Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A919C3BE/947B3506093811EA95CA3129C4F9AE02/88E46918093A11EA9FB8B329C4F9AE02.roa
File: 88E46918093A11EA9FB8B329C4F9AE02.roa (raw, json)
Hash identifier: IyZP8fI+t7EVo0QYiHgDMgIm4b/kXqXAh9HWEO/R2ww=
Subject key identifier: 1C:C1:E6:8C:A1:54:49:01:BA:70:1F:6F:7D:93:B9:0A:7C:69:A7:5C
Certificate issuer: /CN=A919C3BE/serialNumber=C467CB2CCB9C21A707B5DFBCEABA054C190523AE
Certificate serial: 0A9C
Authority key identifier: C4:67:CB:2C:CB:9C:21:A7:07:B5:DF:BC:EA:BA:05:4C:19:05:23:AE
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xGfLLMucIacHtd-86roFTBkFI64.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919C3BE/947B3506093811EA95CA3129C4F9AE02/88E46918093A11EA9FB8B329C4F9AE02.roa
Signing time: Tue 14 Feb 2023 20:27:11 +0000
ROA not before: Tue 14 Feb 2023 20:27:11 +0000
ROA not after: Sun 31 Mar 2024 00:00:00 +0000
asID: 135339
IP address blocks: 220.247.128.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2716 (0xa9c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919C3BE/serialNumber=C467CB2CCB9C21A707B5DFBCEABA054C190523AE
Validity
Not Before: Feb 14 20:27:11 2023 GMT
Not After : Mar 31 00:00:00 2024 GMT
Subject: CN=63ebee9f-5e27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:c5:29:a8:df:84:98:e0:f3:06:45:35:e8:fc:
ce:53:42:4b:20:4c:1a:bc:ef:9c:4d:0d:77:12:83:
cb:dc:3f:28:de:6b:8b:e1:0e:a8:8e:59:41:8f:4c:
cb:fb:a7:57:5e:12:1c:92:5e:97:29:d8:1b:9c:5f:
29:be:ea:bd:04:b3:46:37:13:69:da:8f:43:15:07:
45:c3:a0:dc:64:dc:b7:d7:75:f5:b5:7f:6b:c7:fa:
50:35:04:6d:fd:87:8a:06:b0:ab:30:da:fa:20:bc:
5b:58:39:e2:e8:93:4c:cf:4e:25:8a:7f:58:5c:34:
a1:db:de:6e:c9:3d:3b:a8:62:c2:39:4e:3f:4c:1c:
3d:db:e6:18:f7:bb:b3:97:8c:14:45:d3:fc:d0:1b:
47:9f:17:d5:5b:08:15:14:06:e5:d5:b4:2b:08:61:
60:39:08:70:7c:20:1c:45:cf:20:f4:9e:af:e0:bd:
9e:eb:c0:7b:1c:b9:74:6e:5d:3b:f4:db:fc:f7:3e:
b0:60:db:05:1c:41:53:b2:dd:3a:eb:ae:bb:47:6d:
12:5e:03:d2:b1:e0:e6:8a:55:93:c0:f7:ea:45:99:
25:10:aa:74:a9:01:e2:89:a0:16:b8:b7:a7:52:ca:
f0:a9:cc:87:6a:e6:e8:53:ba:f6:9d:38:99:29:4a:
08:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:C1:E6:8C:A1:54:49:01:BA:70:1F:6F:7D:93:B9:0A:7C:69:A7:5C
X509v3 Authority Key Identifier:
keyid:C4:67:CB:2C:CB:9C:21:A7:07:B5:DF:BC:EA:BA:05:4C:19:05:23:AE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919C3BE/947B3506093811EA95CA3129C4F9AE02/xGfLLMucIacHtd-86roFTBkFI64.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xGfLLMucIacHtd-86roFTBkFI64.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C3BE/947B3506093811EA95CA3129C4F9AE02/88E46918093A11EA9FB8B329C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
