Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/2737F0F8F11411ECA37B8727C4F9AE02.roa
File: 2737F0F8F11411ECA37B8727C4F9AE02.roa (raw, json)
Hash identifier: 6A7waMlm/0tSbBFzN6ydC0WWj8cNItZRm0fpPGA8PTM=
Subject key identifier: 72:A8:A4:5C:17:D4:00:B8:41:E5:09:48:44:58:F8:7E:FE:C0:F6:0E
Certificate issuer: /CN=A918FC75/serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D
Certificate serial: D5
Authority key identifier: 48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/2737F0F8F11411ECA37B8727C4F9AE02.roa
Signing time: Wed 24 Aug 2022 07:23:23 +0000
ROA not before: Wed 24 Aug 2022 07:23:23 +0000
ROA not after: Thu 31 Aug 2023 00:00:00 +0000
asID: 399471
IP address blocks: 203.32.7.0/24 maxlen: 24
203.32.28.0/24 maxlen: 24
203.32.38.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 213 (0xd5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918FC75/serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D
Validity
Not Before: Aug 24 07:23:23 2022 GMT
Not After : Aug 31 00:00:00 2023 GMT
Subject: CN=6305d1ea-6698
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:10:b1:84:84:6c:48:54:7e:e0:1d:4d:e2:76:
3f:8d:d1:0a:6a:33:49:63:65:5b:39:92:23:61:1c:
3a:e7:1e:46:6a:40:50:de:91:62:49:2b:ce:7c:0b:
53:e6:65:7d:58:3c:10:be:f7:a8:40:ed:f8:5d:01:
0f:fe:2a:f8:c2:25:96:15:1b:51:44:36:c8:f1:bc:
c3:28:bc:30:03:a7:93:b8:d8:fc:4f:1f:4a:0d:5f:
f4:a9:cd:54:d4:a1:6d:d0:02:49:d4:71:02:f7:9b:
c7:87:8c:3e:8e:13:87:30:6a:2b:33:9a:f2:1b:34:
8e:77:37:5e:16:39:78:a7:1c:5f:0e:95:0f:cf:80:
e8:31:d7:43:bb:7a:70:8c:ef:ee:e3:ea:73:6b:90:
28:d4:20:9d:19:fb:b3:89:19:d5:ff:c9:29:97:47:
71:93:a7:b4:db:7e:b8:fb:b2:4e:71:1d:2e:74:61:
96:39:6b:30:a7:a3:06:30:98:c7:a6:2d:a2:40:4d:
15:d2:99:55:6b:b3:00:da:bf:2b:aa:e3:42:49:fa:
d1:64:90:ef:39:c1:b1:df:67:10:a3:64:92:8d:eb:
ad:c2:2e:62:2d:3a:c7:f1:46:8a:a6:f4:44:ef:2b:
ef:c5:20:27:7b:ec:f8:2f:59:fe:c9:b6:af:6e:c5:
5d:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:A8:A4:5C:17:D4:00:B8:41:E5:09:48:44:58:F8:7E:FE:C0:F6:0E
X509v3 Authority Key Identifier:
keyid:48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/2737F0F8F11411ECA37B8727C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.32.7.0/24
203.32.28.0/24
203.32.38.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:f1:75:4c:db:85:8e:1a:ca:b1:ba:79:82:f4:2c:63:05:f4:
28:16:de:36:92:6b:84:e9:22:39:cc:57:9b:6f:cf:ef:53:8f:
f4:3a:75:8a:8c:23:36:24:af:36:7f:5a:49:2a:ee:22:39:78:
c9:39:57:90:7f:f3:9d:9a:78:6d:1e:59:7c:ac:07:60:14:36:
d3:90:cc:34:6f:5a:97:08:47:0f:83:a6:74:c8:fa:6d:b4:53:
98:80:2f:ae:30:4a:ee:70:f0:b2:94:1f:35:d5:45:da:4f:f1:
63:af:65:cb:34:6a:38:8b:2b:fe:d9:ea:5f:1a:76:25:d0:fa:
6c:ec:a8:ea:80:2a:4e:cd:46:e6:dd:b9:d0:0d:ab:af:ce:c2:
41:cb:de:8f:a1:dd:6a:20:58:13:37:f2:00:de:87:f5:10:c0:
6d:83:f7:c6:09:39:2b:ba:59:61:0d:4d:32:f9:96:f7:65:ec:
df:0c:c3:b5:dd:b7:de:82:2f:8f:d4:b7:e6:60:65:75:4d:e7:
6a:ac:ae:32:9f:e4:f8:13:37:df:d8:01:16:ab:a6:be:ed:0d:
56:d4:91:32:61:cb:b3:28:3b:2d:b2:e7:fe:7f:c9:66:0a:17:
6f:1a:eb:3a:6b:59:c3:9f:6c:9a:1b:48:88:e3:2a:68:c8:45:
ef:ff:0f:de
-----BEGIN CERTIFICATE-----
MIIFfTCCBGWgAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OEZDNzUxMTAvBgNVBAUTKDQ4MkU1QTZFMDg5NkEyNjZBOTFBNDA2NkMwNkY0QjRF
RDk4NDY0OUQwHhcNMjIwODI0MDcyMzIzWhcNMjMwODMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02MzA1ZDFlYS02Njk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA0hCxhIRsSFR+4B1N4nY/jdEKajNJY2VbOZIjYRw65x5GakBQ3pFiSSvOfAtT
5mV9WDwQvveoQO34XQEP/ir4wiWWFRtRRDbI8bzDKLwwA6eTuNj8Tx9KDV/0qc1U
1KFt0AJJ1HEC95vHh4w+jhOHMGorM5ryGzSOdzdeFjl4pxxfDpUPz4DoMddDu3pw
jO/u4+pza5Ao1CCdGfuziRnV/8kpl0dxk6e02364+7JOcR0udGGWOWswp6MGMJjH
pi2iQE0V0plVa7MA2r8rquNCSfrRZJDvOcGx32cQo2SSjeutwi5iLTrH8UaKpvRE
7yvvxSAne+z4L1n+ybavbsVdlwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFHKopFwX
1AC4QeUJSERY+H7+wPYOMB8GA1UdIwQYMBaAFEguWm4IlqJmqRpAZsBvS07ZhGSd
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkM3NS8zQUE1REVFMERE
NTgxMUVDODcwRkMyMERDNEY5QUUwMi9TQzVhYmdpV29tYXBHa0Jtd0c5TFR0bUVa
SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1NDNWFiZ2lXb21hcEdrQm13RzlMVHRtRVpKMC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OEZDNzUvM0FBNURFRTBERDU4MTFFQzg3MEZDMjBEQzRGOUFFMDIvMjczN0YwRjhG
MTE0MTFFQ0EzN0I4NzI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E
HDAaMBgEAgABMBIDBADLIAcDBADLIBwDBADLICYwDQYJKoZIhvcNAQELBQADggEB
AHvxdUzbhY4ayrG6eYL0LGMF9CgW3jaSa4TpIjnMV5tvz+9Tj/Q6dYqMIzYkrzZ/
Wkkq7iI5eMk5V5B/852aeG0eWXysB2AUNtOQzDRvWpcIRw+DpnTI+m20U5iAL64w
Su5w8LKUHzXVRdpP8WOvZcs0ajiLK/7Z6l8adiXQ+mzsqOqAKk7NRubdudANq6/O
wkHL3o+h3WogWBM38gDeh/UQwG2D98YJOSu6WWENTTL5lvdl7N8Mw7Xdt96CL4/U
t+ZgZXVN52qsrjKf5PgTN9/YARarpr7tDVbUkTJhy7MoOy2y5/5/yWYKF28a6zpr
WcOfbJobSIjjKmjIRe//D94=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:46 2024 by rpki-client on console-ams.rpki-client.org