Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91275FD/E1EFD9B6DECE11E4A14F0068C4F9AE02/1748147C84C511EC8FA22C61C4F9AE02.roa
File: 1748147C84C511EC8FA22C61C4F9AE02.roa (raw, json)
Hash identifier: zgvZ1jcfhlkKabhDYMfrtEzq8DoiNlenk+5fA4Dx48g=
Subject key identifier: BD:10:F0:F0:C5:E7:7D:BD:81:BA:92:9B:B9:5D:DC:DB:E5:1B:BC:40
Certificate issuer: /CN=A91275FD/serialNumber=4E10F13F295FBF2B359C84DDD1651BC851AA8AF5
Certificate serial: 2313
Authority key identifier: 4E:10:F1:3F:29:5F:BF:2B:35:9C:84:DD:D1:65:1B:C8:51:AA:8A:F5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ThDxPylfvys1nITd0WUbyFGqivU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91275FD/E1EFD9B6DECE11E4A14F0068C4F9AE02/1748147C84C511EC8FA22C61C4F9AE02.roa
Signing time: Thu 03 Feb 2022 07:44:17 +0000
ROA not before: Thu 03 Feb 2022 07:44:17 +0000
ROA not after: Sat 30 Jul 2022 00:00:00 +0000
asID: 9386
IP address blocks: 124.158.32.0/19 maxlen: 19
124.158.32.0/22 maxlen: 22
124.158.36.0/22 maxlen: 22
124.158.40.0/22 maxlen: 22
124.158.44.0/22 maxlen: 22
124.158.48.0/22 maxlen: 22
124.158.52.0/22 maxlen: 22
124.158.56.0/22 maxlen: 22
124.158.60.0/22 maxlen: 22
202.8.224.0/19 maxlen: 19
202.128.32.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8979 (0x2313)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91275FD/serialNumber=4E10F13F295FBF2B359C84DDD1651BC851AA8AF5
Validity
Not Before: Feb 3 07:44:17 2022 GMT
Not After : Jul 30 00:00:00 2022 GMT
Subject: CN=61fb87d1-7d94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:5c:8b:dd:27:01:ba:25:00:ff:0f:63:e0:f2:
26:0e:ee:af:51:61:fa:e4:50:63:0c:a4:fb:0f:46:
ba:f0:b5:35:3d:58:83:f8:6c:a1:76:1e:e8:03:2a:
e2:7a:88:a4:ea:c4:fe:11:76:c5:4a:be:8e:03:a8:
1f:de:55:e6:e4:b2:93:e7:6d:d4:c3:11:1b:84:06:
7e:bf:2a:95:b8:24:25:7d:60:95:7b:e6:46:30:a8:
88:a7:20:94:ee:e7:13:b5:8d:52:41:56:90:54:cc:
3c:78:b7:91:bf:99:be:53:59:cf:ca:00:8c:da:ab:
42:10:02:5e:6d:10:28:a9:8e:82:4d:20:c6:8b:5f:
e9:ae:fc:ea:74:7c:11:34:30:55:3f:cb:70:2d:1f:
07:9c:92:86:e3:f3:11:2e:25:dd:93:26:60:d1:2a:
71:4f:2b:ac:b2:aa:86:4d:b2:d2:f5:cc:33:95:ce:
a7:af:cb:21:5c:d3:85:5f:1e:39:23:c6:da:bf:04:
80:5f:e9:9f:e1:28:b5:d8:e1:40:34:1c:60:15:9f:
76:ae:65:9f:7c:4d:0b:b7:ea:ba:db:02:f0:17:60:
f8:6b:fa:b6:60:fe:95:0a:9c:a7:b0:9e:cb:57:03:
e3:57:90:af:e9:82:49:cf:c7:d4:29:82:38:98:4f:
a9:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:10:F0:F0:C5:E7:7D:BD:81:BA:92:9B:B9:5D:DC:DB:E5:1B:BC:40
X509v3 Authority Key Identifier:
keyid:4E:10:F1:3F:29:5F:BF:2B:35:9C:84:DD:D1:65:1B:C8:51:AA:8A:F5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91275FD/E1EFD9B6DECE11E4A14F0068C4F9AE02/ThDxPylfvys1nITd0WUbyFGqivU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ThDxPylfvys1nITd0WUbyFGqivU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91275FD/E1EFD9B6DECE11E4A14F0068C4F9AE02/1748147C84C511EC8FA22C61C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
