Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/44FED7D6362B11EC83C5EB19C4F9AE02.roa
File: 44FED7D6362B11EC83C5EB19C4F9AE02.roa (raw, json)
Hash identifier: eZJWEvw+hV8JEteP4HU48efULtjUBvGf3FuH25eFvD4=
Subject key identifier: 5F:F5:4F:FC:EF:F2:8E:B9:80:48:04:83:3B:F2:9C:F7:9D:10:7A:B2
Certificate issuer: /CN=A91A9D0F/serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2
Certificate serial: 0D51
Authority key identifier: 88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/44FED7D6362B11EC83C5EB19C4F9AE02.roa
Signing time: Tue 29 Nov 2022 18:25:22 +0000
ROA not before: Tue 29 Nov 2022 18:25:22 +0000
ROA not after: Mon 01 May 2023 00:00:00 +0000
asID: 138575
IP address blocks: 103.133.140.0/23 maxlen: 23
103.133.140.0/24 maxlen: 24
103.133.141.0/24 maxlen: 24
103.133.142.0/23 maxlen: 23
103.133.142.0/24 maxlen: 24
103.133.143.0/24 maxlen: 24
2404:4d40::/32 maxlen: 32
2404:4d40:1000::/36 maxlen: 36
2404:4d40:1000::/48 maxlen: 48
2404:4d40:1001::/48 maxlen: 48
2404:4d40:1002::/48 maxlen: 48
2404:4d40:1003::/48 maxlen: 48
2404:4d40:1004::/48 maxlen: 48
2404:4d40:1005::/48 maxlen: 48
2404:4d40:1006::/48 maxlen: 48
2404:4d40:1007::/48 maxlen: 48
2404:4d40:1008::/48 maxlen: 48
2404:4d40:1009::/48 maxlen: 48
2404:4d40:100a::/48 maxlen: 48
2404:4d40:100b::/48 maxlen: 48
2404:4d40:100c::/48 maxlen: 48
2404:4d40:100d::/48 maxlen: 48
2404:4d40:100e::/48 maxlen: 48
2404:4d40:100f::/48 maxlen: 48
2404:4d40:1010::/48 maxlen: 48
2404:4d40:1011::/48 maxlen: 48
2404:4d40:1012::/48 maxlen: 48
2404:4d40:1013::/48 maxlen: 48
2404:4d40:1014::/48 maxlen: 48
2404:4d40:1015::/48 maxlen: 48
2404:4d40:1016::/48 maxlen: 48
2404:4d40:1017::/48 maxlen: 48
2404:4d40:1018::/48 maxlen: 48
2404:4d40:1019::/48 maxlen: 48
2404:4d40:101a::/48 maxlen: 48
2404:4d40:101b::/48 maxlen: 48
2404:4d40:101c::/48 maxlen: 48
2404:4d40:101d::/48 maxlen: 48
2404:4d40:101e::/48 maxlen: 48
2404:4d40:101f::/48 maxlen: 48
2404:4d40:1020::/48 maxlen: 48
2404:4d40:1021::/48 maxlen: 48
2404:4d40:1022::/48 maxlen: 48
2404:4d40:2000::/36 maxlen: 36
2404:4d40:3000::/36 maxlen: 36
2404:4d40:4000::/36 maxlen: 36
2404:4d40:5000::/36 maxlen: 36
2404:4d40:6000::/36 maxlen: 36
2404:4d40:7000::/36 maxlen: 36
2404:4d40:8000::/36 maxlen: 36
2404:4d40:9000::/36 maxlen: 36
2404:4d40:a000::/36 maxlen: 36
2404:4d40:b000::/36 maxlen: 36
2404:4d40:c000::/36 maxlen: 36
2404:4d40:d000::/36 maxlen: 36
2404:4d40:e000::/36 maxlen: 36
2404:4d40:f000::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3409 (0xd51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A9D0F/serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2
Validity
Not Before: Nov 29 18:25:22 2022 GMT
Not After : May 1 00:00:00 2023 GMT
Subject: CN=63864e92-0a22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:bb:0e:ee:7a:64:1e:d0:b6:7e:47:95:c5:14:
9a:34:1f:37:08:86:c1:4d:09:51:1d:05:ba:fd:65:
e9:17:a4:19:0c:3e:5b:b0:e7:fb:36:96:41:59:10:
da:16:5b:3e:e6:db:27:3e:b9:bc:80:05:6a:5b:c1:
e3:1e:55:76:cd:1c:27:3a:3d:fb:1d:88:29:35:99:
9a:e0:4d:c8:5d:93:73:af:b5:9d:3f:71:92:bc:0d:
c5:e3:6a:f4:18:a9:b7:df:02:53:e0:93:0c:f3:81:
91:7d:02:60:69:77:1c:0d:0a:6a:8d:85:cf:53:09:
a7:8f:79:29:60:0f:aa:47:68:d6:b6:9f:e5:39:c1:
cb:a1:6e:6d:58:9f:8f:59:0d:a8:78:c3:d9:1c:97:
08:ad:bb:31:bd:7d:88:31:fc:b0:10:29:86:7b:96:
7c:e3:c9:c8:d4:b9:86:02:9c:b5:10:6c:0f:62:d5:
ab:ed:d5:12:20:38:d0:2c:d2:4a:70:b1:d9:b6:3c:
74:b3:6f:db:a2:72:72:84:d4:db:2e:e8:09:41:7d:
a0:a3:76:e3:99:8a:a2:03:4a:b9:90:51:0b:b5:9a:
e8:93:d1:17:ae:2a:37:ac:ff:48:37:1d:a2:41:b1:
21:f8:56:e7:6f:25:a9:fa:1e:7c:1e:03:69:0f:1c:
68:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:F5:4F:FC:EF:F2:8E:B9:80:48:04:83:3B:F2:9C:F7:9D:10:7A:B2
X509v3 Authority Key Identifier:
keyid:88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/44FED7D6362B11EC83C5EB19C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.133.140.0/22
IPv6:
2404:4d40::/32
Signature Algorithm: sha256WithRSAEncryption
98:ee:7e:8c:c5:08:72:14:c7:d2:31:90:5c:03:c0:dc:b2:79:
b2:28:74:35:c0:19:cd:0d:55:ab:cc:b6:41:90:73:32:7f:3a:
39:70:0c:19:af:8a:44:73:7d:e8:d4:02:92:6a:29:b7:d9:b1:
07:87:b9:5a:b9:ad:d9:a7:44:0f:9e:ae:5c:85:94:cb:1e:e5:
a3:79:f7:9c:19:55:eb:55:0b:6a:cd:5f:f6:d8:00:02:21:54:
1d:cb:e6:3a:f2:06:15:d6:63:07:f0:15:57:8e:34:e4:72:bf:
7c:6c:48:e9:58:4e:a8:2d:49:39:8c:b3:00:14:bf:b5:02:cd:
93:3c:38:f5:56:8b:6a:54:b9:36:8f:0d:8b:62:c0:ed:24:dd:
46:6f:a4:0f:70:cf:3d:a8:27:99:7f:33:53:79:65:b5:13:3b:
04:7f:6d:38:a6:69:3f:79:eb:fb:58:ee:3b:18:39:bc:0a:16:
7c:60:46:d8:c8:78:e9:b7:44:db:1e:00:4f:ec:27:cd:bd:89:
9a:42:0b:26:49:ce:2d:e2:5c:71:d7:f4:c9:99:78:24:b4:87:
18:7b:8c:80:7b:71:7f:87:e1:f9:25:12:69:c6:6b:ab:6c:7f:
d5:4b:1d:55:0d:ca:72:83:2c:7a:c9:d4:80:ed:15:ca:85:9d:
0e:7c:68:52
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICDVEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QTlEMEYxMTAvBgNVBAUTKDg4RTdCNTQxRjQyMjk4RDZFOUI1MTY1RDk2NTI0NkND
MUNDMUY1QTIwHhcNMjIxMTI5MTgyNTIyWhcNMjMwNTAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02Mzg2NGU5Mi0wYTIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAvrsO7npkHtC2fkeVxRSaNB83CIbBTQlRHQW6/WXpF6QZDD5bsOf7NpZBWRDa
Fls+5tsnPrm8gAVqW8HjHlV2zRwnOj37HYgpNZma4E3IXZNzr7WdP3GSvA3F42r0
GKm33wJT4JMM84GRfQJgaXccDQpqjYXPUwmnj3kpYA+qR2jWtp/lOcHLoW5tWJ+P
WQ2oeMPZHJcIrbsxvX2IMfywECmGe5Z848nI1LmGApy1EGwPYtWr7dUSIDjQLNJK
cLHZtjx0s2/bonJyhNTbLugJQX2go3bjmYqiA0q5kFELtZrok9EXrio3rP9INx2i
QbEh+FbnbyWp+h58HgNpDxxovwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFF/1T/zv
8o65gEgEgzvynPedEHqyMB8GA1UdIwQYMBaAFIjntUH0IpjW6bUWXZZSRswcwfWi
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUQwRi83NEJFMzhENjgw
Q0YxMUU5QUNENzFCNTBDNEY5QUUwMi9pT2UxUWZRaW1OYnB0UlpkbGxKR3pCekI5
YUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2lPZTFRZlFpbU5icHRSWmRsbEpHekJ6QjlhSS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QTlEMEYvNzRCRTM4RDY4MENGMTFFOUFDRDcxQjUwQzRGOUFFMDIvNDRGRUQ3RDYz
NjJCMTFFQzgzQzVFQjE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E
HzAdMAwEAgABMAYDBAJnhYwwDQQCAAIwBwMFACQETUAwDQYJKoZIhvcNAQELBQAD
ggEBAJjufozFCHIUx9IxkFwDwNyyebIodDXAGc0NVavMtkGQczJ/OjlwDBmvikRz
fejUApJqKbfZsQeHuVq5rdmnRA+erlyFlMse5aN595wZVetVC2rNX/bYAAIhVB3L
5jryBhXWYwfwFVeONORyv3xsSOlYTqgtSTmMswAUv7UCzZM8OPVWi2pUuTaPDYti
wO0k3UZvpA9wzz2oJ5l/M1N5ZbUTOwR/bTimaT956/tY7jsYObwKFnxgRtjIeOm3
RNseAE/sJ829iZpCCyZJzi3iXHHX9MmZeCS0hxh7jIB7cX+H4fklEmnGa6tsf9VL
HVUNynKDLHrJ1IDtFcqFnQ58aFI=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:55 2024 by rpki-client on console-ams.rpki-client.org