Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C93EE/6858F6880E0211EAA9B1DB65C4F9AE02/41195CAEDE6A11EB868CD437C4F9AE02.roa
File: 41195CAEDE6A11EB868CD437C4F9AE02.roa (raw, json)
Hash identifier: 6RmOJD0eqguW4GQRwS1Rkpj4+i4rV0gxj39hnDs3ZCc=
Subject key identifier: C7:A7:33:A0:3D:05:6F:57:63:B7:2D:CF:C1:1D:45:C3:0E:02:4F:FE
Certificate issuer: /CN=A91C93EE/serialNumber=FC56E7E076F7FD0A84BECC9C3E229142A0901FEC
Certificate serial: 089C
Authority key identifier: FC:56:E7:E0:76:F7:FD:0A:84:BE:CC:9C:3E:22:91:42:A0:90:1F:EC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Fbn4Hb3_QqEvsycPiKRQqCQH-w.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C93EE/6858F6880E0211EAA9B1DB65C4F9AE02/41195CAEDE6A11EB868CD437C4F9AE02.roa
Signing time: Tue 01 Mar 2022 20:46:24 +0000
ROA not before: Tue 01 Mar 2022 20:46:24 +0000
ROA not after: Mon 01 May 2023 00:00:00 +0000
asID: 137703
IP address blocks: 103.135.78.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2204 (0x89c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C93EE/serialNumber=FC56E7E076F7FD0A84BECC9C3E229142A0901FEC
Validity
Not Before: Mar 1 20:46:24 2022 GMT
Not After : May 1 00:00:00 2023 GMT
Subject: CN=621e8620-65e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:4a:5a:59:b8:bd:99:e0:72:70:3d:7b:b0:5d:
69:60:92:e3:10:41:55:79:61:a2:f8:7a:90:a7:3d:
f9:0f:ae:be:cf:a8:7e:e1:db:ae:e5:86:3c:57:50:
59:b2:d3:42:cc:de:0f:59:be:89:47:4f:af:12:4a:
99:5e:4d:ec:6c:44:0f:bb:c4:92:ad:3b:59:94:c0:
b8:77:87:20:07:88:8a:e7:2f:5e:72:7d:d6:73:ae:
71:b8:bb:9c:68:16:e8:8f:f3:62:1f:0e:4a:f4:ba:
a8:6c:67:7d:5f:ea:cd:64:98:97:7a:8e:12:a0:c1:
f6:1d:c2:81:63:57:99:db:9f:ac:2d:0c:b0:a8:54:
28:aa:92:7c:28:f7:39:b4:87:40:fe:46:56:2c:62:
1d:2e:e5:5c:14:86:7e:c5:f7:bb:4b:fa:01:b2:a8:
b8:6a:22:13:84:40:43:82:5b:2a:1e:d4:8f:30:2b:
37:b5:03:40:d9:d2:12:2f:8b:1d:39:46:18:79:bf:
e9:ed:61:40:39:62:df:46:36:2a:ce:f3:44:a4:0a:
f0:6a:45:10:61:1c:d5:79:8f:98:f9:91:da:9e:72:
54:71:8a:e7:b7:ec:d6:b2:c9:78:62:e5:06:39:54:
3f:4d:63:98:0c:43:f0:c1:f6:c2:98:48:6e:92:c8:
03:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:A7:33:A0:3D:05:6F:57:63:B7:2D:CF:C1:1D:45:C3:0E:02:4F:FE
X509v3 Authority Key Identifier:
keyid:FC:56:E7:E0:76:F7:FD:0A:84:BE:CC:9C:3E:22:91:42:A0:90:1F:EC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C93EE/6858F6880E0211EAA9B1DB65C4F9AE02/_Fbn4Hb3_QqEvsycPiKRQqCQH-w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Fbn4Hb3_QqEvsycPiKRQqCQH-w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C93EE/6858F6880E0211EAA9B1DB65C4F9AE02/41195CAEDE6A11EB868CD437C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.135.78.0/24
