Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915D85E/73EF909C3BB511EBB4D1377DC4F9AE02/3D997D443BB711EB8D5FBB7EC4F9AE02.roa
File: 3D997D443BB711EB8D5FBB7EC4F9AE02.roa (raw, json)
Hash identifier: juM3vWgqQwPhaBJeJp58T1Mxaohf+V5rCAT2ohp+kKs=
Subject key identifier: 11:48:10:6E:3A:2B:8D:44:D5:49:F3:E3:90:70:09:07:18:8F:3B:B5
Certificate issuer: /CN=A915D85E/serialNumber=D458051F6DA952297475B484BDDD0FBBE3490E70
Certificate serial: 033F
Authority key identifier: D4:58:05:1F:6D:A9:52:29:74:75:B4:84:BD:DD:0F:BB:E3:49:0E:70
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FgFH22pUil0dbSEvd0Pu-NJDnA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915D85E/73EF909C3BB511EBB4D1377DC4F9AE02/3D997D443BB711EB8D5FBB7EC4F9AE02.roa
Signing time: Mon 31 Jan 2022 12:50:13 +0000
ROA not before: Mon 31 Jan 2022 12:50:13 +0000
ROA not after: Thu 02 Mar 2023 00:00:00 +0000
asID: 141448
IP address blocks: 103.159.170.0/24 maxlen: 24
103.159.171.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 831 (0x33f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915D85E/serialNumber=D458051F6DA952297475B484BDDD0FBBE3490E70
Validity
Not Before: Jan 31 12:50:13 2022 GMT
Not After : Mar 2 00:00:00 2023 GMT
Subject: CN=61f7db05-853d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:be:9e:9c:98:94:9e:75:70:a5:59:c7:6e:f5:
bb:7b:f9:4e:88:5f:3f:f2:42:25:a4:aa:90:43:c5:
b8:1a:7e:a1:5c:2a:d2:12:40:53:6e:2b:fd:f6:b3:
73:a4:17:f0:e1:8e:b3:14:0d:f6:67:ec:d6:07:ec:
69:28:b3:be:e1:01:70:be:1e:db:12:7c:6f:47:6c:
6e:67:57:53:b3:0e:25:0b:a4:aa:e9:d4:95:fd:55:
48:ab:05:ad:51:73:73:45:04:d4:88:2d:56:03:d3:
31:26:fb:c0:4a:27:4d:9d:6d:6d:ae:1f:96:95:b4:
2b:82:3a:fe:93:ab:18:2c:35:e0:c9:e7:72:4b:ca:
56:bd:10:44:09:b9:99:c2:fd:cc:4e:65:9d:0c:05:
2f:da:30:62:15:55:5e:25:bb:61:89:18:a4:0a:af:
3b:e9:62:75:a0:39:79:19:14:45:10:83:45:4a:30:
9b:b9:5a:89:dd:64:58:f7:f6:64:90:fe:fc:00:14:
21:d6:eb:8d:a2:41:af:84:83:9a:2c:5f:f0:b0:b1:
f7:79:4b:db:be:80:57:89:5f:0a:97:e1:00:b0:bc:
36:9e:82:ff:1a:19:4c:29:3d:24:d3:fa:d7:cf:8d:
c7:a9:4a:57:38:d1:9e:4e:c4:96:33:99:0f:9b:02:
9f:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:48:10:6E:3A:2B:8D:44:D5:49:F3:E3:90:70:09:07:18:8F:3B:B5
X509v3 Authority Key Identifier:
keyid:D4:58:05:1F:6D:A9:52:29:74:75:B4:84:BD:DD:0F:BB:E3:49:0E:70
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915D85E/73EF909C3BB511EBB4D1377DC4F9AE02/1FgFH22pUil0dbSEvd0Pu-NJDnA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FgFH22pUil0dbSEvd0Pu-NJDnA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D85E/73EF909C3BB511EBB4D1377DC4F9AE02/3D997D443BB711EB8D5FBB7EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.159.170.0/23
