Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A93BB/9451D3724A0411EDB6EA9576C4F9AE02/A8207AA84A0811ED88FF0527C4F9AE02.roa
File: A8207AA84A0811ED88FF0527C4F9AE02.roa (raw, json)
Hash identifier: 2mJZQu75bNQWRNcScHLASumNruyL/l5lOMeXa1B9dV8=
Subject key identifier: 01:D8:DE:78:FE:22:F0:57:BE:B5:63:A5:E1:52:7C:4B:72:46:00:83
Certificate issuer: /CN=A91A93BB/serialNumber=F3E5E256D2EC5CA67F8A19BE5A1B2829B137581F
Certificate serial: 02
Authority key identifier: F3:E5:E2:56:D2:EC:5C:A6:7F:8A:19:BE:5A:1B:28:29:B1:37:58:1F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8-XiVtLsXKZ_ihm-WhsoKbE3WB8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A93BB/9451D3724A0411EDB6EA9576C4F9AE02/A8207AA84A0811ED88FF0527C4F9AE02.roa
Signing time: Wed 12 Oct 2022 08:34:16 +0000
ROA not before: Wed 12 Oct 2022 08:34:16 +0000
ROA not after: Fri 01 Dec 2023 00:00:00 +0000
asID: 150322
IP address blocks: 103.151.74.0/23 maxlen: 23
103.151.74.0/24 maxlen: 24
103.151.75.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A93BB/serialNumber=F3E5E256D2EC5CA67F8A19BE5A1B2829B137581F
Validity
Not Before: Oct 12 08:34:16 2022 GMT
Not After : Dec 1 00:00:00 2023 GMT
Subject: CN=63467c08-89f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:69:fa:75:40:46:0b:cd:53:e7:72:1e:f3:1d:
c9:2c:d0:4a:10:93:53:13:55:02:99:55:be:bf:89:
b2:12:d7:ef:bd:72:60:f1:12:41:64:7e:60:bd:86:
27:e1:33:38:e0:1d:9a:3c:d2:42:bf:a5:72:c8:1e:
3b:5c:9a:ac:6f:c0:75:7f:13:d3:1d:7c:1f:c9:3d:
53:de:a1:9c:77:3b:1b:b7:25:3c:ee:40:f4:b7:91:
5e:f3:0b:7b:4c:24:05:08:bf:dc:b8:53:23:bf:bf:
46:a2:18:8b:45:e2:61:16:a2:d8:1f:e0:73:11:35:
51:55:58:5c:99:9a:8a:df:a2:41:8f:72:08:40:83:
36:a3:8a:63:d5:c5:1b:e0:ef:61:af:af:2d:cc:ca:
a1:a3:f6:f9:7a:dd:7f:68:9d:54:4c:61:6d:cf:da:
47:6f:94:27:83:16:92:d6:cb:46:75:2b:e5:cc:80:
b2:3e:d7:d6:be:9d:c6:3d:ba:67:c0:8c:40:5e:c1:
39:22:99:82:76:01:6a:91:09:ce:e0:57:5a:02:04:
c6:e3:d9:a0:32:30:75:55:53:b9:3f:44:05:7e:43:
84:c8:ae:df:e8:96:90:94:67:a1:e7:d2:e7:29:89:
bd:5a:58:bb:93:ff:e8:7b:7c:59:c5:ac:84:54:7c:
42:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:D8:DE:78:FE:22:F0:57:BE:B5:63:A5:E1:52:7C:4B:72:46:00:83
X509v3 Authority Key Identifier:
keyid:F3:E5:E2:56:D2:EC:5C:A6:7F:8A:19:BE:5A:1B:28:29:B1:37:58:1F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A93BB/9451D3724A0411EDB6EA9576C4F9AE02/8-XiVtLsXKZ_ihm-WhsoKbE3WB8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8-XiVtLsXKZ_ihm-WhsoKbE3WB8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A93BB/9451D3724A0411EDB6EA9576C4F9AE02/A8207AA84A0811ED88FF0527C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.151.74.0/23
