Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/87223FB887B511ED88E12545C4F9AE02.roa
File: 87223FB887B511ED88E12545C4F9AE02.roa (raw, json)
Hash identifier: 9M4B9HHK7PbD8qIlCAIxVLziy2l6AfvCas71pN81hFg=
Subject key identifier: EB:AC:64:3C:03:A1:42:2A:58:BD:CB:19:14:54:8D:D6:C1:7C:D8:2C
Certificate issuer: /CN=A91A9D0F/serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2
Certificate serial: 0D6E
Authority key identifier: 88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/87223FB887B511ED88E12545C4F9AE02.roa
Signing time: Thu 29 Dec 2022 20:15:25 +0000
ROA not before: Thu 29 Dec 2022 20:15:24 +0000
ROA not after: Mon 01 May 2023 00:00:00 +0000
asID: 138575
IP address blocks: 103.133.140.0/22 maxlen: 22
103.133.140.0/24 maxlen: 24
103.133.142.0/23 maxlen: 23
103.133.142.0/24 maxlen: 24
103.133.143.0/24 maxlen: 24
2404:4d40::/32 maxlen: 32
2404:4d40:1000::/36 maxlen: 36
2404:4d40:1000::/48 maxlen: 48
2404:4d40:1001::/48 maxlen: 48
2404:4d40:1002::/48 maxlen: 48
2404:4d40:1003::/48 maxlen: 48
2404:4d40:1004::/48 maxlen: 48
2404:4d40:1005::/48 maxlen: 48
2404:4d40:1006::/48 maxlen: 48
2404:4d40:1007::/48 maxlen: 48
2404:4d40:1008::/48 maxlen: 48
2404:4d40:1009::/48 maxlen: 48
2404:4d40:100a::/48 maxlen: 48
2404:4d40:100b::/48 maxlen: 48
2404:4d40:100c::/48 maxlen: 48
2404:4d40:100d::/48 maxlen: 48
2404:4d40:100e::/48 maxlen: 48
2404:4d40:100f::/48 maxlen: 48
2404:4d40:1010::/48 maxlen: 48
2404:4d40:1011::/48 maxlen: 48
2404:4d40:1012::/48 maxlen: 48
2404:4d40:1013::/48 maxlen: 48
2404:4d40:1014::/48 maxlen: 48
2404:4d40:1015::/48 maxlen: 48
2404:4d40:1016::/48 maxlen: 48
2404:4d40:1017::/48 maxlen: 48
2404:4d40:1018::/48 maxlen: 48
2404:4d40:1019::/48 maxlen: 48
2404:4d40:101a::/48 maxlen: 48
2404:4d40:101b::/48 maxlen: 48
2404:4d40:101c::/48 maxlen: 48
2404:4d40:101d::/48 maxlen: 48
2404:4d40:101e::/48 maxlen: 48
2404:4d40:101f::/48 maxlen: 48
2404:4d40:1020::/48 maxlen: 48
2404:4d40:1021::/48 maxlen: 48
2404:4d40:1022::/48 maxlen: 48
2404:4d40:2000::/36 maxlen: 36
2404:4d40:3000::/36 maxlen: 36
2404:4d40:4000::/36 maxlen: 36
2404:4d40:5000::/36 maxlen: 36
2404:4d40:6000::/36 maxlen: 36
2404:4d40:7000::/36 maxlen: 36
2404:4d40:8000::/36 maxlen: 36
2404:4d40:9000::/36 maxlen: 36
2404:4d40:a000::/36 maxlen: 36
2404:4d40:b000::/36 maxlen: 36
2404:4d40:c000::/36 maxlen: 36
2404:4d40:d000::/36 maxlen: 36
2404:4d40:e000::/36 maxlen: 36
2404:4d40:f000::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3438 (0xd6e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A9D0F/serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2
Validity
Not Before: Dec 29 20:15:24 2022 GMT
Not After : May 1 00:00:00 2023 GMT
Subject: CN=63adf55c-ec5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:f4:da:c2:81:ed:e8:65:01:2a:66:16:34:d5:
61:12:4c:0a:97:03:a3:6d:68:91:77:ab:82:f6:a5:
fc:33:24:cd:f5:eb:a2:5d:f8:39:0a:fe:a2:00:4e:
5c:66:46:3f:e8:4b:a0:b0:e0:c6:05:27:31:7d:f6:
c9:2b:8f:b8:53:e3:3c:7c:6a:9f:52:1c:cd:21:1f:
89:f0:5e:11:f1:e4:55:fa:a9:67:5c:51:0c:b3:25:
f5:50:c8:04:ad:46:88:11:e1:70:a4:f5:fe:cf:4b:
f7:09:e0:c3:05:f2:9e:98:5a:d0:b8:a3:a0:59:a9:
dc:e4:ec:74:f5:7e:5d:32:7d:2d:a7:df:78:ae:dd:
7d:a0:15:eb:30:6e:0a:77:fe:54:ce:0d:78:fc:f0:
44:6d:5e:3a:9c:ca:67:94:0f:28:e8:50:d2:3a:0c:
b8:8a:ae:a1:4f:2d:2a:10:f6:5c:9b:38:a1:b0:3b:
1e:72:51:b3:33:f5:61:56:41:11:8c:57:63:aa:4a:
9c:cd:09:9f:03:42:d1:41:f4:3f:dd:13:2b:55:84:
79:2d:9e:df:f0:ce:38:8c:a0:d6:b4:9b:18:d8:1c:
ac:7b:09:19:dc:42:94:46:17:54:83:f7:98:b9:7a:
3d:e3:69:78:4c:21:13:a9:4b:9d:49:1e:4e:b8:be:
20:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:AC:64:3C:03:A1:42:2A:58:BD:CB:19:14:54:8D:D6:C1:7C:D8:2C
X509v3 Authority Key Identifier:
keyid:88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/87223FB887B511ED88E12545C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.133.140.0/22
IPv6:
2404:4d40::/32
Signature Algorithm: sha256WithRSAEncryption
2b:57:6d:13:60:b0:d7:14:5c:50:f5:df:87:10:5f:0d:9f:82:
5c:e6:03:b6:13:1b:1a:78:c0:da:33:8a:ed:3a:5f:2e:f5:5c:
ac:41:a8:c4:d1:0f:3d:c2:e8:aa:16:58:30:b2:63:4e:d8:22:
82:4f:ec:24:4b:22:61:aa:9e:99:00:af:35:3a:4e:7e:ec:84:
b8:2e:03:11:39:4b:37:6c:37:d8:98:36:8d:90:cf:e7:18:45:
08:e7:22:92:ef:b4:15:2a:27:26:b9:86:1d:44:d0:4d:59:dd:
c8:5a:67:cf:37:dd:1c:10:5b:2b:7d:d6:25:8f:a3:12:65:92:
b9:24:8f:1e:23:0a:eb:20:51:41:80:37:ad:41:52:ef:e9:63:
e8:fd:f0:84:bd:e8:5f:e8:68:78:8a:cc:77:dc:f7:ba:78:7d:
a8:9e:b6:a1:69:83:55:bf:a5:fb:06:72:4a:b1:d3:da:23:8d:
a9:70:d8:53:07:a1:2e:85:72:59:9b:fb:8b:2c:36:9d:20:7b:
2e:08:6d:da:09:31:cb:f2:c6:da:6d:a6:24:ff:88:e6:e3:db:
e6:74:cf:38:70:0b:60:81:d3:d1:1f:06:e3:d0:d3:f8:67:0a:
e3:2f:8d:8f:08:e7:15:5d:64:d3:18:f3:44:aa:57:96:ca:e7:
b2:3e:7f:36
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICDW4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QTlEMEYxMTAvBgNVBAUTKDg4RTdCNTQxRjQyMjk4RDZFOUI1MTY1RDk2NTI0NkND
MUNDMUY1QTIwHhcNMjIxMjI5MjAxNTI0WhcNMjMwNTAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02M2FkZjU1Yy1lYzVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA3vTawoHt6GUBKmYWNNVhEkwKlwOjbWiRd6uC9qX8MyTN9euiXfg5Cv6iAE5c
ZkY/6EugsODGBScxffbJK4+4U+M8fGqfUhzNIR+J8F4R8eRV+qlnXFEMsyX1UMgE
rUaIEeFwpPX+z0v3CeDDBfKemFrQuKOgWanc5Ox09X5dMn0tp994rt19oBXrMG4K
d/5Uzg14/PBEbV46nMpnlA8o6FDSOgy4iq6hTy0qEPZcmzihsDseclGzM/VhVkER
jFdjqkqczQmfA0LRQfQ/3RMrVYR5LZ7f8M44jKDWtJsY2BysewkZ3EKURhdUg/eY
uXo942l4TCETqUudSR5OuL4gqwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFOusZDwD
oUIqWL3LGRRUjdbBfNgsMB8GA1UdIwQYMBaAFIjntUH0IpjW6bUWXZZSRswcwfWi
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUQwRi83NEJFMzhENjgw
Q0YxMUU5QUNENzFCNTBDNEY5QUUwMi9pT2UxUWZRaW1OYnB0UlpkbGxKR3pCekI5
YUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2lPZTFRZlFpbU5icHRSWmRsbEpHekJ6QjlhSS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QTlEMEYvNzRCRTM4RDY4MENGMTFFOUFDRDcxQjUwQzRGOUFFMDIvODcyMjNGQjg4
N0I1MTFFRDg4RTEyNTQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E
HzAdMAwEAgABMAYDBAJnhYwwDQQCAAIwBwMFACQETUAwDQYJKoZIhvcNAQELBQAD
ggEBACtXbRNgsNcUXFD134cQXw2fglzmA7YTGxp4wNoziu06Xy71XKxBqMTRDz3C
6KoWWDCyY07YIoJP7CRLImGqnpkArzU6Tn7shLguAxE5SzdsN9iYNo2Qz+cYRQjn
IpLvtBUqJya5hh1E0E1Z3chaZ8833RwQWyt91iWPoxJlkrkkjx4jCusgUUGAN61B
Uu/pY+j98IS96F/oaHiKzHfc97p4faietqFpg1W/pfsGckqx09ojjalw2FMHoS6F
clmb+4ssNp0gey4IbdoJMcvyxtptpiT/iObj2+Z0zzhwC2CB09EfBuPQ0/hnCuMv
jY8I5xVdZNMY80SqV5bK57I+fzY=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:01 2023 by rpki-client on console-ams.rpki-client.org