Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915B2EC/842759562B0911EC851B980EC4F9AE02/48232A7AEED111EC9BDD4C49C4F9AE02.roa
File: 48232A7AEED111EC9BDD4C49C4F9AE02.roa (raw, json)
Hash identifier: jXxCDb//4g7X9qOgpKYEWwUOMS3FNj4YjmOQ6mXd5kI=
Subject key identifier: 52:3B:D6:E7:35:F2:9E:62:2D:B1:44:E5:55:DC:34:97:4A:6F:86:82
Certificate issuer: /CN=A915B2EC/serialNumber=46922C565440040BD99AFD4E329ED9DEB6F92573
Certificate serial: 021D
Authority key identifier: 46:92:2C:56:54:40:04:0B:D9:9A:FD:4E:32:9E:D9:DE:B6:F9:25:73
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RpIsVlRABAvZmv1OMp7Z3rb5JXM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915B2EC/842759562B0911EC851B980EC4F9AE02/48232A7AEED111EC9BDD4C49C4F9AE02.roa
Signing time: Sat 18 Jun 2022 06:38:38 +0000
ROA not before: Sat 18 Jun 2022 06:38:38 +0000
ROA not after: Fri 30 Dec 2022 00:00:00 +0000
asID: 51847
IP address blocks: 103.172.182.0/24 maxlen: 24
103.172.183.0/24 maxlen: 24
2407:d840:1::/48 maxlen: 48
2407:d840:2::/48 maxlen: 48
2407:d840:40::/44 maxlen: 44
2407:d840:40::/48 maxlen: 48
2407:d840:43::/48 maxlen: 48
2407:d840:44::/46 maxlen: 46
2407:d840:44::/48 maxlen: 48
2407:d840:45::/48 maxlen: 48
2407:d840:46::/48 maxlen: 48
2407:d840:47::/48 maxlen: 48
2407:d840:48::/48 maxlen: 48
2407:d840:49::/48 maxlen: 48
2407:d840:4a::/48 maxlen: 48
2407:d840:4b::/48 maxlen: 48
2407:d840:4c::/48 maxlen: 48
2407:d840:4d::/48 maxlen: 48
2407:d840:4e::/48 maxlen: 48
2407:d840:4f::/48 maxlen: 48
2407:d840:50::/44 maxlen: 44
2407:d840:50::/48 maxlen: 48
2407:d840:51::/48 maxlen: 48
2407:d840:52::/48 maxlen: 48
2407:d840:53::/48 maxlen: 48
2407:d840:60::/44 maxlen: 44
2407:d840:60::/48 maxlen: 48
2407:d840:61::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 541 (0x21d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915B2EC/serialNumber=46922C565440040BD99AFD4E329ED9DEB6F92573
Validity
Not Before: Jun 18 06:38:38 2022 GMT
Not After : Dec 30 00:00:00 2022 GMT
Subject: CN=62ad72ed-eedb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:e7:0b:e6:ef:a8:40:0c:7e:72:cf:26:7f:7c:
f4:37:a9:30:c6:9f:b7:17:f4:89:a5:e0:44:5e:e0:
86:4b:a2:54:3b:4f:b5:12:85:2a:61:f0:70:85:1f:
ea:c4:b6:ca:37:56:4b:9f:d4:8e:48:fa:8a:f9:f5:
5e:bf:ae:0c:b2:5a:c1:20:d4:ac:d5:fc:17:27:86:
51:d7:ae:8a:1a:54:c0:0d:4b:d3:a2:71:fa:cb:e1:
1b:8a:a3:3e:f1:3d:58:fc:e4:4c:6f:49:c3:96:f1:
6e:63:e1:54:26:32:3d:31:0f:07:c0:91:9a:e7:82:
50:ef:cd:34:70:cb:b5:10:79:e6:17:0c:f4:2b:71:
16:9c:cc:06:70:8e:94:e8:68:e2:8d:df:65:99:1f:
8c:d5:49:a8:77:41:a8:ce:60:77:18:e4:93:89:28:
af:67:6c:39:55:f7:6a:3c:ea:84:c8:93:bc:5e:52:
00:e7:d4:34:26:0a:b5:e9:94:84:ac:74:47:83:ff:
2a:98:55:d0:b0:d0:fc:60:26:35:e4:05:dd:20:57:
1c:4c:6a:c4:96:cf:30:f2:88:f9:6c:38:5f:f9:6a:
8f:b2:4b:0e:c9:c1:07:d3:dc:7e:9a:e4:16:fe:5d:
16:80:7d:b0:28:9f:44:09:3e:42:d5:58:8e:c5:8d:
57:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:3B:D6:E7:35:F2:9E:62:2D:B1:44:E5:55:DC:34:97:4A:6F:86:82
X509v3 Authority Key Identifier:
