Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0277/D419D81075CB11EB952DD66AC4F9AE02/BA1982E2971E11EC9ED58118C4F9AE02.roa
File: BA1982E2971E11EC9ED58118C4F9AE02.roa (raw, json)
Hash identifier: 1kYLYMp4zwFZVzl8mNjgUSTto2sU5AooY6SnthoetTQ=
Subject key identifier: E1:79:B1:30:37:72:F0:7D:A5:77:29:CB:C9:2D:E1:22:C3:76:E1:74
Certificate issuer: /CN=A91A0277/serialNumber=61D909494AAC099E5DC67BD9DECCFEBE44B77779
Certificate serial: 04F1
Authority key identifier: 61:D9:09:49:4A:AC:09:9E:5D:C6:7B:D9:DE:CC:FE:BE:44:B7:77:79
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YdkJSUqsCZ5dxnvZ3sz-vkS3d3k.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A0277/D419D81075CB11EB952DD66AC4F9AE02/BA1982E2971E11EC9ED58118C4F9AE02.roa
Signing time: Mon 03 Apr 2023 01:32:00 +0000
ROA not before: Mon 03 Apr 2023 01:32:00 +0000
ROA not after: Wed 29 May 2024 00:00:00 +0000
asID: 136991
IP address blocks: 103.162.244.0/23 maxlen: 24
2407:1fc0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1265 (0x4f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A0277/serialNumber=61D909494AAC099E5DC67BD9DECCFEBE44B77779
Validity
Not Before: Apr 3 01:32:00 2023 GMT
Not After : May 29 00:00:00 2024 GMT
Subject: CN=642a2c8f-6ab9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:d6:0f:12:28:07:64:d3:38:bb:88:c1:69:08:
33:61:be:ff:f0:9b:86:6f:98:68:5c:c9:9b:fe:0f:
fb:5c:a7:52:8d:1e:21:37:1b:d0:ae:92:9a:fc:80:
00:52:03:a1:c6:85:0c:f0:ee:aa:29:9a:4d:b8:3b:
f7:ea:33:84:11:f6:0b:d1:2c:eb:23:ea:40:74:5c:
fa:0c:7e:0a:7d:d3:1a:5b:dc:b8:2e:3e:d4:34:bf:
76:3d:aa:5e:cc:39:cf:11:6a:b8:48:29:62:ef:7a:
be:f1:52:85:d5:1e:fa:dd:d2:f1:6a:f8:02:3b:e0:
d4:85:97:09:28:18:a5:f3:dd:01:2e:ed:8b:67:ca:
8f:ec:2a:70:70:8f:3b:48:54:04:64:da:e4:0e:f6:
82:4f:d8:72:b3:32:01:20:71:db:55:6a:69:2c:e5:
a9:b6:aa:17:7e:41:98:1b:a1:ca:1f:85:86:e1:be:
86:25:29:3e:f9:55:94:a1:f2:ab:84:54:82:95:26:
f2:fe:9d:dd:ac:2e:46:a2:12:0a:7c:14:2b:7e:98:
92:98:45:03:da:94:a4:6a:14:e6:b8:fa:07:be:9d:
c4:26:44:8d:66:d5:00:43:09:7f:35:08:1b:3f:1a:
e7:23:f2:96:f7:2b:84:b6:c9:28:d6:cf:16:7a:90:
88:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:79:B1:30:37:72:F0:7D:A5:77:29:CB:C9:2D:E1:22:C3:76:E1:74
X509v3 Authority Key Identifier:
keyid:61:D9:09:49:4A:AC:09:9E:5D:C6:7B:D9:DE:CC:FE:BE:44:B7:77:79
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A0277/D419D81075CB11EB952DD66AC4F9AE02/YdkJSUqsCZ5dxnvZ3sz-vkS3d3k.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YdkJSUqsCZ5dxnvZ3sz-vkS3d3k.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0277/D419D81075CB11EB952DD66AC4F9AE02/BA1982E2971E11EC9ED58118C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.162.244.0/23
