Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/0A90D37481F111EE9004B21AC4F9AE02.roa
File: 0A90D37481F111EE9004B21AC4F9AE02.roa (raw, json)
Hash identifier: 2I9IEN9zY1M9/iiiNpTlxWghriCahKvG+6nECUgG5Vk=
Subject key identifier: 63:FB:74:D1:41:B6:D3:4D:1E:FC:05:ED:FC:59:29:97:04:F7:38:83
Certificate issuer: /CN=A91BDCF1/serialNumber=C44F2ACAB2A779994315AA93B323DA9B475C7B9A
Certificate serial: 029E
Authority key identifier: C4:4F:2A:CA:B2:A7:79:99:43:15:AA:93:B3:23:DA:9B:47:5C:7B:9A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xE8qyrKneZlDFaqTsyPam0dce5o.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/0A90D37481F111EE9004B21AC4F9AE02.roa
Signing time: Wed 07 Feb 2024 03:15:34 +0000
ROA not before: Wed 07 Feb 2024 03:15:34 +0000
ROA not after: Mon 31 Mar 2025 00:00:00 +0000
asID: 55933
IP address blocks: 103.178.56.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 670 (0x29e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDCF1
Validity
Not Before: Feb 7 03:15:34 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=65c2f5d5-8716
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:bb:c8:77:d7:81:32:8b:bd:e0:f4:76:dc:e7:
5b:84:97:66:3c:89:11:82:4c:b7:ae:b8:df:a2:ba:
50:64:8b:2e:61:0a:62:8e:d5:ff:17:d6:78:0a:b2:
87:f7:bd:05:d8:ee:3e:03:39:be:72:50:a4:78:46:
48:5d:10:98:c3:2f:dd:40:f5:67:86:25:0b:bc:3c:
2b:94:3d:46:ea:10:7a:42:20:f9:32:60:c1:aa:59:
07:b5:8f:3c:71:aa:fd:ad:f5:de:a5:7f:ec:1f:95:
8c:a9:0e:15:8c:16:98:c9:2b:39:35:3a:49:c3:7f:
8e:4f:7d:4e:47:8a:49:80:d1:e2:69:08:24:d7:ad:
22:91:6d:f0:7e:bc:47:4e:31:6d:17:47:17:12:29:
5d:cb:0d:6f:61:74:fb:47:8a:c0:a5:dc:09:a8:83:
7e:2e:01:bb:cc:a7:b8:d6:24:d1:4e:24:f6:05:c3:
9c:1a:55:07:13:c8:92:07:30:ef:72:4c:af:ae:7e:
42:0b:cd:1f:61:1d:c7:b3:0b:5d:4a:e4:61:f1:4e:
d8:1f:f8:fa:75:85:3a:89:a3:5d:9c:d2:9f:49:0d:
ab:7f:ec:6e:90:e9:aa:70:f3:a6:3b:d6:45:76:ad:
0f:c3:68:47:81:de:99:94:0a:09:8f:48:a8:dd:6b:
1f:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:FB:74:D1:41:B6:D3:4D:1E:FC:05:ED:FC:59:29:97:04:F7:38:83
X509v3 Authority Key Identifier:
keyid:C4:4F:2A:CA:B2:A7:79:99:43:15:AA:93:B3:23:DA:9B:47:5C:7B:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/xE8qyrKneZlDFaqTsyPam0dce5o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xE8qyrKneZlDFaqTsyPam0dce5o.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/0A90D37481F111EE9004B21AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.178.56.0/24
Signature Algorithm: sha256WithRSAEncryption