keyid:46:92:2C:56:54:40:04:0B:D9:9A:FD:4E:32:9E:D9:DE:B6:F9:25:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915B2EC/842759562B0911EC851B980EC4F9AE02/RpIsVlRABAvZmv1OMp7Z3rb5JXM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RpIsVlRABAvZmv1OMp7Z3rb5JXM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B2EC/842759562B0911EC851B980EC4F9AE02/48232A7AEED111EC9BDD4C49C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.172.182.0/23
IPv6:
2407:d840:1::-2407:d840:2:ffff:ffff:ffff:ffff:ffff
2407:d840:40::-2407:d840:6f:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
8b:a1:bd:13:42:b6:a0:75:62:7a:e8:be:b8:c6:e3:fd:22:11:
61:2d:dc:76:12:2a:01:3a:7d:56:51:e6:6a:93:df:36:f4:8b:
94:88:14:04:1c:33:31:1b:aa:ac:12:90:eb:c3:f0:2e:fa:0e:
c0:4c:59:22:9c:e6:79:59:f4:b1:bd:89:ee:92:a1:9a:f6:52:
ae:c4:6e:1a:03:28:62:71:02:fa:91:d0:70:6b:a6:72:4f:89:
a0:1d:20:9b:5a:fd:57:44:65:00:6f:8b:5a:c0:3f:7f:a9:3d:
83:8d:50:2a:b9:e6:08:fc:99:78:5f:15:16:f7:51:c0:1f:de:
a4:8c:5b:bf:d1:90:be:bd:7d:bc:ba:fc:ce:91:88:22:18:81:
bd:01:c6:a9:88:c9:16:44:c1:b0:cd:f2:82:ee:b5:b3:94:31:
5b:e8:41:f3:0a:4e:e4:19:c1:40:f3:bc:19:73:71:e2:b8:d5:
a7:79:47:75:75:0a:dc:fe:a8:ce:aa:c8:a8:5a:b9:5e:fe:be:
42:cd:db:3e:d4:3e:ff:a0:30:b7:7d:25:b6:08:a2:04:81:51:
d7:e1:fe:36:22:ae:fc:d6:dc:81:1e:36:37:3a:ab:ca:32:a0:
0d:e6:20:99:0c:f5:58:1e:2c:59:6a:1e:67:29:06:ba:ed:83:
58:bf:79:cd
-----BEGIN CERTIFICATE-----
MIIFoTCCBImgAwIBAgICAh0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NUIyRUMxMTAvBgNVBAUTKDQ2OTIyQzU2NTQ0MDA0MEJEOTlBRkQ0RTMyOUVEOURF
QjZGOTI1NzMwHhcNMjIwNjE4MDYzODM4WhcNMjIxMjMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02MmFkNzJlZC1lZWRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEArecL5u+oQAx+cs8mf3z0N6kwxp+3F/SJpeBEXuCGS6JUO0+1EoUqYfBwhR/q
xLbKN1ZLn9SOSPqK+fVev64MslrBINSs1fwXJ4ZR166KGlTADUvTonH6y+EbiqM+
8T1Y/ORMb0nDlvFuY+FUJjI9MQ8HwJGa54JQ7800cMu1EHnmFwz0K3EWnMwGcI6U
6Gjijd9lmR+M1Umod0GozmB3GOSTiSivZ2w5VfdqPOqEyJO8XlIA59Q0Jgq16ZSE
rHRHg/8qmFXQsND8YCY15AXdIFccTGrEls8w8oj5bDhf+WqPsksOycEH09x+muQW
/l0WgH2wKJ9ECT5C1ViOxY1XcQIDAQABo4ICxTCCAsEwHQYDVR0OBBYEFFI71uc1
8p5iLbFE5VXcNJdKb4aCMB8GA1UdIwQYMBaAFEaSLFZUQAQL2Zr9TjKe2d62+SVz
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjJFQy84NDI3NTk1NjJC
MDkxMUVDODUxQjk4MEVDNEY5QUUwMi9ScElzVmxSQUJBdlptdjFPTXA3WjNyYjVK
WE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1JwSXNWbFJBQkF2Wm12MU9NcDdaM3JiNUpYTS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NUIyRUMvODQyNzU5NTYyQjA5MTFFQzg1MUI5ODBFQzRGOUFFMDIvNDgyMzJBN0FF
RUQxMTFFQzlCREQ0QzQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTwYIKwYBBQUHAQcBAf8E
QDA+MAwEAgABMAYDBAFnrLYwLgQCAAIwKDASAwcAJAfYQAABAwcAJAfYQAACMBID
BwYkB9hAAEADBwQkB9hAAGAwDQYJKoZIhvcNAQELBQADggEBAIuhvRNCtqB1Ynro
vrjG4/0iEWEt3HYSKgE6fVZR5mqT3zb0i5SIFAQcMzEbqqwSkOvD8C76DsBMWSKc
5nlZ9LG9ie6SoZr2Uq7EbhoDKGJxAvqR0HBrpnJPiaAdIJta/VdEZQBvi1rAP3+p
PYONUCq55gj8mXhfFRb3UcAf3qSMW7/RkL69fby6/M6RiCIYgb0BxqmIyRZEwbDN
8oLutbOUMVvoQfMKTuQZwUDzvBlzceK41ad5R3V1Ctz+qM6qyKhauV7+vkLN2z7U
Pv+gMLd9JbYIogSBUdfh/jYirvzW3IEeNjc6q8oyoA3mIJkM9VgeLFlqHmcpBrrt
g1i/ec0=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:07 2024 by rpki-client on console-ams.rpki-client.org