Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/5E42470E70DC11EDBA487A1FC4F9AE02.roa
File: 5E42470E70DC11EDBA487A1FC4F9AE02.roa (raw, json)
Hash identifier: MJ3O5PohI/3KxJT/jsCeKHH8St2NsemV0f4CaIo5/TU=
Subject key identifier: D8:E7:BD:D1:7D:64:CF:7C:A6:A1:C9:DE:38:8E:87:81:25:E5:F8:B6
Certificate issuer: /CN=A91A9D0F/serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2
Certificate serial: 0D54
Authority key identifier: 88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/5E42470E70DC11EDBA487A1FC4F9AE02.roa
Signing time: Wed 30 Nov 2022 18:25:30 +0000
ROA not before: Wed 30 Nov 2022 18:25:30 +0000
ROA not after: Mon 01 May 2023 00:00:00 +0000
asID: 138575
IP address blocks: 103.133.140.0/24 maxlen: 24
103.133.141.0/24 maxlen: 24
103.133.142.0/23 maxlen: 23
103.133.142.0/24 maxlen: 24
103.133.143.0/24 maxlen: 24
2404:4d40::/32 maxlen: 32
2404:4d40:1000::/36 maxlen: 36
2404:4d40:1000::/48 maxlen: 48
2404:4d40:1001::/48 maxlen: 48
2404:4d40:1002::/48 maxlen: 48
2404:4d40:1003::/48 maxlen: 48
2404:4d40:1004::/48 maxlen: 48
2404:4d40:1005::/48 maxlen: 48
2404:4d40:1006::/48 maxlen: 48
2404:4d40:1007::/48 maxlen: 48
2404:4d40:1008::/48 maxlen: 48
2404:4d40:1009::/48 maxlen: 48
2404:4d40:100a::/48 maxlen: 48
2404:4d40:100b::/48 maxlen: 48
2404:4d40:100c::/48 maxlen: 48
2404:4d40:100d::/48 maxlen: 48
2404:4d40:100e::/48 maxlen: 48
2404:4d40:100f::/48 maxlen: 48
2404:4d40:1010::/48 maxlen: 48
2404:4d40:1011::/48 maxlen: 48
2404:4d40:1012::/48 maxlen: 48
2404:4d40:1013::/48 maxlen: 48
2404:4d40:1014::/48 maxlen: 48
2404:4d40:1015::/48 maxlen: 48
2404:4d40:1016::/48 maxlen: 48
2404:4d40:1017::/48 maxlen: 48
2404:4d40:1018::/48 maxlen: 48
2404:4d40:1019::/48 maxlen: 48
2404:4d40:101a::/48 maxlen: 48
2404:4d40:101b::/48 maxlen: 48
2404:4d40:101c::/48 maxlen: 48
2404:4d40:101d::/48 maxlen: 48
2404:4d40:101e::/48 maxlen: 48
2404:4d40:101f::/48 maxlen: 48
2404:4d40:1020::/48 maxlen: 48
2404:4d40:1021::/48 maxlen: 48
2404:4d40:1022::/48 maxlen: 48
2404:4d40:2000::/36 maxlen: 36
2404:4d40:3000::/36 maxlen: 36
2404:4d40:4000::/36 maxlen: 36
2404:4d40:5000::/36 maxlen: 36
2404:4d40:6000::/36 maxlen: 36
2404:4d40:7000::/36 maxlen: 36
2404:4d40:8000::/36 maxlen: 36
2404:4d40:9000::/36 maxlen: 36
2404:4d40:a000::/36 maxlen: 36
2404:4d40:b000::/36 maxlen: 36
2404:4d40:c000::/36 maxlen: 36
2404:4d40:d000::/36 maxlen: 36
2404:4d40:e000::/36 maxlen: 36
2404:4d40:f000::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3412 (0xd54)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A9D0F/serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2
Validity
Not Before: Nov 30 18:25:30 2022 GMT
Not After : May 1 00:00:00 2023 GMT
Subject: CN=6387a019-27f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:7e:9d:68:fb:94:b0:ea:6a:dc:ad:d2:0c:bd:
25:27:ae:a7:e1:9c:fa:41:55:2f:02:0e:49:ad:ac:
c8:47:5b:65:6e:d6:07:70:75:4e:36:f3:f3:fd:df:
b0:45:a9:ff:49:85:2d:13:dc:3a:51:f7:68:a2:5e:
f7:ee:18:c5:54:3c:d6:61:e7:c0:ad:e9:64:3f:f0:
a0:b0:cd:ca:cc:f9:45:d2:b9:da:2f:a6:2a:61:78:
0c:eb:c4:cf:68:b3:33:8a:03:43:36:62:02:0d:00:
60:47:7c:6b:f3:b1:97:d4:a6:31:51:67:fb:ab:ed:
fe:c6:ec:c9:d2:65:69:c2:63:c0:4a:bb:5c:4b:58:
f6:46:74:ca:9d:30:0c:da:94:d8:20:7a:e7:13:53:
4d:3b:b5:da:ef:02:92:46:f4:c2:23:79:f2:b1:8e:
03:bd:b2:c8:2b:08:d7:66:0b:b0:3c:00:ea:94:d6:
ef:9d:c0:e7:e0:fe:82:da:7a:77:e6:f2:da:87:5a:
2c:60:fa:17:9d:b6:8a:c6:f6:c4:40:b3:a5:00:2e:
aa:65:d0:02:2f:c7:1d:b8:93:cc:00:c3:d3:fd:57:
7a:ed:1b:ba:96:ae:cb:3b:d2:0c:4b:c6:bd:ff:79:
85:c6:38:a0:30:0a:43:a4:b0:08:67:57:e7:4d:4c:
83:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:E7:BD:D1:7D:64:CF:7C:A6:A1:C9:DE:38:8E:87:81:25:E5:F8:B6
X509v3 Authority Key Identifier:
keyid:88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/5E42470E70DC11EDBA487A1FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.133.140.0/22
IPv6:
2404:4d40::/32
Signature Algorithm: sha256WithRSAEncryption
11:e7:ef:15:14:54:6c:1f:87:b6:f9:0f:a3:db:88:aa:e7:91:
ca:95:cc:3f:e3:26:03:4b:9b:bb:4f:01:ec:fc:66:64:01:5b:
69:87:7a:08:3e:bd:68:a8:65:bf:d5:fd:4b:8d:40:8e:54:40:
7c:dc:30:f2:71:e4:a0:a3:04:1a:6e:ec:30:e8:03:d3:83:33:
0e:51:b4:56:79:15:e8:fa:9f:74:bb:6a:05:e9:b7:53:74:26:
84:b1:69:e9:fe:76:57:40:37:34:09:ca:63:16:a0:f7:f7:19:
10:39:c1:83:f7:1e:f0:05:b3:00:13:90:a2:31:64:c4:a5:37:
fa:0a:c4:a9:71:d3:da:cb:07:68:1d:8d:86:69:55:37:44:3f:
78:f9:db:6e:01:d8:a1:d0:67:dd:59:50:79:c5:6c:64:a1:d8:
91:9a:52:f1:4e:6b:9e:88:01:8f:fe:b4:45:ca:08:a2:b8:d8:
6e:61:10:a8:ca:85:40:4f:c0:4d:f4:e2:9a:36:ff:83:8f:d5:
ba:66:e3:22:c2:d6:fe:60:d2:ab:87:50:3e:bf:f1:95:9b:f9:
7d:12:2e:4c:59:bb:bd:ad:bb:f8:55:19:e5:d3:ad:10:c0:0e:
a7:c7:55:62:f6:fd:41:c2:b0:a5:bc:f9:de:bb:44:58:33:a0:
57:88:37:11
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICDVQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QTlEMEYxMTAvBgNVBAUTKDg4RTdCNTQxRjQyMjk4RDZFOUI1MTY1RDk2NTI0NkND
MUNDMUY1QTIwHhcNMjIxMTMwMTgyNTMwWhcNMjMwNTAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02Mzg3YTAxOS0yN2YzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAr36daPuUsOpq3K3SDL0lJ66n4Zz6QVUvAg5JrazIR1tlbtYHcHVONvPz/d+w
Ran/SYUtE9w6Ufdool737hjFVDzWYefArelkP/CgsM3KzPlF0rnaL6YqYXgM68TP
aLMzigNDNmICDQBgR3xr87GX1KYxUWf7q+3+xuzJ0mVpwmPASrtcS1j2RnTKnTAM
2pTYIHrnE1NNO7Xa7wKSRvTCI3nysY4DvbLIKwjXZguwPADqlNbvncDn4P6C2np3
5vLah1osYPoXnbaKxvbEQLOlAC6qZdACL8cduJPMAMPT/Vd67Ru6lq7LO9IMS8a9
/3mFxjigMApDpLAIZ1fnTUyDSwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFNjnvdF9
ZM98pqHJ3jiOh4El5fi2MB8GA1UdIwQYMBaAFIjntUH0IpjW6bUWXZZSRswcwfWi
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUQwRi83NEJFMzhENjgw
Q0YxMUU5QUNENzFCNTBDNEY5QUUwMi9pT2UxUWZRaW1OYnB0UlpkbGxKR3pCekI5
YUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2lPZTFRZlFpbU5icHRSWmRsbEpHekJ6QjlhSS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QTlEMEYvNzRCRTM4RDY4MENGMTFFOUFDRDcxQjUwQzRGOUFFMDIvNUU0MjQ3MEU3
MERDMTFFREJBNDg3QTFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E
HzAdMAwEAgABMAYDBAJnhYwwDQQCAAIwBwMFACQETUAwDQYJKoZIhvcNAQELBQAD
ggEBABHn7xUUVGwfh7b5D6PbiKrnkcqVzD/jJgNLm7tPAez8ZmQBW2mHegg+vWio
Zb/V/UuNQI5UQHzcMPJx5KCjBBpu7DDoA9ODMw5RtFZ5Fej6n3S7agXpt1N0JoSx
aen+dldANzQJymMWoPf3GRA5wYP3HvAFswATkKIxZMSlN/oKxKlx09rLB2gdjYZp
VTdEP3j5224B2KHQZ91ZUHnFbGSh2JGaUvFOa56IAY/+tEXKCKK42G5hEKjKhUBP
wE304po2/4OP1bpm4yLC1v5g0quHUD6/8ZWb+X0SLkxZu72tu/hVGeXTrRDADqfH
VWL2/UHCsKW8+d67RFgzoFeINxE=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:01 2023 by rpki-client on console-ams.rpki-client.org