Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0277/D419D81075CB11EB952DD66AC4F9AE02/EDBFEFCE75CC11EBAAC2FB6AC4F9AE02.roa
File: EDBFEFCE75CC11EBAAC2FB6AC4F9AE02.roa (raw, json)
Hash identifier: Ee6ivUuKi1l1SfDZvknqsvbVsBWekGT/aAQ29EPpyNs=
Subject key identifier: BA:6F:2A:C4:7F:2B:F4:46:94:31:3B:F7:8A:F6:EB:0D:46:82:09:5A
Certificate issuer: /CN=A91A0277/serialNumber=61D909494AAC099E5DC67BD9DECCFEBE44B77779
Certificate serial: 04
Authority key identifier: 61:D9:09:49:4A:AC:09:9E:5D:C6:7B:D9:DE:CC:FE:BE:44:B7:77:79
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YdkJSUqsCZ5dxnvZ3sz-vkS3d3k.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A0277/D419D81075CB11EB952DD66AC4F9AE02/EDBFEFCE75CC11EBAAC2FB6AC4F9AE02.roa
Signing time: Tue 23 Feb 2021 11:57:51 +0000
ROA not before: Tue 23 Feb 2021 11:57:51 +0000
ROA not after: Sat 28 May 2022 00:00:00 +0000
asID: 136991
IP address blocks: 103.162.244.0/23 maxlen: 24
2407:1fc0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A0277/serialNumber=61D909494AAC099E5DC67BD9DECCFEBE44B77779
Validity
Not Before: Feb 23 11:57:51 2021 GMT
Not After : May 28 00:00:00 2022 GMT
Subject: CN=6034edbe-33ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:b2:ef:fe:47:31:b4:86:b1:19:42:6e:83:76:
91:9f:75:2e:64:21:39:f8:f1:52:fb:03:d2:e8:aa:
c5:ee:b1:f6:02:f6:e2:1d:d8:40:b6:d9:14:b1:1f:
dc:42:46:34:0a:df:1f:a4:17:ab:aa:59:ed:21:99:
b5:c4:14:fc:61:60:3c:0e:6a:6d:a1:91:73:4f:90:
6c:49:6b:50:c6:68:e2:3d:15:4b:98:61:80:8d:b1:
40:85:78:50:b7:92:fc:10:83:c9:dc:39:64:4e:b1:
79:b4:78:1c:0a:35:05:89:e2:57:b5:ec:83:a4:8f:
70:a0:a1:2f:a8:cf:91:80:85:d2:56:9e:66:53:18:
26:ee:59:75:b7:6f:94:02:31:5f:2b:f2:74:f4:ec:
ff:64:1c:82:18:b8:ff:d1:0c:48:69:a0:f0:3f:64:
a9:0e:05:18:dd:31:8d:7a:35:37:87:a3:0a:25:5e:
8f:2f:79:74:ea:2a:80:d0:4e:8d:3c:49:75:94:36:
c6:4f:3a:2a:6a:5b:0c:54:93:e3:71:a5:76:29:39:
80:92:e3:01:82:07:18:ee:b4:80:f4:85:9a:3a:34:
54:04:fa:54:aa:76:31:c8:6c:c2:8d:2e:8e:b9:39:
43:8f:3e:2e:dc:79:84:7d:bb:82:a5:23:6e:22:0e:
b7:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:6F:2A:C4:7F:2B:F4:46:94:31:3B:F7:8A:F6:EB:0D:46:82:09:5A
X509v3 Authority Key Identifier:
keyid:61:D9:09:49:4A:AC:09:9E:5D:C6:7B:D9:DE:CC:FE:BE:44:B7:77:79
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A0277/D419D81075CB11EB952DD66AC4F9AE02/YdkJSUqsCZ5dxnvZ3sz-vkS3d3k.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YdkJSUqsCZ5dxnvZ3sz-vkS3d3k.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0277/D419D81075CB11EB952DD66AC4F9AE02/EDBFEFCE75CC11EBAAC2FB6AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.162.244.0/23
IPv6:
2407:1fc0::/32
Signature Algorithm: sha256WithRSAEncryption