29:9b:c3:c0:4f:8c:0c:d6:d0:c6:13:d6:f9:24:42:fc:d9:d2:
ae:92:91:79:19:fa:a5:d2:c1:2d:41:54:b2:65:7e:5c:33:58:
26:b4:f3:8c:a1:22:8c:70:d7:79:07:e8:53:7c:4d:4a:17:20:
cb:52:52:32:a2:00:9f:d7:fe:dd:3b:61:88:17:36:9d:c5:d7:
35:80:30:14:73:9e:45:25:16:21:44:99:2d:89:67:6e:ca:40:
64:0a:58:fb:be:0e:c7:17:89:62:11:00:0a:c6:71:35:45:e7:
32:f7:77:9f:bf:68:01:43:f6:4c:57:f4:b8:f2:74:f6:75:e2:
9d:38:9c:2d:f3:16:6f:e3:ed:41:78:d0:95:d3:ee:68:63:20:
2e:72:a2:22:c9:f5:2b:b2:58:3a:a7:e8:e4:a9:3a:8c:f0:6a:
14:8e:bf:31:f4:26:b6:a6:77:44:d5:48:dc:a8:e1:0a:08:d3:
5b:2c:bc:fd:c7:d6:57:30:8f:ae:c2:cd:44:cd:b5:24:da:2b:
c2:02:d2:f0:5f:f4:89:57:23:1e:33:92:d8:fd:3d:cc:9f:b8:
63:37:0c:a9:ce:01:93:18:9b:a5:b3:8a:15:1d:30:7b:26:78:
80:7f:64:d1:75:fb:c0:77:10:8f:bb:46:32:19:93:ee:5e:0c:
28:f2:13:26
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICAp4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QkRDRjExMTAvBgNVBAUTKEM0NEYyQUNBQjJBNzc5OTk0MzE1QUE5M0IzMjNEQTlC
NDc1QzdCOUEwHhcNMjQwMjA3MDMxNTM0WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NWMyZjVkNS04NzE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAy7vId9eBMou94PR23OdbhJdmPIkRgky3rrjforpQZIsuYQpijtX/F9Z4CrKH
970F2O4+Azm+clCkeEZIXRCYwy/dQPVnhiULvDwrlD1G6hB6QiD5MmDBqlkHtY88
car9rfXepX/sH5WMqQ4VjBaYySs5NTpJw3+OT31OR4pJgNHiaQgk160ikW3wfrxH
TjFtF0cXEildyw1vYXT7R4rApdwJqIN+LgG7zKe41iTRTiT2BcOcGlUHE8iSBzDv
ckyvrn5CC80fYR3HswtdSuRh8U7YH/j6dYU6iaNdnNKfSQ2rf+xukOmqcPOmO9ZF
dq0Pw2hHgd6ZlAoJj0io3WsfMwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGP7dNFB
ttNNHvwF7fxZKZcE9ziDMB8GA1UdIwQYMBaAFMRPKsqyp3mZQxWqk7Mj2ptHXHua
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRENGMS9FQjU5MTEyMkE4
M0MxMUVDQTNBNEYzMjVDNEY5QUUwMi94RThxeXJLbmVabERGYXFUc3lQYW0wZGNl
NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3hFOHF5cktuZVpsREZhcVRzeVBhbTBkY2U1by5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QkRDRjEvRUI1OTExMjJBODNDMTFFQ0EzQTRGMzI1QzRGOUFFMDIvMEE5MEQzNzQ4
MUYxMTFFRTkwMDRCMjFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBABnsjgwDQYJKoZIhvcNAQELBQADggEBACmbw8BPjAzW0MYT
1vkkQvzZ0q6SkXkZ+qXSwS1BVLJlflwzWCa084yhIoxw13kH6FN8TUoXIMtSUjKi
AJ/X/t07YYgXNp3F1zWAMBRznkUlFiFEmS2JZ27KQGQKWPu+DscXiWIRAArGcTVF
5zL3d5+/aAFD9kxX9LjydPZ14p04nC3zFm/j7UF40JXT7mhjIC5yoiLJ9SuyWDqn
6OSpOozwahSOvzH0Jramd0TVSNyo4QoI01ssvP3H1lcwj67CzUTNtSTaK8IC0vBf
9IlXIx4zktj9PcyfuGM3DKnOAZMYm6WzihUdMHsmeIB/ZNF1+8B3EI+7RjIZk+5e
DCjyEyY=
-----END CERTIFICATE-----
Generated at Wed Apr 9 02:31:51 2025 by rpki-client