Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4D1F/49152A44680411EDA2D2BD3CC4F9AE02/82BF765C2FC611EEBC7CD23BC4F9AE02.roa
File: 82BF765C2FC611EEBC7CD23BC4F9AE02.roa (raw, json)
Hash identifier: mdnUg+lOgVmHGcLEpJFdzndAgn2IY//3jvk6CW3O2Gw=
Subject key identifier: 8F:D8:23:ED:45:44:6E:5B:06:6B:45:6A:C6:B8:89:B5:A7:DF:3A:98
Certificate issuer: /CN=A91A4D1F/serialNumber=7AF34A260E6A29E9D7BC8AB1AC2656E147B88A22
Certificate serial: 91
Authority key identifier: 7A:F3:4A:26:0E:6A:29:E9:D7:BC:8A:B1:AC:26:56:E1:47:B8:8A:22
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/evNKJg5qKenXvIqxrCZW4Ue4iiI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A4D1F/49152A44680411EDA2D2BD3CC4F9AE02/82BF765C2FC611EEBC7CD23BC4F9AE02.roa
Signing time: Mon 31 Jul 2023 17:20:14 +0000
ROA not before: Mon 31 Jul 2023 17:20:14 +0000
ROA not after: Fri 01 Mar 2024 00:00:00 +0000
asID: 137449
IP address blocks: 103.41.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145 (0x91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A4D1F/serialNumber=7AF34A260E6A29E9D7BC8AB1AC2656E147B88A22
Validity
Not Before: Jul 31 17:20:14 2023 GMT
Not After : Mar 1 00:00:00 2024 GMT
Subject: CN=64c7ed4e-43f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:d7:74:25:c0:2f:df:98:69:c5:3f:5f:dc:d9:
bb:70:fd:46:47:97:25:ee:97:a0:2b:46:ef:56:29:
a6:2b:81:ab:38:61:13:25:21:2b:f6:76:ec:95:ce:
ba:aa:cb:93:f1:10:2b:b7:01:92:2b:ab:b4:a6:f1:
6b:d6:3e:cd:a0:cf:c0:26:9b:af:dc:3f:6c:ea:e5:
a2:27:af:83:9b:16:c6:0f:f0:78:56:77:32:0f:d0:
0b:dc:67:1a:86:7b:32:69:a3:56:e2:74:28:95:07:
83:1e:97:f3:f2:b3:13:d6:e0:6d:87:20:38:a7:31:
13:39:7a:4d:c6:8e:e5:53:75:18:49:95:52:a9:30:
d7:cb:66:57:b4:9e:1d:58:eb:bd:8d:87:05:a1:d1:
8e:e5:44:6b:c6:ed:b6:79:c0:d6:b7:5e:6a:76:87:
e8:2a:d6:1f:9c:6d:d4:8b:26:fe:01:07:23:cf:0a:
ae:3c:d8:29:ae:6f:20:b7:ea:03:ea:34:27:c6:ec:
bb:9e:19:25:73:9e:bf:76:72:1f:60:cd:6c:40:1b:
04:9e:5b:ee:37:82:fb:6e:ad:f6:f2:20:ac:fe:0e:
f9:4b:ba:a2:c3:69:9e:40:d7:ed:28:13:31:95:1b:
4e:49:3c:26:0a:9c:20:03:36:2b:ba:f2:73:c1:f1:
bb:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:D8:23:ED:45:44:6E:5B:06:6B:45:6A:C6:B8:89:B5:A7:DF:3A:98
X509v3 Authority Key Identifier:
keyid:7A:F3:4A:26:0E:6A:29:E9:D7:BC:8A:B1:AC:26:56:E1:47:B8:8A:22
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A4D1F/49152A44680411EDA2D2BD3CC4F9AE02/evNKJg5qKenXvIqxrCZW4Ue4iiI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/evNKJg5qKenXvIqxrCZW4Ue4iiI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4D1F/49152A44680411EDA2D2BD3CC4F9AE02/82BF765C2FC611EEBC7CD23BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.41.95.0/24