220.247.128.0/24
Signature Algorithm: sha256WithRSAEncryption
99:ce:51:65:4a:27:02:3e:aa:9b:ef:19:9f:c5:3e:48:94:9b:
0f:60:0e:59:81:92:9b:46:33:3f:dd:dd:1e:2e:b3:36:f3:36:
4e:3d:e0:2f:3c:f9:aa:eb:2a:d3:c5:60:ee:7e:74:ab:96:b5:
e2:09:7d:88:f4:46:ae:3a:c8:f9:8e:f7:ce:e2:3d:81:d6:fb:
cb:43:07:16:ff:81:c4:a0:d3:41:ad:ec:7b:b9:14:d5:c6:60:
a1:0b:dd:52:31:0a:d4:39:3d:4e:a3:d7:7c:11:3c:72:92:65:
c3:4d:b2:02:b8:ef:a0:a3:37:5f:d0:7f:a6:3b:cc:56:c0:07:
74:e3:31:31:cb:1f:31:5d:ee:a6:ea:23:00:ae:56:31:5b:ed:
10:44:1b:27:d7:ba:be:2f:9c:51:40:f2:7d:ee:8d:f9:a1:45:
2f:10:5b:3d:db:f6:6c:60:29:6f:d3:7d:3d:70:51:4d:e4:14:
da:32:d3:65:ec:f0:f4:e3:c2:9a:8f:50:e1:5e:a7:92:de:d8:
ea:3c:5f:5c:3b:94:f7:a1:c4:a5:85:9e:f1:86:0d:0b:a9:b4:
b7:0f:32:41:18:c8:67:41:e9:ea:86:84:4a:96:49:43:09:dc:
28:b4:e1:f3:97:b3:33:b2:5d:b0:5b:38:11:4f:82:57:f8:fb:
74:a6:cf:6a
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICCpwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OUMzQkUxMTAvBgNVBAUTKEM0NjdDQjJDQ0I5QzIxQTcwN0I1REZCQ0VBQkEwNTRD
MTkwNTIzQUUwHhcNMjMwMjE0MjAyNzExWhcNMjQwMzMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02M2ViZWU5Zi01ZTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAucUpqN+EmODzBkU16PzOU0JLIEwavO+cTQ13EoPL3D8o3muL4Q6ojllBj0zL
+6dXXhIckl6XKdgbnF8pvuq9BLNGNxNp2o9DFQdFw6DcZNy313X1tX9rx/pQNQRt
/YeKBrCrMNr6ILxbWDni6JNMz04lin9YXDSh295uyT07qGLCOU4/TBw92+YY97uz
l4wURdP80BtHnxfVWwgVFAbl1bQrCGFgOQhwfCAcRc8g9J6v4L2e68B7HLl0bl07
9Nv89z6wYNsFHEFTst066667R20SXgPSseDmilWTwPfqRZklEKp0qQHiiaAWuLen
UsrwqcyHauboU7r2nTiZKUoIawIDAQABo4IClTCCApEwHQYDVR0OBBYEFBzB5oyh
VEkBunAfb32TuQp8aadcMB8GA1UdIwQYMBaAFMRnyyzLnCGnB7XfvOq6BUwZBSOu
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzNCRS85NDdCMzUwNjA5
MzgxMUVBOTVDQTMxMjlDNEY5QUUwMi94R2ZMTE11Y0lhY0h0ZC04NnJvRlRCa0ZJ
NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3hHZkxMTXVjSWFjSHRkLTg2cm9GVEJrRkk2NC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OUMzQkUvOTQ3QjM1MDYwOTM4MTFFQTk1Q0EzMTI5QzRGOUFFMDIvODhFNDY5MTgw
OTNBMTFFQTlGQjhCMzI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADc94AwDQYJKoZIhvcNAQELBQADggEBAJnOUWVKJwI+qpvv
GZ/FPkiUmw9gDlmBkptGMz/d3R4uszbzNk494C88+arrKtPFYO5+dKuWteIJfYj0
Rq46yPmO987iPYHW+8tDBxb/gcSg00Gt7Hu5FNXGYKEL3VIxCtQ5PU6j13wRPHKS
ZcNNsgK476CjN1/Qf6Y7zFbAB3TjMTHLHzFd7qbqIwCuVjFb7RBEGyfXur4vnFFA
8n3ujfmhRS8QWz3b9mxgKW/TfT1wUU3kFNoy02Xs8PTjwpqPUOFep5Le2Oo8X1w7
lPehxKWFnvGGDQuptLcPMkEYyGdB6eqGhEqWSUMJ3Ci04fOXszOyXbBbOBFPglf4
+3Smz2o=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:34 2024 by rpki-client on console-fra.rpki-client.org