IPv6:
2407:1fc0::/32
Signature Algorithm: sha256WithRSAEncryption
7a:d7:a4:5e:f4:47:32:96:5c:bf:3c:eb:59:20:53:54:6e:05:
bb:f1:37:4b:ef:6b:6e:26:63:96:8b:36:5f:7b:6c:a4:b4:77:
2b:9b:cc:a6:85:26:ca:77:df:b6:34:93:92:77:e1:16:6b:65:
10:ed:2b:d1:5c:fc:7f:9b:1e:2b:7d:9f:18:6c:62:ee:cb:01:
76:6d:ad:4c:73:b1:22:4b:98:7f:f7:fb:90:1a:e3:d9:67:fd:
35:77:e4:f6:59:10:78:aa:c7:63:d7:37:36:85:db:99:60:cb:
24:c0:69:b2:64:8a:35:78:8c:0b:c2:6f:a7:bd:4c:48:90:24:
a6:5c:65:08:1f:0a:41:67:9d:c1:8b:ea:d7:bb:54:23:6d:a2:
5a:3d:97:70:a4:39:0b:6c:03:59:6e:13:e5:36:df:cd:2e:ed:
a3:f9:15:bb:7b:87:4d:31:47:0f:91:88:b6:48:e9:18:84:58:
b2:44:62:9a:fa:9f:71:5b:2e:49:6a:0a:a1:bb:13:b0:c8:ef:
e1:64:58:7d:da:e5:32:1f:dd:59:8a:7d:74:52:e7:61:5f:26:
68:0d:f1:61:90:07:af:93:e7:4c:c9:25:20:60:5e:5b:ce:b6:
0a:54:51:e5:9f:1e:6d:f3:0d:90:74:c0:8e:d9:44:f9:32:4b:
6b:8a:b0:07
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICBPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QTAyNzcxMTAvBgNVBAUTKDYxRDkwOTQ5NEFBQzA5OUU1REM2N0JEOURFQ0NGRUJF
NDRCNzc3NzkwHhcNMjMwNDAzMDEzMjAwWhcNMjQwNTI5MDAwMDAwWjAYMRYwFAYD
VQQDEw02NDJhMmM4Zi02YWI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAx9YPEigHZNM4u4jBaQgzYb7/8JuGb5hoXMmb/g/7XKdSjR4hNxvQrpKa/IAA
UgOhxoUM8O6qKZpNuDv36jOEEfYL0SzrI+pAdFz6DH4KfdMaW9y4Lj7UNL92Pape
zDnPEWq4SCli73q+8VKF1R763dLxavgCO+DUhZcJKBil890BLu2LZ8qP7CpwcI87
SFQEZNrkDvaCT9hyszIBIHHbVWppLOWptqoXfkGYG6HKH4WG4b6GJSk++VWUofKr
hFSClSby/p3drC5GohIKfBQrfpiSmEUD2pSkahTmuPoHvp3EJkSNZtUAQwl/NQgb
PxrnI/KW9yuEtsko1s8WepCIgQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFOF5sTA3
cvB9pXcpy8kt4SLDduF0MB8GA1UdIwQYMBaAFGHZCUlKrAmeXcZ72d7M/r5Et3d5
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDI3Ny9ENDE5RDgxMDc1
Q0IxMUVCOTUyREQ2NkFDNEY5QUUwMi9ZZGtKU1Vxc0NaNWR4bnZaM3N6LXZrUzNk
M2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1lka0pTVXFzQ1o1ZHhudlozc3otdmtTM2Qzay5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QTAyNzcvRDQxOUQ4MTA3NUNCMTFFQjk1MkRENjZBQzRGOUFFMDIvQkExOTgyRTI5
NzFFMTFFQzlFRDU4MTE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E
HzAdMAwEAgABMAYDBAFnovQwDQQCAAIwBwMFACQHH8AwDQYJKoZIhvcNAQELBQAD
ggEBAHrXpF70RzKWXL8861kgU1RuBbvxN0vva24mY5aLNl97bKS0dyubzKaFJsp3
37Y0k5J34RZrZRDtK9Fc/H+bHit9nxhsYu7LAXZtrUxzsSJLmH/3+5Aa49ln/TV3
5PZZEHiqx2PXNzaF25lgyyTAabJkijV4jAvCb6e9TEiQJKZcZQgfCkFnncGL6te7
VCNtolo9l3CkOQtsA1luE+U2380u7aP5Fbt7h00xRw+RiLZI6RiEWLJEYpr6n3Fb
LklqCqG7E7DI7+FkWH3a5TIf3VmKfXRS52FfJmgN8WGQB6+T50zJJSBgXlvOtgpU
UeWfHm3zDZB0wI7ZRPkyS2uKsAc=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:35 2024 by rpki-client on console-fra.rpki-client.org