Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/D81D242E72D811EDA1521B66C4F9AE02.roa
File: D81D242E72D811EDA1521B66C4F9AE02.roa (raw, json)
Hash identifier: q0StNMwkj4xezL6Mst3eHRxE+hib0pYVBt6AlkWXovk=
Subject key identifier: DA:8B:1E:5E:36:C4:EC:25:66:22:00:5B:3C:3B:05:57:48:8B:7A:45
Certificate issuer: /CN=A91A9D0F/serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2
Certificate serial: 0D65
Authority key identifier: 88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/D81D242E72D811EDA1521B66C4F9AE02.roa
Signing time: Sat 17 Dec 2022 10:15:27 +0000
ROA not before: Sat 17 Dec 2022 10:15:27 +0000
ROA not after: Mon 01 May 2023 00:00:00 +0000
asID: 138575
IP address blocks: 103.133.140.0/22 maxlen: 22
103.133.140.0/23 maxlen: 23
103.133.140.0/24 maxlen: 24
103.133.141.0/24 maxlen: 24
103.133.142.0/23 maxlen: 23
103.133.142.0/24 maxlen: 24
103.133.143.0/24 maxlen: 24
2404:4d40::/32 maxlen: 32
2404:4d40:1000::/36 maxlen: 36
2404:4d40:1000::/48 maxlen: 48
2404:4d40:1001::/48 maxlen: 48
2404:4d40:1002::/48 maxlen: 48
2404:4d40:1003::/48 maxlen: 48
2404:4d40:1004::/48 maxlen: 48
2404:4d40:1005::/48 maxlen: 48
2404:4d40:1006::/48 maxlen: 48
2404:4d40:1007::/48 maxlen: 48
2404:4d40:1008::/48 maxlen: 48
2404:4d40:1009::/48 maxlen: 48
2404:4d40:100a::/48 maxlen: 48
2404:4d40:100b::/48 maxlen: 48
2404:4d40:100c::/48 maxlen: 48
2404:4d40:100d::/48 maxlen: 48
2404:4d40:100e::/48 maxlen: 48
2404:4d40:100f::/48 maxlen: 48
2404:4d40:1010::/48 maxlen: 48
2404:4d40:1011::/48 maxlen: 48
2404:4d40:1012::/48 maxlen: 48
2404:4d40:1013::/48 maxlen: 48
2404:4d40:1014::/48 maxlen: 48
2404:4d40:1015::/48 maxlen: 48
2404:4d40:1016::/48 maxlen: 48
2404:4d40:1017::/48 maxlen: 48
2404:4d40:1018::/48 maxlen: 48
2404:4d40:1019::/48 maxlen: 48
2404:4d40:101a::/48 maxlen: 48
2404:4d40:101b::/48 maxlen: 48
2404:4d40:101c::/48 maxlen: 48
2404:4d40:101d::/48 maxlen: 48
2404:4d40:101e::/48 maxlen: 48
2404:4d40:101f::/48 maxlen: 48
2404:4d40:1020::/48 maxlen: 48
2404:4d40:1021::/48 maxlen: 48
2404:4d40:1022::/48 maxlen: 48
2404:4d40:2000::/36 maxlen: 36
2404:4d40:3000::/36 maxlen: 36
2404:4d40:4000::/36 maxlen: 36
2404:4d40:5000::/36 maxlen: 36
2404:4d40:6000::/36 maxlen: 36
2404:4d40:7000::/36 maxlen: 36
2404:4d40:8000::/36 maxlen: 36
2404:4d40:9000::/36 maxlen: 36
2404:4d40:a000::/36 maxlen: 36
2404:4d40:b000::/36 maxlen: 36
2404:4d40:c000::/36 maxlen: 36
2404:4d40:d000::/36 maxlen: 36
2404:4d40:e000::/36 maxlen: 36
2404:4d40:f000::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3429 (0xd65)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A9D0F/serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2
Validity
Not Before: Dec 17 10:15:27 2022 GMT
Not After : May 1 00:00:00 2023 GMT
Subject: CN=639d96be-efa1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:20:c0:d9:74:43:40:fa:30:ee:e1:1e:18:23:
d2:c8:c4:09:e3:23:3c:dd:ec:47:c3:c3:8f:34:29:
39:28:b7:6a:1c:d6:b2:c0:85:03:e3:07:0e:1f:78:
6f:f0:38:53:3e:69:14:0f:13:7c:a6:37:38:71:f2:
1c:f4:57:22:f3:58:95:de:39:e3:8b:ea:e5:46:e0:
d0:6f:8d:c2:92:00:ae:ee:8c:65:2e:f4:47:33:b8:
c6:0b:85:6f:3a:ed:cd:79:0e:1a:40:c6:9c:94:6b:
0f:c1:41:83:fe:fc:7a:49:f4:b8:f1:ef:a8:f4:8b:
4f:0f:6f:0d:46:53:1f:e0:55:3f:d2:bc:c1:19:9e:
02:0c:51:9d:da:c6:73:17:11:1a:12:7e:62:5e:e9:
52:80:77:2e:04:b8:6f:16:b0:79:68:1f:3f:2b:bf:
d9:74:38:6f:02:af:df:4b:f0:70:62:d7:4a:8f:c9:
db:2a:fa:47:e8:05:2f:b9:0f:91:e9:75:be:9f:82:
83:4b:9b:4f:40:5b:b0:81:8a:ac:3d:95:ff:92:09:
9a:b4:82:dd:78:ca:1d:4e:63:dc:b1:5f:48:8d:df:
dc:08:3c:e9:15:3b:27:91:60:8d:dd:c2:47:cd:23:
32:7a:ad:a3:5e:c5:e9:a9:0e:e0:66:94:a1:df:b5:
e4:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:8B:1E:5E:36:C4:EC:25:66:22:00:5B:3C:3B:05:57:48:8B:7A:45
X509v3 Authority Key Identifier:
keyid:88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/D81D242E72D811EDA1521B66C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.133.140.0/22
IPv6:
2404:4d40::/32
Signature Algorithm: sha256WithRSAEncryption
c3:3d:f0:b2:72:a5:3c:fc:dc:c6:0e:04:a1:79:0c:43:a2:a5:
b1:a4:df:4e:ea:3c:35:57:3a:4d:b3:dc:0c:51:e0:d2:d1:8e:
3e:38:d9:01:bf:4e:f7:e4:92:fe:c3:bf:54:49:a1:b1:97:c0:
07:44:7d:38:06:c8:a7:90:5e:6c:e2:14:5c:a2:03:66:11:e5:
b9:65:dd:97:03:d3:f0:1b:f6:28:31:b5:ed:28:e5:e7:6b:f7:
02:17:df:17:94:2f:dd:1f:a3:a9:f8:d0:09:66:f1:5b:90:6e:
8b:11:75:da:c6:eb:0d:92:cf:c7:57:6f:c6:41:fd:0d:a7:d1:
13:c4:bf:4b:b1:80:67:85:29:db:ed:59:02:b9:fc:e0:17:e8:
71:e0:a0:89:7b:ba:5e:a4:f2:d2:3e:74:0a:d8:30:b1:86:04:
60:2d:45:46:50:9f:fc:ec:ba:07:f2:65:3e:e6:e9:fd:52:a3:
09:f7:8c:63:0d:da:f6:ed:65:57:53:e8:9c:87:57:63:cb:04:
b4:a2:5c:73:2f:4b:2a:c9:8b:82:e9:81:a4:71:53:41:64:bd:
37:bd:0c:e8:ee:af:2e:da:94:29:94:6d:37:43:56:d2:4f:69:
64:c5:56:17:7e:dd:b3:04:ca:a5:1f:70:e6:90:56:e3:70:c2:
48:f1:dd:31
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICDWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QTlEMEYxMTAvBgNVBAUTKDg4RTdCNTQxRjQyMjk4RDZFOUI1MTY1RDk2NTI0NkND
MUNDMUY1QTIwHhcNMjIxMjE3MTAxNTI3WhcNMjMwNTAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02MzlkOTZiZS1lZmExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA1iDA2XRDQPow7uEeGCPSyMQJ4yM83exHw8OPNCk5KLdqHNaywIUD4wcOH3hv
8DhTPmkUDxN8pjc4cfIc9Fci81iV3jnji+rlRuDQb43CkgCu7oxlLvRHM7jGC4Vv
Ou3NeQ4aQMaclGsPwUGD/vx6SfS48e+o9ItPD28NRlMf4FU/0rzBGZ4CDFGd2sZz
FxEaEn5iXulSgHcuBLhvFrB5aB8/K7/ZdDhvAq/fS/BwYtdKj8nbKvpH6AUvuQ+R
6XW+n4KDS5tPQFuwgYqsPZX/kgmatILdeModTmPcsV9Ijd/cCDzpFTsnkWCN3cJH
zSMyeq2jXsXpqQ7gZpSh37XkGQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFNqLHl42
xOwlZiIAWzw7BVdIi3pFMB8GA1UdIwQYMBaAFIjntUH0IpjW6bUWXZZSRswcwfWi
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUQwRi83NEJFMzhENjgw
Q0YxMUU5QUNENzFCNTBDNEY5QUUwMi9pT2UxUWZRaW1OYnB0UlpkbGxKR3pCekI5
YUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2lPZTFRZlFpbU5icHRSWmRsbEpHekJ6QjlhSS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QTlEMEYvNzRCRTM4RDY4MENGMTFFOUFDRDcxQjUwQzRGOUFFMDIvRDgxRDI0MkU3
MkQ4MTFFREExNTIxQjY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E
HzAdMAwEAgABMAYDBAJnhYwwDQQCAAIwBwMFACQETUAwDQYJKoZIhvcNAQELBQAD
ggEBAMM98LJypTz83MYOBKF5DEOipbGk307qPDVXOk2z3AxR4NLRjj442QG/Tvfk
kv7Dv1RJobGXwAdEfTgGyKeQXmziFFyiA2YR5bll3ZcD0/Ab9igxte0o5edr9wIX
3xeUL90fo6n40Alm8VuQbosRddrG6w2Sz8dXb8ZB/Q2n0RPEv0uxgGeFKdvtWQK5
/OAX6HHgoIl7ul6k8tI+dArYMLGGBGAtRUZQn/zsugfyZT7m6f1Sown3jGMN2vbt
ZVdT6JyHV2PLBLSiXHMvSyrJi4LpgaRxU0FkvTe9DOjury7alCmUbTdDVtJPaWTF
Vhd+3bMEyqUfcOaQVuNwwkjx3TE=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:55 2024 by rpki-client on console-ams.rpki-client.org