Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A912E99B/733DA4E85B3311EB800CB80CC4F9AE02/DCB18938050311ECBCFB571CC4F9AE02.roa
File: DCB18938050311ECBCFB571CC4F9AE02.roa (raw, json)
Hash identifier: S2Sl+cp4Lx0+GzDrHBGx4aQRXJAOY6/IQAqLAq5D7rk=
Subject key identifier: 29:AD:B5:57:3E:AF:AB:CC:5D:E1:ED:CE:BA:B3:81:9A:B2:A5:25:57
Certificate issuer: /CN=A912E99B/serialNumber=246F6A4BE15B00CFEC0DC399A5E8439F939C9174
Certificate serial: 01B7
Authority key identifier: 24:6F:6A:4B:E1:5B:00:CF:EC:0D:C3:99:A5:E8:43:9F:93:9C:91:74
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JG9qS-FbAM_sDcOZpehDn5OckXQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912E99B/733DA4E85B3311EB800CB80CC4F9AE02/DCB18938050311ECBCFB571CC4F9AE02.roa
Signing time: Tue 24 Aug 2021 17:51:09 +0000
ROA not before: Tue 24 Aug 2021 17:51:09 +0000
ROA not after: Fri 30 Sep 2022 00:00:00 +0000
asID: 136969
IP address blocks: 103.152.100.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 439 (0x1b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912E99B/serialNumber=246F6A4BE15B00CFEC0DC399A5E8439F939C9174
Validity
Not Before: Aug 24 17:51:09 2021 GMT
Not After : Sep 30 00:00:00 2022 GMT
Subject: CN=6125318d-0760
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:44:93:32:ce:6a:1c:15:c1:3f:be:6d:2e:d3:
2c:1c:ee:a7:cd:ec:05:0a:2d:9f:3e:19:30:04:61:
fb:3e:1d:d9:e9:71:ec:0d:d8:0a:86:1c:96:1b:b4:
33:e5:c2:45:3e:03:aa:9a:3d:9a:f8:d3:b8:47:a1:
41:7a:09:57:29:91:59:a4:c5:74:60:02:37:57:29:
fe:35:3b:79:bf:48:9e:34:0c:3e:33:38:26:b8:25:
9e:79:89:d0:5c:8a:52:b3:f6:1b:1a:10:f8:f0:c8:
44:54:e3:a0:3a:9c:74:ea:b0:43:91:82:2b:6e:ec:
fd:3a:75:e4:c8:bd:b0:d0:95:24:f3:b5:87:18:ef:
58:ef:16:f3:6b:f0:39:73:fe:3e:a4:a0:ff:59:c6:
3c:70:4a:d5:f0:88:a3:e1:11:c9:55:a0:3b:6c:3a:
d2:7e:ca:38:40:92:0f:c0:a1:78:47:d3:d6:43:93:
2e:d7:61:8d:e0:00:a2:ab:da:47:5c:fc:8b:64:71:
db:27:dd:65:e8:84:ee:5a:2b:e9:0f:90:51:8f:e8:
37:5a:b9:d4:c5:15:84:70:87:bd:ab:93:cd:4b:e2:
80:1c:8b:61:b8:67:d0:1e:4c:03:a2:42:b6:57:4a:
03:2b:0a:2f:f0:b6:ef:2c:a6:d2:10:33:58:3d:7e:
cd:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:AD:B5:57:3E:AF:AB:CC:5D:E1:ED:CE:BA:B3:81:9A:B2:A5:25:57
X509v3 Authority Key Identifier:
keyid:24:6F:6A:4B:E1:5B:00:CF:EC:0D:C3:99:A5:E8:43:9F:93:9C:91:74
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912E99B/733DA4E85B3311EB800CB80CC4F9AE02/JG9qS-FbAM_sDcOZpehDn5OckXQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JG9qS-FbAM_sDcOZpehDn5OckXQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E99B/733DA4E85B3311EB800CB80CC4F9AE02/DCB18938050311ECBCFB571CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.152.100.0/24