Signature Algorithm: sha256WithRSAEncryption
80:6a:b7:f8:df:9e:9f:27:1f:2b:e6:9f:94:0a:3f:02:8d:67:
a2:a9:63:41:48:63:49:03:10:e9:63:44:bc:eb:76:1c:38:eb:
c0:a9:ca:dd:49:8c:25:a4:01:78:2f:c8:b3:6d:7e:ff:d1:b0:
58:e9:18:8f:23:b1:55:08:02:d3:32:fb:63:d1:a9:a8:29:b8:
cc:ae:b9:a9:20:19:f4:a3:2c:cb:52:88:a0:32:21:d4:82:bc:
74:33:8d:63:9d:8a:e0:d7:41:0c:82:df:cc:e0:0c:32:12:ef:
22:1b:1b:47:29:cc:2d:d7:0e:f7:45:6c:04:d4:86:c4:fd:3f:
5c:b8:67:88:f6:d0:86:01:f6:a6:01:7c:9e:ab:56:53:7d:b0:
49:45:71:75:16:95:86:66:0f:05:f3:fc:a6:49:ca:6c:0a:50:
b7:ad:62:8c:ba:c2:57:3f:4a:cf:1c:3a:13:06:f1:b4:3f:d1:
a7:2b:2e:a0:b0:84:03:c6:33:d1:bd:9e:aa:da:f0:95:e4:88:
b5:7e:ca:09:4f:cd:14:41:54:c8:1e:cf:c0:ff:d6:1e:af:f8:
3c:f5:bf:9c:df:b7:97:a4:2c:a9:30:5b:4b:9a:59:b3:ba:ae:
e5:f3:f7:11:76:f6:a5:d9:f1:3e:2a:52:82:13:78:c8:58:82:
ab:44:ae:59
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICAJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QTREMUYxMTAvBgNVBAUTKDdBRjM0QTI2MEU2QTI5RTlEN0JDOEFCMUFDMjY1NkUx
NDdCODhBMjIwHhcNMjMwNzMxMTcyMDE0WhcNMjQwMzAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NGM3ZWQ0ZS00M2YxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEArdd0JcAv35hpxT9f3Nm7cP1GR5cl7pegK0bvVimmK4GrOGETJSEr9nbslc66
qsuT8RArtwGSK6u0pvFr1j7NoM/AJpuv3D9s6uWiJ6+DmxbGD/B4VncyD9AL3Gca
hnsyaaNW4nQolQeDHpfz8rMT1uBthyA4pzETOXpNxo7lU3UYSZVSqTDXy2ZXtJ4d
WOu9jYcFodGO5URrxu22ecDWt15qdofoKtYfnG3Uiyb+AQcjzwquPNgprm8gt+oD
6jQnxuy7nhklc56/dnIfYM1sQBsEnlvuN4L7bq328iCs/g75S7qiw2meQNftKBMx
lRtOSTwmCpwgAzYruvJzwfG7aQIDAQABo4IClTCCApEwHQYDVR0OBBYEFI/YI+1F
RG5bBmtFasa4ibWn3zqYMB8GA1UdIwQYMBaAFHrzSiYOainp17yKsawmVuFHuIoi
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEQxRi80OTE1MkE0NDY4
MDQxMUVEQTJEMkJEM0NDNEY5QUUwMi9ldk5LSmc1cUtlblh2SXF4ckNaVzRVZTRp
aUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2V2TktKZzVxS2VuWHZJcXhyQ1pXNFVlNGlpSS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QTREMUYvNDkxNTJBNDQ2ODA0MTFFREEyRDJCRDNDQzRGOUFFMDIvODJCRjc2NUMy
RkM2MTFFRUJDN0NEMjNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBABnKV8wDQYJKoZIhvcNAQELBQADggEBAIBqt/jfnp8nHyvm
n5QKPwKNZ6KpY0FIY0kDEOljRLzrdhw468Cpyt1JjCWkAXgvyLNtfv/RsFjpGI8j
sVUIAtMy+2PRqagpuMyuuakgGfSjLMtSiKAyIdSCvHQzjWOdiuDXQQyC38zgDDIS
7yIbG0cpzC3XDvdFbATUhsT9P1y4Z4j20IYB9qYBfJ6rVlN9sElFcXUWlYZmDwXz
/KZJymwKULetYoy6wlc/Ss8cOhMG8bQ/0acrLqCwhAPGM9G9nqra8JXkiLV+yglP
zRRBVMgez8D/1h6v+Dz1v5zft5ekLKkwW0uaWbO6ruXz9xF29qXZ8T4qUoITeMhY
gqtErlk=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:53 2024 by rpki-client on console-ams.rpki-client.org