Signature Algorithm: sha256WithRSAEncryption
22:7d:0b:ae:c9:8d:1c:fa:08:b6:4a:9f:5d:e7:af:ac:87:92:
6b:30:db:8d:13:1e:a8:13:d6:2c:7a:4e:f8:79:36:35:96:d3:
b1:3f:83:91:99:1f:b5:0e:f9:cf:66:12:60:b2:72:c3:b9:96:
6c:28:61:bd:18:36:41:32:03:7b:39:c5:fa:04:c7:ba:e9:65:
7d:ee:18:39:df:7b:7d:0a:f2:cd:f7:b2:7a:3e:76:ec:c8:1a:
79:76:48:a4:84:de:69:60:f2:44:83:f4:18:86:42:57:b7:d9:
c2:27:17:8f:11:5a:35:7f:42:c2:41:28:0c:78:1f:d5:2c:e8:
74:dd:82:9c:38:5f:c7:dd:14:2b:54:49:14:df:b8:8d:0e:2f:
14:8a:c0:1b:c1:53:34:dc:5f:de:63:36:ea:ec:76:bb:74:94:
4e:b8:37:89:c1:da:b7:db:48:fe:ac:f8:48:73:6a:f5:bf:0f:
87:b5:63:31:6f:ee:85:b8:d6:89:9e:f4:58:08:9f:98:05:4c:
35:51:bb:7d:e1:a2:fa:33:38:61:1f:21:11:0c:25:97:33:84:
7a:18:e5:e6:6a:3a:ab:7a:11:94:7a:8f:f9:34:7e:1d:00:49:
6a:af:95:aa:7c:0d:8b:0e:43:e9:8c:d9:9d:54:12:87:80:ef:
98:3d:62:dd
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICAz8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NUQ4NUUxMTAvBgNVBAUTKEQ0NTgwNTFGNkRBOTUyMjk3NDc1QjQ4NEJEREQwRkJC
RTM0OTBFNzAwHhcNMjIwMTMxMTI1MDEzWhcNMjMwMzAyMDAwMDAwWjAYMRYwFAYD
VQQDEw02MWY3ZGIwNS04NTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAvr6enJiUnnVwpVnHbvW7e/lOiF8/8kIlpKqQQ8W4Gn6hXCrSEkBTbiv99rNz
pBfw4Y6zFA32Z+zWB+xpKLO+4QFwvh7bEnxvR2xuZ1dTsw4lC6Sq6dSV/VVIqwWt
UXNzRQTUiC1WA9MxJvvASidNnW1trh+WlbQrgjr+k6sYLDXgyedyS8pWvRBECbmZ
wv3MTmWdDAUv2jBiFVVeJbthiRikCq876WJ1oDl5GRRFEINFSjCbuVqJ3WRY9/Zk
kP78ABQh1uuNokGvhIOaLF/wsLH3eUvbvoBXiV8Kl+EAsLw2noL/GhlMKT0k0/rX
z43HqUpXONGeTsSWM5kPmwKfNwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBFIEG46
K41E1Unz45BwCQcYjzu1MB8GA1UdIwQYMBaAFNRYBR9tqVIpdHW0hL3dD7vjSQ5w
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDg1RS83M0VGOTA5QzNC
QjUxMUVCQjREMTM3N0RDNEY5QUUwMi8xRmdGSDIycFVpbDBkYlNFdmQwUHUtTkpE
bkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzFGZ0ZIMjJwVWlsMGRiU0V2ZDBQdS1OSkRuQS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NUQ4NUUvNzNFRjkwOUMzQkI1MTFFQkI0RDEzNzdEQzRGOUFFMDIvM0Q5OTdENDQz
QkI3MTFFQjhENUZCQjdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBAFnn6owDQYJKoZIhvcNAQELBQADggEBACJ9C67JjRz6CLZK
n13nr6yHkmsw240THqgT1ix6Tvh5NjWW07E/g5GZH7UO+c9mEmCycsO5lmwoYb0Y
NkEyA3s5xfoEx7rpZX3uGDnfe30K8s33sno+duzIGnl2SKSE3mlg8kSD9BiGQle3
2cInF48RWjV/QsJBKAx4H9Us6HTdgpw4X8fdFCtUSRTfuI0OLxSKwBvBUzTcX95j
Nursdrt0lE64N4nB2rfbSP6s+EhzavW/D4e1YzFv7oW41ome9FgIn5gFTDVRu33h
ovozOGEfIREMJZczhHoY5eZqOqt6EZR6j/k0fh0ASWqvlap8DYsOQ+mM2Z1UEoeA
75g9Yt0=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:08 2024 by rpki-client on console-fra.rpki-client.org