Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918664E/DF900E36CEE211EDA41C381CC4F9AE02/CD5E142CE04911EFB44FF948C4F9AE02.roa
File: CD5E142CE04911EFB44FF948C4F9AE02.roa (raw, json)
Hash identifier: 5E7Mvq7oZOCXu/k5NVIsVREqgxafZ7TvL04EYYB125U=
Subject key identifier: C2:69:2D:3C:67:6B:8B:61:5F:D1:EB:81:19:46:17:F4:D9:57:0C:73
Certificate issuer: /CN=A918664E/serialNumber=4C05BA8935E8DF3CC23250B567F2056B850715B9
Certificate serial: 017E
Authority key identifier: 4C:05:BA:89:35:E8:DF:3C:C2:32:50:B5:67:F2:05:6B:85:07:15:B9
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAW6iTXo3zzCMlC1Z_IFa4UHFbk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918664E/DF900E36CEE211EDA41C381CC4F9AE02/CD5E142CE04911EFB44FF948C4F9AE02.roa
Signing time: Sat 01 Feb 2025 03:08:25 +0000
ROA not before: Sat 01 Feb 2025 03:08:25 +0000
ROA not after: Sun 02 Mar 2025 00:00:00 +0000
asID: 24499
IP address blocks: 103.122.223.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 382 (0x17e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918664E
Validity
Not Before: Feb 1 03:08:25 2025 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=679d9029-a369
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:0f:24:c7:72:d1:ef:49:3e:46:a3:c2:e6:10:
3c:84:00:af:1f:ea:74:41:51:90:53:19:3d:d8:76:
93:ea:73:dc:d1:c6:be:63:24:00:55:94:80:e6:32:
60:10:56:80:0d:69:c7:5c:7f:e7:40:4d:8a:3d:33:
63:d0:32:30:e7:90:a7:99:6f:88:ff:89:85:da:13:
c4:27:06:a2:96:cb:33:c6:df:20:cc:d9:c1:e0:f4:
87:98:f1:71:3a:73:cc:39:72:c8:3e:af:13:c9:6b:
1d:c7:d5:d0:5f:ad:f6:2a:8d:38:37:82:24:33:83:
08:da:3c:17:29:5f:b4:b3:01:34:30:8d:40:af:e2:
55:c2:cc:0c:5e:4a:b2:d3:4d:34:e1:c6:04:d0:81:
40:91:10:f1:a2:23:81:62:06:3f:56:c0:6c:a5:c2:
a1:ab:d8:44:6a:87:e8:15:e2:6f:b7:a8:b1:60:cd:
09:23:cc:8a:60:ff:4a:75:8e:b6:77:4d:d5:94:61:
37:e3:15:f2:d5:d1:21:f4:22:85:48:1d:48:b3:ef:
c7:09:b7:9f:cc:7b:5d:c8:e7:96:ea:97:6c:60:e9:
a9:ce:a9:b0:c2:2c:c1:bf:cc:a3:92:13:c7:c4:60:
d6:41:29:4d:13:79:ac:7f:e4:34:00:97:4e:11:ed:
db:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:69:2D:3C:67:6B:8B:61:5F:D1:EB:81:19:46:17:F4:D9:57:0C:73
X509v3 Authority Key Identifier:
keyid:4C:05:BA:89:35:E8:DF:3C:C2:32:50:B5:67:F2:05:6B:85:07:15:B9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918664E/DF900E36CEE211EDA41C381CC4F9AE02/TAW6iTXo3zzCMlC1Z_IFa4UHFbk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAW6iTXo3zzCMlC1Z_IFa4UHFbk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918664E/DF900E36CEE211EDA41C381CC4F9AE02/CD5E142CE04911EFB44FF948C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.223.0/24