124.158.32.0/19
202.8.224.0/19
202.128.32.0/19
Signature Algorithm: sha256WithRSAEncryption
a6:6b:40:08:b7:d8:09:43:0c:b4:db:55:57:2b:e4:68:50:4d:
a2:e1:5c:9f:d9:ad:5e:8c:3b:83:27:5b:be:2a:2d:b9:0f:a8:
e1:4f:7c:18:c9:8a:f5:03:92:49:51:d3:bb:4b:d8:89:ed:ab:
b9:5e:a5:ad:51:06:0f:18:14:7f:cc:5a:a9:2e:f9:bd:0c:25:
0a:c4:86:c3:70:31:7a:34:0d:57:67:0f:fb:2f:c1:26:bc:51:
5f:c8:e8:63:99:60:b5:90:52:d1:f9:21:ee:98:1b:05:4e:91:
e7:ff:e7:05:8a:bc:4e:6b:ac:25:e3:55:e4:56:c6:5f:51:88:
80:30:ce:7f:39:8a:86:ea:25:5b:ed:36:14:1d:b8:24:3e:6b:
75:b2:7a:c7:0d:17:ae:a4:93:70:31:77:e9:b1:e5:03:ac:2a:
d1:26:aa:e1:84:1a:93:71:8b:a0:76:78:f5:8d:43:8b:dd:00:
6f:ce:c2:eb:d9:82:a9:81:e8:21:7b:50:13:23:9b:b4:d7:f0:
11:f8:91:12:8e:cf:77:ba:61:46:49:bc:99:31:99:78:1f:02:
71:4a:56:92:de:15:7d:7b:46:5c:42:11:8a:6a:3c:8c:8d:f6:
62:70:51:0d:af:52:de:69:c9:b2:5d:d0:b9:03:fb:c0:36:f2:
05:0b:62:81
-----BEGIN CERTIFICATE-----
MIIFfTCCBGWgAwIBAgICIxMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
Mjc1RkQxMTAvBgNVBAUTKDRFMTBGMTNGMjk1RkJGMkIzNTlDODREREQxNjUxQkM4
NTFBQThBRjUwHhcNMjIwMjAzMDc0NDE3WhcNMjIwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02MWZiODdkMS03ZDk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA0lyL3ScBuiUA/w9j4PImDu6vUWH65FBjDKT7D0a68LU1PViD+Gyhdh7oAyri
eoik6sT+EXbFSr6OA6gf3lXm5LKT523UwxEbhAZ+vyqVuCQlfWCVe+ZGMKiIpyCU
7ucTtY1SQVaQVMw8eLeRv5m+U1nPygCM2qtCEAJebRAoqY6CTSDGi1/prvzqdHwR
NDBVP8twLR8HnJKG4/MRLiXdkyZg0SpxTyussqqGTbLS9cwzlc6nr8shXNOFXx45
I8bavwSAX+mf4Si12OFANBxgFZ92rmWffE0Lt+q62wLwF2D4a/q2YP6VCpynsJ7L
VwPjV5Cv6YJJz8fUKYI4mE+pzwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFL0Q8PDF
5329gbqSm7ld3NvlG7xAMB8GA1UdIwQYMBaAFE4Q8T8pX78rNZyE3dFlG8hRqor1
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzVGRC9FMUVGRDlCNkRF
Q0UxMUU0QTE0RjAwNjhDNEY5QUUwMi9UaER4UHlsZnZ5czFuSVRkMFdVYnlGR3Fp
dlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1RoRHhQeWxmdnlzMW5JVGQwV1VieUZHcWl2VS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
Mjc1RkQvRTFFRkQ5QjZERUNFMTFFNEExNEYwMDY4QzRGOUFFMDIvMTc0ODE0N0M4
NEM1MTFFQzhGQTIyQzYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E
HDAaMBgEAgABMBIDBAV8niADBAXKCOADBAXKgCAwDQYJKoZIhvcNAQELBQADggEB
AKZrQAi32AlDDLTbVVcr5GhQTaLhXJ/ZrV6MO4MnW74qLbkPqOFPfBjJivUDkklR
07tL2Intq7lepa1RBg8YFH/MWqku+b0MJQrEhsNwMXo0DVdnD/svwSa8UV/I6GOZ
YLWQUtH5Ie6YGwVOkef/5wWKvE5rrCXjVeRWxl9RiIAwzn85iobqJVvtNhQduCQ+
a3WyescNF66kk3Axd+mx5QOsKtEmquGEGpNxi6B2ePWNQ4vdAG/OwuvZgqmB6CF7
UBMjm7TX8BH4kRKOz3e6YUZJvJkxmXgfAnFKVpLeFX17RlxCEYpqPIyN9mJwUQ2v
Ut5pybJd0LkD+8A28gULYoE=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:37 2023 by rpki-client on console-fra.rpki-client.org