Signature Algorithm: sha256WithRSAEncryption
49:9b:90:87:9a:8e:c5:6b:a9:63:cd:5f:e6:b2:12:bd:82:13:
02:81:ff:ca:d9:08:e4:d7:9e:63:7d:10:dc:d7:f7:10:2d:d4:
de:5c:fd:90:ef:cc:a1:23:d2:0d:a3:01:50:b0:c0:c8:c3:ce:
a5:3c:0d:31:7e:fd:ae:c9:86:fb:26:5a:f6:72:9e:dc:29:c2:
df:d4:d0:27:f8:5b:0e:67:51:6f:10:b9:b4:13:2a:2b:61:c2:
55:78:11:a8:a3:a6:63:ae:63:2c:69:95:e8:a5:76:0e:6c:a9:
5f:6b:0c:5f:09:61:9a:66:5d:eb:d4:34:f2:96:a0:f8:7f:bc:
dc:4d:3b:4f:ae:52:e0:72:87:f6:f4:71:dd:4f:0a:1e:14:d0:
e0:01:b2:4d:b7:69:a6:9b:1c:cb:88:a0:be:2b:12:62:f5:8c:
45:fb:d5:64:29:d6:3e:7a:56:16:26:fc:e9:40:03:35:c2:4d:
08:d2:d4:87:f7:ab:21:57:e8:b1:36:af:51:91:64:d7:ec:e4:
a8:6f:60:ce:4e:23:ee:6d:64:3d:f3:5d:08:7e:a4:c3:7e:1a:
1a:4a:63:a6:50:b6:8d:1d:4f:0b:ae:27:de:35:96:6b:97:44:
35:64:e7:41:b6:a0:b5:8e:9d:37:05:7a:03:0d:7e:3e:9e:e5:
07:0f:2a:5f
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICCJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QzkzRUUxMTAvBgNVBAUTKEZDNTZFN0UwNzZGN0ZEMEE4NEJFQ0M5QzNFMjI5MTQy
QTA5MDFGRUMwHhcNMjIwMzAxMjA0NjI0WhcNMjMwNTAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02MjFlODYyMC02NWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAt0paWbi9meBycD17sF1pYJLjEEFVeWGi+HqQpz35D66+z6h+4duu5YY8V1BZ
stNCzN4PWb6JR0+vEkqZXk3sbEQPu8SSrTtZlMC4d4cgB4iK5y9ecn3Wc65xuLuc
aBboj/NiHw5K9LqobGd9X+rNZJiXeo4SoMH2HcKBY1eZ25+sLQywqFQoqpJ8KPc5
tIdA/kZWLGIdLuVcFIZ+xfe7S/oBsqi4aiIThEBDglsqHtSPMCs3tQNA2dISL4sd
OUYYeb/p7WFAOWLfRjYqzvNEpArwakUQYRzVeY+Y+ZHannJUcYrnt+zWssl4YuUG
OVQ/TWOYDEPwwfbCmEhuksgDZQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMenM6A9
BW9XY7ctz8EdRcMOAk/+MB8GA1UdIwQYMBaAFPxW5+B29/0KhL7MnD4ikUKgkB/s
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTNFRS82ODU4RjY4ODBF
MDIxMUVBQTlCMURCNjVDNEY5QUUwMi9fRmJuNEhiM19RcUV2c3ljUGlLUlFxQ1FI
LXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL19GYm40SGIzX1FxRXZzeWNQaUtSUXFDUUgtdy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QzkzRUUvNjg1OEY2ODgwRTAyMTFFQUE5QjFEQjY1QzRGOUFFMDIvNDExOTVDQUVE
RTZBMTFFQjg2OENENDM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBABnh04wDQYJKoZIhvcNAQELBQADggEBAEmbkIeajsVrqWPN
X+ayEr2CEwKB/8rZCOTXnmN9ENzX9xAt1N5c/ZDvzKEj0g2jAVCwwMjDzqU8DTF+
/a7JhvsmWvZyntwpwt/U0Cf4Ww5nUW8QubQTKithwlV4EaijpmOuYyxpleildg5s
qV9rDF8JYZpmXevUNPKWoPh/vNxNO0+uUuByh/b0cd1PCh4U0OABsk23aaabHMuI
oL4rEmL1jEX71WQp1j56VhYm/OlAAzXCTQjS1If3qyFX6LE2r1GRZNfs5KhvYM5O
I+5tZD3zXQh+pMN+GhpKY6ZQto0dTwuuJ941lmuXRDVk50G2oLWOnTcFegMNfj6e
5QcPKl8=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:40 2024 by rpki-client on console-fra.rpki-client.org