::/40 maxlen: 48
2401:1900:2000::/40 maxlen: 48
2401:1900:8000::/40 maxlen: 48
2401:1900:9000::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13338 (0x341a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915C281, serialNumber=131768A36B30346E3DBEBEBF87B8481BAABE3EEB
Validity
Not Before: May 2 11:47:41 2024 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=66337d5d-96a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ac:54:c9:cd:ba:56:b9:2e:ff:27:37:d4:d4:
cc:ff:89:40:28:24:f4:35:93:85:71:6a:9f:2a:d7:
7f:20:10:73:a5:3f:9e:31:3d:8b:18:d9:54:c6:f5:
23:a4:c9:1d:e3:85:32:85:46:3d:03:f3:81:91:27:
1b:41:a0:66:ca:75:4d:7b:11:20:83:d1:61:58:34:
f9:5e:84:a5:5c:b8:61:c7:84:42:47:41:2e:91:e0:
2d:5c:6c:ee:62:8b:19:d6:08:30:95:d4:fb:76:6e:
9b:94:5d:85:7b:be:8b:1f:75:cf:c1:78:50:75:2c:
67:90:53:b1:b0:ec:91:92:4d:c5:f7:02:2b:90:c6:
9d:44:bb:ea:c1:d6:67:43:1e:64:ee:a4:9b:34:da:
02:35:e6:ba:11:42:10:5f:60:12:70:ca:86:7b:66:
30:e1:a6:5a:d2:77:31:52:37:42:ba:a4:13:e3:26:
da:af:7d:aa:e7:9f:ea:1b:fe:47:3c:96:94:05:a3:
4e:be:86:81:b3:af:8c:c9:0d:2e:8f:ee:5b:1c:5d:
04:19:c6:21:bd:3a:42:fb:cf:86:41:79:6f:7c:1a:
d5:ab:74:cf:4a:44:30:c1:98:23:95:78:45:e1:63:
18:8e:05:d7:d5:ea:b8:35:98:66:13:8d:86:23:fe:
30:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:FE:BC:71:10:E8:48:98:2D:58:EA:6A:7D:95:C8:54:FC:E6:B3:70
X509v3 Authority Key Identifier:
keyid:13:17:68:A3:6B:30:34:6E:3D:BE:BE:BF:87:B8:48:1B:AA:BE:3E:EB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915C281/002013461D9911E2BC10668308B02CD2/Exdoo2swNG49vr6_h7hIG6q-Pus.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Exdoo2swNG49vr6_h7hIG6q-Pus.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C281/002013461D9911E2BC10668308B02CD2/59BEE166087911EFAF713C2AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
27.54.144.0/22
43.245.120.0/22
43.255.20.0/22
59.152.0.0/21
103.15.164.0/22
103.67.156.0/22
103.239.4.0/22
103.244.12.0/22
103.253.44.0/22
116.58.200.0/21
150.242.104.0/22
202.86.216.0/21
203.223.92.0/22
IPv6:
2401:1900::/32
Signature Algorithm: sha256WithRSAEncryption
8e:e6:66:02:80:91:4b:53:5f:41:ea:6c:4f:6c:8a:d6:d1:9f:
72:29:39:12:7b:af:4f:33:6b:90:7b:70:5e:b0:d7:bb:24:87:
f5:4a:98:cd:16:b3:84:d2:b2:ab:64:9d:59:a4:d7:54:1e:f1:
24:77:b4:cb:e4:a0:d8:8b:16:66:b2:8b:b3:9d:55:a8:41:b4:
40:b0:78:3d:97:4c:a6:0f:71:a4:e7:af:10:88:cb:8a:d9:b0:
85:a9:7c:89:98:b4:57:31:56:9f:7d:c4:bc:35:bd:f0:de:d7:
6b:fe:7e:21:d8:19:d4:d0:28:cd:3c:bd:17:9e:94:28:a1:ab:
51:2d:86:29:8c:8f:ea:45:5c:14:5e:fe:29:4b:94:5f:35:e4:
71:6b:50:bc:d8:27:a9:77:47:5e:6a:65:dd:39:71:02:e5:d2:
65:a5:4b:d8:ce:b2:26:85:4b:45:02:8f:2b:e3:85:e8:27:17:
d8:cf:f6:dd:07:7e:0e:d0:35:b7:57:e3:5a:28:55:63:86:4a:
70:b1:75:c5:04:34:b7:96:48:95:3f:0e:89:34:34:51:d6:71:
d2:ec:3c:fb:4e:a7:ec:75:0f:fa:5b:b0:76:9d:d3:98:44:63:
14:e6:ea:1e:d9:41:87:41:03:bf:7e:0c:d9:d5:bc:24:b6:98:
60:02:af:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 14:47:33 2025 by rpki-client