Signature Algorithm: sha256WithRSAEncryption
28:3c:b4:5e:6b:15:f5:c5:7f:63:8f:ce:2d:b4:4b:d6:76:ff:
75:1f:62:f1:f8:31:ef:d5:8f:c6:c0:c5:97:4d:2a:65:e3:a9:
62:c5:99:48:5b:95:8c:96:fe:94:f9:9f:ab:55:fe:f0:5a:10:
44:8f:93:70:8f:1d:26:88:9d:d7:b0:c4:20:06:09:89:12:3f:
98:06:2a:9a:1b:61:ce:af:05:03:24:a7:70:44:5a:04:8f:f0:
1f:bf:39:94:da:57:1d:45:ee:6d:b4:26:76:2d:52:1e:23:08:
24:08:7a:e2:f4:b6:b7:97:da:53:11:6f:8a:ca:13:6a:e2:4d:
cf:91:96:9d:42:26:02:2f:5d:28:ee:05:03:f3:1c:71:86:9f:
9a:63:b1:cd:fc:75:bb:c5:3a:3e:91:eb:20:ce:aa:2d:98:03:
13:cc:e9:90:25:0d:34:a3:6a:55:92:cf:60:dd:df:a8:53:f9:
ed:87:68:4b:e9:54:66:c8:d8:54:7e:66:55:b1:ca:42:05:4e:
51:d6:68:33:2d:04:62:a9:74:5d:6b:a1:3b:26:c5:d8:9c:ff:
ed:a5:12:1f:6f:ec:db:67:49:0a:93:ad:bd:d5:94:a5:47:a0:
59:2e:09:16:cc:21:81:85:bd:10:dd:c1:45:89:17:e5:00:2d:
5c:f6:35:2d
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICAX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
ODY2NEUxMTAvBgNVBAUTKDRDMDVCQTg5MzVFOERGM0NDMjMyNTBCNTY3RjIwNTZC
ODUwNzE1QjkwHhcNMjUwMjAxMDMwODI1WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD
VQQDEw02NzlkOTAyOS1hMzY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAyQ8kx3LR70k+RqPC5hA8hACvH+p0QVGQUxk92HaT6nPc0ca+YyQAVZSA5jJg
EFaADWnHXH/nQE2KPTNj0DIw55CnmW+I/4mF2hPEJwailsszxt8gzNnB4PSHmPFx
OnPMOXLIPq8TyWsdx9XQX632Ko04N4IkM4MI2jwXKV+0swE0MI1Ar+JVwswMXkqy
00004cYE0IFAkRDxoiOBYgY/VsBspcKhq9hEaofoFeJvt6ixYM0JI8yKYP9KdY62
d03VlGE34xXy1dEh9CKFSB1Is+/HCbefzHtdyOeW6pdsYOmpzqmwwizBv8yjkhPH
xGDWQSlNE3msf+Q0AJdOEe3b1wIDAQABo4IClTCCApEwHQYDVR0OBBYEFMJpLTxn
a4thX9HrgRlGF/TZVwxzMB8GA1UdIwQYMBaAFEwFuok16N88wjJQtWfyBWuFBxW5
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjY0RS9ERjkwMEUzNkNF
RTIxMUVEQTQxQzM4MUNDNEY5QUUwMi9UQVc2aVRYbzN6ekNNbEMxWl9JRmE0VUhG
YmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1RBVzZpVFhvM3p6Q01sQzFaX0lGYTRVSEZiay5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
ODY2NEUvREY5MDBFMzZDRUUyMTFFREE0MUMzODFDQzRGOUFFMDIvQ0Q1RTE0MkNF
MDQ5MTFFRkI0NEZGOTQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBABnet8wDQYJKoZIhvcNAQELBQADggEBACg8tF5rFfXFf2OP
zi20S9Z2/3UfYvH4Me/Vj8bAxZdNKmXjqWLFmUhblYyW/pT5n6tV/vBaEESPk3CP
HSaIndewxCAGCYkSP5gGKpobYc6vBQMkp3BEWgSP8B+/OZTaVx1F7m20JnYtUh4j
CCQIeuL0treX2lMRb4rKE2riTc+Rlp1CJgIvXSjuBQPzHHGGn5pjsc38dbvFOj6R
6yDOqi2YAxPM6ZAlDTSjalWSz2Dd36hT+e2HaEvpVGbI2FR+ZlWxykIFTlHWaDMt
BGKpdF1roTsmxdic/+2lEh9v7NtnSQqTrb3VlKVHoFkuCRbMIYGFvRDdwUWJF+UA
LVz2NS0=
-----END CERTIFICATE-----
Generated at Sat Apr 5 01:12:35 2025 by rpki-client