42:64:0e:74:0b:29:3d:64:27:3c:86:26:0b:d6:bb:ec:3a:5d:
84:c1:0f:5c:df:db:d1:60:fe:1b:f6:52:b9:5a:9a:70:08:fe:
b4:52:b9:74:7e:7b:09:e1:4e:e5:3d:f8:4c:22:62:10:74:7f:
c1:dc:89:4a:80:8e:7e:b7:09:f4:68:c5:40:6c:a4:a5:18:e1:
8f:ed:a9:09:d2:5a:8b:56:d0:34:8f:91:40:e7:ad:d6:93:aa:
4f:ed:48:77:32:55:d3:28:cb:10:74:41:ff:a0:86:a6:d7:eb:
ce:ca:04:9b:01:c2:b1:33:50:53:1d:93:fa:e4:bc:60:7c:65:
eb:08:37:a2:d4:32:18:aa:7f:c0:14:cd:6d:92:50:3a:ed:df:
1a:de:ef:6f:49:66:68:06:ce:ef:2a:de:a9:35:0f:83:91:de:
79:e1:af:c1:06:78:e3:aa:15:33:0c:55:75:61:db:51:05:b1:
39:fe:66:eb:01:23:ed:b0:9d:f2:c4:70:8f:bf:22:ef:61:05:
2c:fa:a7:bc:c8:5f:6e:02:50:24:2e:06:5d:58:bf:eb:6f:61:
8e:2c:00:bc:8f:b8:1e:5b:6b:ec:07:8d:7c:4c:50:f3:bd:aa:
11:0b:aa:db:33:b4:b4:8a:7c:0c:ce:6e:46:b0:76:c2:0f:4a:
e6:d1:0d:ce
-----BEGIN CERTIFICATE-----
MIIFfzCCBGegAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB
MDI3NzExMC8GA1UEBRMoNjFEOTA5NDk0QUFDMDk5RTVEQzY3QkQ5REVDQ0ZFQkU0
NEI3Nzc3OTAeFw0yMTAyMjMxMTU3NTFaFw0yMjA1MjgwMDAwMDBaMBgxFjAUBgNV
BAMTDTYwMzRlZGJlLTMzYWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC+su/+RzG0hrEZQm6DdpGfdS5kITn48VL7A9LoqsXusfYC9uId2EC22RSxH9xC
RjQK3x+kF6uqWe0hmbXEFPxhYDwOam2hkXNPkGxJa1DGaOI9FUuYYYCNsUCFeFC3
kvwQg8ncOWROsXm0eBwKNQWJ4le17IOkj3CgoS+oz5GAhdJWnmZTGCbuWXW3b5QC
MV8r8nT07P9kHIIYuP/RDEhpoPA/ZKkOBRjdMY16NTeHowolXo8veXTqKoDQTo08
SXWUNsZPOipqWwxUk+NxpXYpOYCS4wGCBxjutID0hZo6NFQE+lSqdjHIbMKNLo65
OUOPPi7ceYR9u4KlI24iDrevAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUum8qxH8r
9EaUMTv3ivbrDUaCCVowHwYDVR0jBBgwFoAUYdkJSUqsCZ5dxnvZ3sz+vkS3d3kw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEwMjc3L0Q0MTlEODEwNzVD
QjExRUI5NTJERDY2QUM0RjlBRTAyL1lka0pTVXFzQ1o1ZHhudlozc3otdmtTM2Qz
ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvWWRrSlNVcXNDWjVkeG52WjNzei12a1MzZDNrLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw
C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB
MDI3Ny9ENDE5RDgxMDc1Q0IxMUVCOTUyREQ2NkFDNEY5QUUwMi9FREJGRUZDRTc1
Q0MxMUVCQUFDMkZCNkFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v
cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf
MB0wDAQCAAEwBgMEAWei9DANBAIAAjAHAwUAJAcfwDANBgkqhkiG9w0BAQsFAAOC
AQEAQmQOdAspPWQnPIYmC9a77DpdhMEPXN/b0WD+G/ZSuVqacAj+tFK5dH57CeFO
5T34TCJiEHR/wdyJSoCOfrcJ9GjFQGykpRjhj+2pCdJai1bQNI+RQOet1pOqT+1I
dzJV0yjLEHRB/6CGptfrzsoEmwHCsTNQUx2T+uS8YHxl6wg3otQyGKp/wBTNbZJQ
Ou3fGt7vb0lmaAbO7yreqTUPg5HeeeGvwQZ446oVMwxVdWHbUQWxOf5m6wEj7bCd
8sRwj78i72EFLPqnvMhfbgJQJC4GXVi/629hjiwAvI+4Hltr7AeNfExQ872qEQuq
2zO0tIp8DM5uRrB2wg9K5tENzg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:35 2024 by rpki-client on console-fra.rpki-client.org