Signature Algorithm: sha256WithRSAEncryption
32:be:5d:af:3d:9f:d2:35:f5:1d:7e:09:24:a7:ad:3f:ec:5c:
13:96:d1:94:d3:bb:4e:ae:eb:cc:d7:b4:54:71:cd:f3:67:05:
6b:04:86:4d:cd:dd:93:ac:56:55:dc:f7:0c:23:1c:ef:6e:76:
6f:31:af:30:6a:4a:fd:90:d6:6e:84:2d:24:08:ff:12:01:18:
86:ce:a3:51:3d:f2:b9:ba:b0:66:0b:1e:27:a6:56:44:82:16:
9e:be:02:7c:59:9a:b5:1b:0d:32:ac:6f:8e:79:81:d4:1c:8b:
79:1e:f4:97:6f:3c:39:02:43:4c:34:22:cd:26:a0:b7:04:3d:
08:b3:3a:90:dc:07:38:67:14:dd:76:d4:f3:e2:d1:bc:43:26:
2d:55:d2:a6:b8:ab:cb:b2:d4:58:2c:8e:32:24:54:9b:cf:55:
5c:55:29:e3:5a:73:a1:66:d8:89:f0:6b:db:08:bc:ad:61:87:
fe:66:a3:09:26:b1:5f:5a:8b:92:39:63:8f:97:7d:af:1b:31:
90:6e:8a:c9:99:e0:8a:ad:50:93:cf:a5:7e:d4:ab:99:12:b8:
5a:7d:7d:1d:23:9a:fe:84:10:41:44:b3:b4:b6:4a:53:ce:da:
8b:87:f9:28:27:a9:86:c3:e1:cb:3b:ae:00:c1:c2:da:75:45:
ec:53:49:c0
-----BEGIN CERTIFICATE-----
MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB
OTNCQjExMC8GA1UEBRMoRjNFNUUyNTZEMkVDNUNBNjdGOEExOUJFNUExQjI4MjlC
MTM3NTgxRjAeFw0yMjEwMTIwODM0MTZaFw0yMzEyMDEwMDAwMDBaMBgxFjAUBgNV
BAMTDTYzNDY3YzA4LTg5ZjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCpafp1QEYLzVPnch7zHcks0EoQk1MTVQKZVb6/ibIS1++9cmDxEkFkfmC9hifh
MzjgHZo80kK/pXLIHjtcmqxvwHV/E9MdfB/JPVPeoZx3Oxu3JTzuQPS3kV7zC3tM
JAUIv9y4UyO/v0aiGItF4mEWotgf4HMRNVFVWFyZmorfokGPcghAgzajimPVxRvg
72Gvry3MyqGj9vl63X9onVRMYW3P2kdvlCeDFpLWy0Z1K+XMgLI+19a+ncY9umfA
jEBewTkimYJ2AWqRCc7gV1oCBMbj2aAyMHVVU7k/RAV+Q4TIrt/olpCUZ6Hn0ucp
ib1aWLuT/+h7fFnFrIRUfEI5AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUAdjeeP4i
8Fe+tWOl4VJ8S3JGAIMwHwYDVR0jBBgwFoAU8+XiVtLsXKZ/ihm+WhsoKbE3WB8w
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5M0JCLzk0NTFEMzcyNEEw
NDExRURCNkVBOTU3NkM0RjlBRTAyLzgtWGlWdExzWEtaX2lobS1XaHNvS2JFM1dC
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvOC1YaVZ0THNYS1pfaWhtLVdoc29LYkUzV0I4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw
C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB
OTNCQi85NDUxRDM3MjRBMDQxMUVEQjZFQTk1NzZDNEY5QUUwMi9BODIwN0FBODRB
MDgxMUVEODhGRjA1MjdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v
cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEAWeXSjANBgkqhkiG9w0BAQsFAAOCAQEAMr5drz2f0jX1HX4J
JKetP+xcE5bRlNO7Tq7rzNe0VHHN82cFawSGTc3dk6xWVdz3DCMc7252bzGvMGpK
/ZDWboQtJAj/EgEYhs6jUT3yubqwZgseJ6ZWRIIWnr4CfFmatRsNMqxvjnmB1ByL
eR70l288OQJDTDQizSagtwQ9CLM6kNwHOGcU3XbU8+LRvEMmLVXSpriry7LUWCyO
MiRUm89VXFUp41pzoWbYifBr2wi8rWGH/majCSaxX1qLkjljj5d9rxsxkG6KyZng
iq1Qk8+lftSrmRK4Wn19HSOa/oQQQUSztLZKU87ai4f5KCephsPhyzuuAMHC2nVF
7FNJwA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:55 2024 by rpki-client on console-ams.rpki-client.org