Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/CCFE7158905811EEB0BB4116C4F9AE02.roa
File: CCFE7158905811EEB0BB4116C4F9AE02.roa (raw, json)
Hash identifier: craw8R60Yl8vxLFvkGvaNGSAFX2cJnjBEo8G7jrZH0M=
Subject key identifier: 64:BA:D0:47:CE:1A:DB:77:90:9D:50:8C:9F:7A:7E:A6:A9:32:F0:A1
Certificate issuer: /CN=A91CA3CD/serialNumber=35CB421C5577177581CE24B36A2F6CC931846052
Certificate serial: 02
Authority key identifier: 35:CB:42:1C:55:77:17:75:81:CE:24:B3:6A:2F:6C:C9:31:84:60:52
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/CCFE7158905811EEB0BB4116C4F9AE02.roa
Signing time: Fri 01 Dec 2023 14:49:16 +0000
ROA not before: Fri 01 Dec 2023 14:49:16 +0000
ROA not after: Wed 01 May 2024 00:00:00 +0000
asID: 141705
IP address blocks: 103.162.90.0/24 maxlen: 24
103.162.91.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CA3CD/serialNumber=35CB421C5577177581CE24B36A2F6CC931846052
Validity
Not Before: Dec 1 14:49:16 2023 GMT
Not After : May 1 00:00:00 2024 GMT
Subject: CN=6569f26c-a628
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d3:c6:d6:c5:12:31:94:be:1d:36:7e:5f:9e:
0f:fd:b3:56:44:3e:92:31:8e:15:7c:90:6c:30:75:
00:d4:77:53:8b:99:33:0a:2b:f5:ef:1d:90:46:dd:
80:1b:f3:ed:7c:40:d3:96:3a:3e:f4:87:8d:10:18:
73:32:0f:b6:5e:ac:e9:48:c1:12:1f:fe:c0:ed:00:
a5:f2:37:65:cf:0f:30:8d:90:12:c0:ab:45:69:1b:
5c:53:81:cd:16:2a:85:c3:13:72:69:24:ee:8a:33:
3c:56:c2:1d:bc:d3:83:50:4d:1e:dc:7d:c1:9c:1d:
f6:41:3e:de:78:51:14:1e:48:7b:9b:bf:2d:ca:a6:
39:75:0a:f8:7f:13:fd:5a:fb:03:16:cb:c3:2f:c5:
36:76:03:02:99:69:0d:35:e4:47:f5:65:2c:e3:c8:
ce:a5:9f:68:d2:9a:66:c3:cb:06:56:a7:a0:6a:74:
81:c5:83:5a:0c:a1:46:d4:54:69:c4:2b:26:ef:e6:
83:7c:88:17:91:58:7f:0f:a6:b2:4f:e5:33:c0:84:
a3:08:0a:78:ab:cd:b5:cd:0e:84:2a:a6:5a:94:3f:
57:4c:d6:a6:49:29:00:0b:6f:7e:4b:0d:0c:9c:03:
0c:b1:82:42:83:1e:1d:84:3c:d1:7e:4f:35:14:40:
16:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:BA:D0:47:CE:1A:DB:77:90:9D:50:8C:9F:7A:7E:A6:A9:32:F0:A1
X509v3 Authority Key Identifier:
keyid:35:CB:42:1C:55:77:17:75:81:CE:24:B3:6A:2F:6C:C9:31:84:60:52
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/CCFE7158905811EEB0BB4116C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.162.90.0/23
Signature Algorithm: sha256WithRSAEncryption
79:e7:6b:94:c8:dc:07:7f:90:3e:bc:1e:84:d7:dc:32:d2:7b:
c3:1a:dc:b7:77:07:89:23:13:9d:6c:96:c0:4a:08:5a:d0:44:
af:e2:21:f6:d3:bd:c9:25:03:a5:26:ba:08:0f:24:3c:26:17:
28:d7:5d:53:ff:ec:f9:d6:cb:41:fb:73:a3:0e:15:7a:3a:4f:
32:c8:06:c4:f3:b9:54:e0:0e:be:de:c6:89:1a:33:d1:5d:2c:
9c:a1:8e:9e:93:6e:c2:56:59:89:79:60:6e:80:d9:ac:d7:5a:
e9:16:2f:02:43:a3:a9:37:00:db:e4:5d:0d:ac:d1:23:e7:ba:
10:9d:40:7c:4c:0c:4f:08:ed:04:97:63:1f:71:ca:0c:f3:ac:
fc:e1:b6:45:fc:b1:b3:8f:5a:a3:bd:e8:4e:f2:b8:e9:0f:5b:
b6:b6:52:44:1c:59:c7:0f:3a:fc:61:d2:a8:f7:71:6b:17:5d:
0d:e5:81:6d:57:8b:6c:c7:5e:86:44:7a:eb:93:85:60:b6:7c:
dd:54:9c:c5:f4:78:9e:d3:db:79:4f:10:b0:74:ed:05:8e:22:
8d:4b:84:dd:77:ec:33:f7:e7:27:04:73:d7:f9:87:ae:84:31:
b7:ab:bb:09:a1:ea:09:82:ef:64:96:32:71:88:31:61:79:90:
90:3e:df:5e
-----BEGIN CERTIFICATE-----
MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD
QTNDRDExMC8GA1UEBRMoMzVDQjQyMUM1NTc3MTc3NTgxQ0UyNEIzNkEyRjZDQzkz
MTg0NjA1MjAeFw0yMzEyMDExNDQ5MTZaFw0yNDA1MDEwMDAwMDBaMBgxFjAUBgNV
BAMTDTY1NjlmMjZjLWE2MjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCx08bWxRIxlL4dNn5fng/9s1ZEPpIxjhV8kGwwdQDUd1OLmTMKK/XvHZBG3YAb
8+18QNOWOj70h40QGHMyD7ZerOlIwRIf/sDtAKXyN2XPDzCNkBLAq0VpG1xTgc0W
KoXDE3JpJO6KMzxWwh2804NQTR7cfcGcHfZBPt54URQeSHubvy3Kpjl1Cvh/E/1a
+wMWy8MvxTZ2AwKZaQ015Ef1ZSzjyM6ln2jSmmbDywZWp6BqdIHFg1oMoUbUVGnE
Kybv5oN8iBeRWH8PprJP5TPAhKMICnirzbXNDoQqplqUP1dM1qZJKQALb35LDQyc
AwyxgkKDHh2EPNF+TzUUQBZNAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUZLrQR84a
23eQnVCMn3p+pqky8KEwHwYDVR0jBBgwFoAUNctCHFV3F3WBziSzai9syTGEYFIw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNBM0NELzI2NDUzRkEwOTA1
NzExRUU4NjQ5MzYxM0M0RjlBRTAyL05jdENIRlYzRjNXQnppU3phaTlzeVRHRVlG
SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvTmN0Q0hGVjNGM1dCemlTemFpOXN5VEdFWUZJLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw
C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD
QTNDRC8yNjQ1M0ZBMDkwNTcxMUVFODY0OTM2MTNDNEY5QUUwMi9DQ0ZFNzE1ODkw
NTgxMUVFQjBCQjQxMTZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v
cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEAWeiWjANBgkqhkiG9w0BAQsFAAOCAQEAeedrlMjcB3+QPrwe
hNfcMtJ7wxrct3cHiSMTnWyWwEoIWtBEr+Ih9tO9ySUDpSa6CA8kPCYXKNddU//s
+dbLQftzow4VejpPMsgGxPO5VOAOvt7GiRoz0V0snKGOnpNuwlZZiXlgboDZrNda
6RYvAkOjqTcA2+RdDazRI+e6EJ1AfEwMTwjtBJdjH3HKDPOs/OG2Rfyxs49ao73o
TvK46Q9btrZSRBxZxw86/GHSqPdxaxddDeWBbVeLbMdehkR665OFYLZ83VScxfR4
ntPbeU8QsHTtBY4ijUuE3XfsM/fnJwRz1/mHroQxt6u7CaHqCYLvZJYycYgxYXmQ
kD7fXg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:26 2024 by rpki-client on console-ams.rpki-client.org