Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE567/E67994DE8FF411EC90472F7DC4F9AE02/88A15692CFCE11ED8AFB6614C4F9AE02.roa
File: 88A15692CFCE11ED8AFB6614C4F9AE02.roa (raw, json)
Hash identifier: uFhvUh14rdgfQXkjNSZmPgSQvihpWXS13SP76fSKikY=
Subject key identifier: 41:61:C5:6E:6F:48:41:49:79:83:3D:6D:68:B9:2B:AC:F6:FD:EA:C4
Certificate issuer: /CN=A91AE567/serialNumber=FB4AB5A9A4DC37BBD65E61E42A4256CF951B8C73
Certificate serial: 0225
Authority key identifier: FB:4A:B5:A9:A4:DC:37:BB:D6:5E:61:E4:2A:42:56:CF:95:1B:8C:73
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-0q1qaTcN7vWXmHkKkJWz5UbjHM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91AE567/E67994DE8FF411EC90472F7DC4F9AE02/88A15692CFCE11ED8AFB6614C4F9AE02.roa
Signing time: Fri 31 Mar 2023 14:15:48 +0000
ROA not before: Fri 31 Mar 2023 14:15:48 +0000
ROA not after: Wed 01 May 2024 00:00:00 +0000
asID: 149484
IP address blocks: 103.180.242.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 549 (0x225)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91AE567/serialNumber=FB4AB5A9A4DC37BBD65E61E42A4256CF951B8C73
Validity
Not Before: Mar 31 14:15:48 2023 GMT
Not After : May 1 00:00:00 2024 GMT
Subject: CN=6426eb14-c7c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:b2:cd:e3:0c:13:18:51:ce:2f:4c:c8:55:db:
f6:81:fe:5b:80:0d:8b:a2:65:3f:f6:7a:0d:ec:da:
0a:09:0b:59:ca:75:5a:1b:01:9b:2e:6c:53:eb:78:
38:43:7c:f6:f8:09:3b:e0:49:04:3e:af:66:bd:d0:
c9:d6:47:09:88:80:d4:df:20:88:1d:8c:13:d4:b0:
4e:3c:dc:08:66:0d:f1:c5:17:5c:8d:d6:98:2f:f1:
07:e1:9e:77:11:ee:aa:a2:9d:3a:80:be:a2:d2:86:
0e:19:e3:90:83:b3:72:88:d9:7b:a5:3d:90:a1:95:
7d:c6:f9:52:c4:8d:39:34:bc:41:89:84:58:42:8e:
0b:06:cc:e0:d8:c6:7d:85:50:20:c8:c8:3d:3c:ee:
ac:a4:1d:cb:33:0d:95:14:a0:93:8c:ec:3d:10:c0:
b2:3a:4c:dc:8b:f8:e4:60:4c:66:04:2e:fa:ef:89:
fc:51:23:c1:10:44:fc:54:2d:cb:2c:3c:7c:77:73:
7b:5b:cf:ee:6b:5c:58:d4:50:ee:97:61:46:c5:7c:
85:3b:c0:cc:2a:24:17:4d:72:22:82:66:79:24:ae:
04:3f:00:50:4b:f8:65:64:bd:a9:91:65:88:c2:4c:
0d:a8:3a:47:b3:66:cf:08:52:23:93:9c:21:90:e6:
d5:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:61:C5:6E:6F:48:41:49:79:83:3D:6D:68:B9:2B:AC:F6:FD:EA:C4
X509v3 Authority Key Identifier:
keyid:FB:4A:B5:A9:A4:DC:37:BB:D6:5E:61:E4:2A:42:56:CF:95:1B:8C:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91AE567/E67994DE8FF411EC90472F7DC4F9AE02/-0q1qaTcN7vWXmHkKkJWz5UbjHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-0q1qaTcN7vWXmHkKkJWz5UbjHM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE567/E67994DE8FF411EC90472F7DC4F9AE02/88A15692CFCE11ED8AFB6614C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.180.242.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:ef:76:c6:25:32:83:e4:ba:70:b2:fb:df:d1:95:49:bf:44:
83:37:52:25:35:70:bf:d0:b8:f2:79:bd:37:04:01:95:25:28:
dd:2b:45:25:25:3d:fd:82:f4:c2:03:6f:45:d7:3a:b1:b3:7f:
de:61:7a:da:71:08:86:f6:04:4d:e4:a0:c5:6b:c0:93:6d:7f:
4f:ce:2e:e5:2d:92:b9:16:dd:ab:eb:4e:56:e7:73:83:81:10:
a0:eb:fb:d6:6c:40:07:d9:d3:59:57:33:21:4b:3f:73:b5:9e:
72:aa:5d:ca:5a:32:4a:a0:e6:3c:51:98:e7:43:1e:37:0b:b2:
73:f5:12:62:f5:5e:66:40:cf:84:0e:e4:7a:b4:e1:6d:f4:75:
a2:9b:d6:5f:14:18:47:fd:56:f2:27:8f:2a:24:c3:20:d7:ac:
a0:5f:0a:f4:ad:d5:c6:65:21:7d:b6:3a:39:91:57:e3:55:cb:
7d:92:3b:4e:93:34:fe:57:37:00:16:a7:ea:51:4d:7c:89:a1:
84:9f:68:df:88:1e:b0:5e:53:04:9a:6f:0c:36:19:2e:6f:83:
0f:ab:1c:f3:93:ec:89:ff:b3:65:04:55:f9:06:69:7c:a7:33:
d2:74:3c:23:6c:fb:f1:7d:97:c7:e6:82:ec:53:ef:0a:7a:e4:
82:b6:4d:f1
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICAiUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QUU1NjcxMTAvBgNVBAUTKEZCNEFCNUE5QTREQzM3QkJENjVFNjFFNDJBNDI1NkNG
OTUxQjhDNzMwHhcNMjMwMzMxMTQxNTQ4WhcNMjQwNTAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NDI2ZWIxNC1jN2M2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAy7LN4wwTGFHOL0zIVdv2gf5bgA2LomU/9noN7NoKCQtZynVaGwGbLmxT63g4
Q3z2+Ak74EkEPq9mvdDJ1kcJiIDU3yCIHYwT1LBOPNwIZg3xxRdcjdaYL/EH4Z53
Ee6qop06gL6i0oYOGeOQg7NyiNl7pT2QoZV9xvlSxI05NLxBiYRYQo4LBszg2MZ9
hVAgyMg9PO6spB3LMw2VFKCTjOw9EMCyOkzci/jkYExmBC7674n8USPBEET8VC3L
LDx8d3N7W8/ua1xY1FDul2FGxXyFO8DMKiQXTXIigmZ5JK4EPwBQS/hlZL2pkWWI
wkwNqDpHs2bPCFIjk5whkObVUwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEFhxW5v
SEFJeYM9bWi5K6z2/erEMB8GA1UdIwQYMBaAFPtKtamk3De71l5h5CpCVs+VG4xz
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTU2Ny9FNjc5OTRERThG
RjQxMUVDOTA0NzJGN0RDNEY5QUUwMi8tMHExcWFUY043dldYbUhrS2tKV3o1VWJq
SE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLy0wcTFxYVRjTjd2V1htSGtLa0pXejVVYmpITS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QUU1NjcvRTY3OTk0REU4RkY0MTFFQzkwNDcyRjdEQzRGOUFFMDIvODhBMTU2OTJD
RkNFMTFFRDhBRkI2NjE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBABntPIwDQYJKoZIhvcNAQELBQADggEBAH3vdsYlMoPkunCy
+9/RlUm/RIM3UiU1cL/QuPJ5vTcEAZUlKN0rRSUlPf2C9MIDb0XXOrGzf95hetpx
CIb2BE3koMVrwJNtf0/OLuUtkrkW3avrTlbnc4OBEKDr+9ZsQAfZ01lXMyFLP3O1
nnKqXcpaMkqg5jxRmOdDHjcLsnP1EmL1XmZAz4QO5Hq04W30daKb1l8UGEf9VvIn
jyokwyDXrKBfCvSt1cZlIX22OjmRV+NVy32SO06TNP5XNwAWp+pRTXyJoYSfaN+I
HrBeUwSabww2GS5vgw+rHPOT7In/s2UEVfkGaXynM9J0PCNs+/F9l8fmguxT7wp6
5IK2TfE=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:55 2024 by rpki-client on console-ams.rpki-client.org