Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913DE7A/BC71ECC68D4511EA87FAF858C4F9AE02/FAB98D0493DC11ED8CA1B551C4F9AE02.roa
File: FAB98D0493DC11ED8CA1B551C4F9AE02.roa (raw, json)
Hash identifier: +IjRIjCXJwpSUiItiiDLsB95/3rZSOZvE2thqGQONAU=
Subject key identifier: 30:D4:26:79:B3:B5:6F:77:08:53:4D:41:9D:07:DF:E8:B5:F8:28:51
Certificate issuer: /CN=A913DE7A/serialNumber=BFD41FCFD2561B53AC4CD2F83D11B0470A66A055
Certificate serial: 080D
Authority key identifier: BF:D4:1F:CF:D2:56:1B:53:AC:4C:D2:F8:3D:11:B0:47:0A:66:A0:55
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v9Qfz9JWG1OsTNL4PRGwRwpmoFU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913DE7A/BC71ECC68D4511EA87FAF858C4F9AE02/FAB98D0493DC11ED8CA1B551C4F9AE02.roa
Signing time: Sun 12 Mar 2023 22:08:58 +0000
ROA not before: Sun 12 Mar 2023 22:08:58 +0000
ROA not after: Wed 01 May 2024 00:00:00 +0000
asID: 139621
IP address blocks: 103.82.254.0/24 maxlen: 24
2400:bba0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2061 (0x80d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913DE7A/serialNumber=BFD41FCFD2561B53AC4CD2F83D11B0470A66A055
Validity
Not Before: Mar 12 22:08:58 2023 GMT
Not After : May 1 00:00:00 2024 GMT
Subject: CN=640e4d7a-e643
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:27:da:77:2f:d4:ce:6c:b7:c6:58:09:04:09:
11:30:90:bb:88:60:86:6b:80:a4:c7:e5:1f:7e:74:
87:3e:94:1d:60:13:c1:0d:6e:45:32:5c:40:bb:cf:
20:96:0b:f8:2a:3e:37:75:a4:7a:9c:80:10:85:e3:
6f:36:e3:14:6a:14:24:91:ed:2e:46:85:d8:6e:ed:
fc:3e:86:5e:f4:1d:b3:20:4e:d6:b8:de:7d:45:a5:
43:4c:31:e9:b6:6b:2c:f4:f2:ef:de:66:b2:34:8e:
3e:e6:bc:7b:62:90:e2:77:82:be:3d:af:ad:fb:da:
ae:53:04:4e:bb:4c:08:14:cb:63:5a:52:0a:81:a2:
84:90:b0:e3:66:e3:76:69:d7:dd:88:18:fd:50:bf:
29:c5:67:02:1e:af:2d:9f:e4:58:2b:1a:d6:6f:43:
c8:55:af:08:8b:8b:d6:0a:2f:e3:a8:78:5a:7d:51:
7d:2c:9d:1c:3f:9d:27:df:bc:f9:18:45:bb:0d:4d:
c3:c8:60:be:ce:77:d3:22:75:11:c6:a8:99:6b:b1:
1c:f2:76:85:71:50:48:50:64:67:a2:37:74:0b:bc:
00:c6:f5:8f:e5:d3:63:19:0d:2f:b9:df:ec:6f:b8:
ea:ad:63:63:9d:0a:71:3c:9e:a6:d6:9b:0a:70:99:
8d:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:D4:26:79:B3:B5:6F:77:08:53:4D:41:9D:07:DF:E8:B5:F8:28:51
X509v3 Authority Key Identifier:
keyid:BF:D4:1F:CF:D2:56:1B:53:AC:4C:D2:F8:3D:11:B0:47:0A:66:A0:55
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913DE7A/BC71ECC68D4511EA87FAF858C4F9AE02/v9Qfz9JWG1OsTNL4PRGwRwpmoFU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v9Qfz9JWG1OsTNL4PRGwRwpmoFU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913DE7A/BC71ECC68D4511EA87FAF858C4F9AE02/FAB98D0493DC11ED8CA1B551C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.82.254.0/24