Signature Algorithm: sha256WithRSAEncryption
65:53:5d:62:bd:5e:d6:f6:43:fe:06:bd:a8:c1:e7:14:ea:42:
8e:54:55:cf:07:58:ac:ab:a9:da:dd:04:09:34:34:8b:aa:a3:
49:ee:df:97:c3:c4:af:04:b3:bd:49:e2:0a:7b:d0:ce:39:b4:
5d:06:c2:9b:94:76:4e:ac:a9:28:c7:f8:99:49:05:e2:bd:ac:
7d:71:c9:36:29:b8:9d:15:1e:52:81:6f:d1:f3:cc:8a:e6:0b:
a0:c9:d6:43:c5:2d:d9:29:6e:ec:8e:b3:97:d4:56:dc:47:de:
8d:58:e1:a2:35:3b:61:32:1f:1d:8e:20:2b:4c:da:cc:c4:fe:
da:fc:07:be:17:de:9e:0c:50:34:1b:51:2c:e0:4e:68:7e:c0:
b7:11:40:5f:55:a1:9e:8e:de:b6:31:8d:c6:f1:0e:94:0f:7d:
b0:98:ab:f8:a7:a6:2b:e9:7e:6d:18:3a:4c:e0:d2:a6:ad:05:
c0:3e:0c:3f:0e:bf:c4:bf:63:3c:e6:c3:ea:e0:53:9e:6e:e5:
d9:54:8b:4f:b4:71:6d:be:90:f8:b9:8a:4e:80:2d:d6:56:69:
2d:ec:77:5c:5a:ec:cf:a2:45:ab:c9:83:0b:81:88:a1:b8:9c:
1c:89:41:67:fd:38:a9:38:33:ef:dc:42:b4:b4:59:92:74:dc:
7c:d5:de:25
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICAbcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MkU5OUIxMTAvBgNVBAUTKDI0NkY2QTRCRTE1QjAwQ0ZFQzBEQzM5OUE1RTg0MzlG
OTM5QzkxNzQwHhcNMjEwODI0MTc1MTA5WhcNMjIwOTMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02MTI1MzE4ZC0wNzYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA2kSTMs5qHBXBP75tLtMsHO6nzewFCi2fPhkwBGH7Ph3Z6XHsDdgKhhyWG7Qz
5cJFPgOqmj2a+NO4R6FBeglXKZFZpMV0YAI3Vyn+NTt5v0ieNAw+MzgmuCWeeYnQ
XIpSs/YbGhD48MhEVOOgOpx06rBDkYIrbuz9OnXkyL2w0JUk87WHGO9Y7xbza/A5
c/4+pKD/WcY8cErV8Iij4RHJVaA7bDrSfso4QJIPwKF4R9PWQ5Mu12GN4ACiq9pH
XPyLZHHbJ91l6ITuWivpD5BRj+g3WrnUxRWEcIe9q5PNS+KAHIthuGfQHkwDokK2
V0oDKwov8LbvLKbSEDNYPX7N6QIDAQABo4IClTCCApEwHQYDVR0OBBYEFCmttVc+
r6vMXeHtzrqzgZqypSVXMB8GA1UdIwQYMBaAFCRvakvhWwDP7A3DmaXoQ5+TnJF0
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTk5Qi83MzNEQTRFODVC
MzMxMUVCODAwQ0I4MENDNEY5QUUwMi9KRzlxUy1GYkFNX3NEY09acGVoRG41T2Nr
WFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0pHOXFTLUZiQU1fc0RjT1pwZWhEbjVPY2tYUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
MkU5OUIvNzMzREE0RTg1QjMzMTFFQjgwMENCODBDQzRGOUFFMDIvRENCMTg5Mzgw
NTAzMTFFQ0JDRkI1NzFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBABnmGQwDQYJKoZIhvcNAQELBQADggEBAGVTXWK9Xtb2Q/4G
vajB5xTqQo5UVc8HWKyrqdrdBAk0NIuqo0nu35fDxK8Es71J4gp70M45tF0GwpuU
dk6sqSjH+JlJBeK9rH1xyTYpuJ0VHlKBb9HzzIrmC6DJ1kPFLdkpbuyOs5fUVtxH
3o1Y4aI1O2EyHx2OICtM2szE/tr8B74X3p4MUDQbUSzgTmh+wLcRQF9VoZ6O3rYx
jcbxDpQPfbCYq/inpivpfm0YOkzg0qatBcA+DD8Ov8S/Yzzmw+rgU55u5dlUi0+0
cW2+kPi5ik6ALdZWaS3sd1xa7M+iRavJgwuBiKG4nByJQWf9OKk4M+/cQrS0WZJ0
3HzV3iU=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:53 2024 by rpki-client on console-ams.rpki-client.org