Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917CEE3/9A77AA2A059411EC9F646854C4F9AE02/57867AA6C4F811ECAC7CA453C4F9AE02.roa
File: 57867AA6C4F811ECAC7CA453C4F9AE02.roa (raw, json)
Hash identifier: KyndI3Jgho/1f9pROoWs//IVbZ5DYeUiNAepFbP9sQo=
Subject key identifier: DC:34:8D:04:51:AF:7C:B2:64:E0:BD:17:D2:A0:49:60:4F:08:D7:4B
Certificate issuer: /CN=A917CEE3/serialNumber=30E0803DEBA600AC9A92644C96F78A8E885D7C50
Certificate serial: 01EC
Authority key identifier: 30:E0:80:3D:EB:A6:00:AC:9A:92:64:4C:96:F7:8A:8E:88:5D:7C:50
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOCAPeumAKyakmRMlveKjohdfFA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917CEE3/9A77AA2A059411EC9F646854C4F9AE02/57867AA6C4F811ECAC7CA453C4F9AE02.roa
Signing time: Tue 26 Apr 2022 00:32:24 +0000
ROA not before: Tue 26 Apr 2022 00:32:24 +0000
ROA not after: Fri 30 Dec 2022 00:00:00 +0000
asID: 17557
IP address blocks: 103.123.115.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 492 (0x1ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917CEE3/serialNumber=30E0803DEBA600AC9A92644C96F78A8E885D7C50
Validity
Not Before: Apr 26 00:32:24 2022 GMT
Not After : Dec 30 00:00:00 2022 GMT
Subject: CN=62673d98-0624
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:e5:37:76:bf:e5:0d:08:32:3a:1e:dd:49:2f:
a0:ab:c6:98:f2:10:77:e9:0f:47:fb:a6:3c:81:4e:
da:71:5a:19:dd:d9:2d:8a:68:35:54:4f:20:8d:d0:
c0:ef:e8:c5:7d:6a:d4:73:31:4c:9c:b2:4c:55:73:
7b:a4:9d:34:88:2c:91:08:04:8e:27:88:e3:25:1c:
83:48:c9:f9:e7:fb:1c:30:ac:60:cc:b0:0f:da:5f:
08:c7:aa:c0:70:ae:d1:40:9f:0c:5e:cd:f8:a1:39:
2b:3f:f8:b7:9b:f7:1a:e8:56:50:80:7c:6d:dc:a3:
50:a0:6a:54:64:81:57:20:69:ac:c5:52:f9:5d:8b:
73:8b:dd:80:a7:e3:ed:c4:15:e8:4c:4b:8a:56:00:
30:88:c9:71:ad:07:fb:51:dd:af:da:40:ba:ab:3a:
ea:97:78:aa:2e:cf:3d:b1:29:e4:31:38:6c:70:5b:
fa:eb:16:b0:0f:e6:03:4e:f0:cd:58:cd:c2:1e:29:
07:2b:1c:ce:1d:46:1c:33:f8:ab:1b:65:01:8b:d9:
d1:17:30:a3:e0:8d:5c:4a:bb:cb:8e:3a:0d:da:db:
4a:0d:86:7f:f4:17:cd:01:40:cb:1b:77:0e:f5:ab:
96:7d:fd:71:17:27:5f:8c:b2:7f:6f:6b:83:0c:a8:
bb:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:34:8D:04:51:AF:7C:B2:64:E0:BD:17:D2:A0:49:60:4F:08:D7:4B
X509v3 Authority Key Identifier:
keyid:30:E0:80:3D:EB:A6:00:AC:9A:92:64:4C:96:F7:8A:8E:88:5D:7C:50
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917CEE3/9A77AA2A059411EC9F646854C4F9AE02/MOCAPeumAKyakmRMlveKjohdfFA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOCAPeumAKyakmRMlveKjohdfFA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CEE3/9A77AA2A059411EC9F646854C4F9AE02/57867AA6C4F811ECAC7CA453C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.115.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:62:d6:ba:ea:86:db:8b:0a:8e:b2:d1:52:c8:9d:5f:0d:ca:
01:3c:68:cd:cb:96:a2:06:8a:e8:44:c4:bf:df:bc:2c:b6:25:
29:fb:9a:63:be:37:04:1a:71:ca:7b:49:ff:78:87:98:fd:b7:
3a:53:3d:89:e6:cd:78:a7:d8:4d:b9:87:fa:2f:20:fb:65:68:
2b:db:f9:b5:bd:23:5c:93:2c:da:97:64:0c:ab:f4:e1:8f:f9:
7a:7f:da:58:5e:4f:bc:5e:c7:85:06:90:3c:1e:be:0b:7e:c3:
bb:39:e5:87:0f:9a:d7:3d:0d:e5:ec:44:0d:27:53:1f:61:00:
c3:61:ec:ea:a9:d4:88:57:2d:2f:1a:ca:82:28:5f:f0:ae:94:
90:4a:1f:16:dd:3b:f3:ce:fe:50:60:69:b6:e6:24:41:ac:fc:
72:03:06:9b:8e:97:5d:0a:0a:93:52:6a:d4:46:82:b8:78:74:
1b:40:ae:a8:51:86:38:a1:06:97:6b:7a:ac:c0:c1:c6:9f:38:
16:8d:61:84:fb:3b:a7:ba:df:5f:56:7b:32:a3:e8:3b:19:de:
55:21:9a:38:1a:9c:a2:0c:70:e6:83:04:37:a7:50:61:f6:7b:
12:49:ed:40:ab:65:4d:a6:92:19:cb:80:19:d4:97:4c:85:03:
25:56:9e:2c
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICAewwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
N0NFRTMxMTAvBgNVBAUTKDMwRTA4MDNERUJBNjAwQUM5QTkyNjQ0Qzk2Rjc4QThF
ODg1RDdDNTAwHhcNMjIwNDI2MDAzMjI0WhcNMjIxMjMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02MjY3M2Q5OC0wNjI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA6eU3dr/lDQgyOh7dSS+gq8aY8hB36Q9H+6Y8gU7acVoZ3dktimg1VE8gjdDA
7+jFfWrUczFMnLJMVXN7pJ00iCyRCASOJ4jjJRyDSMn55/scMKxgzLAP2l8Ix6rA
cK7RQJ8MXs34oTkrP/i3m/ca6FZQgHxt3KNQoGpUZIFXIGmsxVL5XYtzi92Ap+Pt
xBXoTEuKVgAwiMlxrQf7Ud2v2kC6qzrql3iqLs89sSnkMThscFv66xawD+YDTvDN
WM3CHikHKxzOHUYcM/irG2UBi9nRFzCj4I1cSrvLjjoN2ttKDYZ/9BfNAUDLG3cO
9auWff1xFydfjLJ/b2uDDKi7RQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNw0jQRR
r3yyZOC9F9KgSWBPCNdLMB8GA1UdIwQYMBaAFDDggD3rpgCsmpJkTJb3io6IXXxQ
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0VFMy85QTc3QUEyQTA1
OTQxMUVDOUY2NDY4NTRDNEY5QUUwMi9NT0NBUGV1bUFLeWFrbVJNbHZlS2pvaGRm
RkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL01PQ0FQZXVtQUt5YWttUk1sdmVLam9oZGZGQS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
N0NFRTMvOUE3N0FBMkEwNTk0MTFFQzlGNjQ2ODU0QzRGOUFFMDIvNTc4NjdBQTZD
NEY4MTFFQ0FDN0NBNDUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBABne3MwDQYJKoZIhvcNAQELBQADggEBAFpi1rrqhtuLCo6y
0VLInV8NygE8aM3LlqIGiuhExL/fvCy2JSn7mmO+NwQaccp7Sf94h5j9tzpTPYnm
zXin2E25h/ovIPtlaCvb+bW9I1yTLNqXZAyr9OGP+Xp/2lheT7xex4UGkDwevgt+
w7s55YcPmtc9DeXsRA0nUx9hAMNh7Oqp1IhXLS8ayoIoX/CulJBKHxbdO/PO/lBg
abbmJEGs/HIDBpuOl10KCpNSatRGgrh4dBtArqhRhjihBpdreqzAwcafOBaNYYT7
O6e6319WezKj6DsZ3lUhmjganKIMcOaDBDenUGH2exJJ7UCrZU2mkhnLgBnUl0yF
AyVWniw=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:22 2024 by rpki-client on console-ams.rpki-client.org