IPv6:
2400:bba0::/32
Signature Algorithm: sha256WithRSAEncryption
04:f5:31:07:ad:de:8d:67:55:c5:7c:ea:a5:1b:48:67:c0:cd:
cb:3d:58:18:13:12:0b:1f:17:f5:5d:ad:6c:1f:88:4a:9c:7e:
33:01:2d:e7:58:1d:f8:d3:43:ca:d6:2a:80:81:7f:20:e3:9e:
c9:e5:19:6b:a5:b7:db:f6:2c:36:b1:e7:5d:37:25:9c:a3:90:
e7:ba:5a:f0:d7:13:b7:99:c5:be:76:17:2e:80:f4:7d:b2:21:
47:ee:31:39:d2:23:d6:e8:86:94:30:3e:40:62:54:32:4a:ca:
78:f3:09:fd:2d:31:61:3b:62:4b:26:d4:03:9d:7b:17:1a:d1:
2b:08:60:68:41:3e:dd:f4:1e:d4:5d:b2:57:cc:ab:11:f1:40:
ad:9b:ad:c6:02:4f:ec:f7:6e:c0:f4:2e:3d:3b:20:47:6e:8a:
60:6b:bc:ae:6c:98:93:fe:20:dd:7e:b9:08:d2:1a:bb:f3:32:
05:10:22:ad:1d:88:be:3e:a2:4c:2e:39:86:0e:77:db:88:52:
3e:e7:7d:66:e3:00:90:94:3b:74:13:9f:62:22:f5:fe:27:a7:
8a:95:9e:93:77:1d:82:2f:4a:54:4b:97:6c:fa:a2:6a:e0:f1:
2d:21:9f:81:b7:6f:e9:9b:a8:a6:37:7c:0d:67:c4:42:3b:ea:
c1:9c:2b:51
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICCA0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
M0RFN0ExMTAvBgNVBAUTKEJGRDQxRkNGRDI1NjFCNTNBQzRDRDJGODNEMTFCMDQ3
MEE2NkEwNTUwHhcNMjMwMzEyMjIwODU4WhcNMjQwNTAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NDBlNGQ3YS1lNjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAzCfady/Uzmy3xlgJBAkRMJC7iGCGa4Ckx+UffnSHPpQdYBPBDW5FMlxAu88g
lgv4Kj43daR6nIAQheNvNuMUahQkke0uRoXYbu38PoZe9B2zIE7WuN59RaVDTDHp
tmss9PLv3mayNI4+5rx7YpDid4K+Pa+t+9quUwROu0wIFMtjWlIKgaKEkLDjZuN2
adfdiBj9UL8pxWcCHq8tn+RYKxrWb0PIVa8Ii4vWCi/jqHhafVF9LJ0cP50n37z5
GEW7DU3DyGC+znfTInURxqiZa7Ec8naFcVBIUGRnojd0C7wAxvWP5dNjGQ0vud/s
b7jqrWNjnQpxPJ6m1psKcJmNrwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFDDUJnmz
tW93CFNNQZ0H3+i1+ChRMB8GA1UdIwQYMBaAFL/UH8/SVhtTrEzS+D0RsEcKZqBV
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzREU3QS9CQzcxRUNDNjhE
NDUxMUVBODdGQUY4NThDNEY5QUUwMi92OVFmejlKV0cxT3NUTkw0UFJHd1J3cG1v
RlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3Y5UWZ6OUpXRzFPc1ROTDRQUkd3UndwbW9GVS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
M0RFN0EvQkM3MUVDQzY4RDQ1MTFFQTg3RkFGODU4QzRGOUFFMDIvRkFCOThEMDQ5
M0RDMTFFRDhDQTFCNTUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E
HzAdMAwEAgABMAYDBABnUv4wDQQCAAIwBwMFACQAu6AwDQYJKoZIhvcNAQELBQAD
ggEBAAT1MQet3o1nVcV86qUbSGfAzcs9WBgTEgsfF/VdrWwfiEqcfjMBLedYHfjT
Q8rWKoCBfyDjnsnlGWult9v2LDax5103JZyjkOe6WvDXE7eZxb52Fy6A9H2yIUfu
MTnSI9bohpQwPkBiVDJKynjzCf0tMWE7Yksm1AOdexca0SsIYGhBPt30HtRdslfM
qxHxQK2brcYCT+z3bsD0Lj07IEduimBrvK5smJP+IN1+uQjSGrvzMgUQIq0diL4+
okwuOYYOd9uIUj7nfWbjAJCUO3QTn2Ii9f4np4qVnpN3HYIvSlRLl2z6omrg8S0h
n4G3b+mbqKY3fA1nxEI76sGcK1E=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:55 2024 by rpki-client on console-ams.rpki-client.org