Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2364/8FE71786FF9B11E9B7F4A772C4F9AE02/5B9ECE9C824811EC9AAB122AC4F9AE02.roa
File: 5B9ECE9C824811EC9AAB122AC4F9AE02.roa (raw, json)
Hash identifier: wfqSikb/EcL5kkyXuV9seev55DEiMf38z7X7rHDrnT8=
Subject key identifier: 9A:E2:DF:76:18:62:B6:D6:D5:B2:97:58:50:D1:58:A0:E2:9F:6E:BC
Certificate issuer: /CN=A91E2364/serialNumber=647B149EF016CC5356A7ED730F133E002C0E7FAA
Certificate serial: 0899
Authority key identifier: 64:7B:14:9E:F0:16:CC:53:56:A7:ED:73:0F:13:3E:00:2C:0E:7F:AA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZHsUnvAWzFNWp-1zDxM-ACwOf6o.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E2364/8FE71786FF9B11E9B7F4A772C4F9AE02/5B9ECE9C824811EC9AAB122AC4F9AE02.roa
Signing time: Mon 31 Jan 2022 03:46:23 +0000
ROA not before: Mon 31 Jan 2022 03:46:23 +0000
ROA not after: Tue 31 Jan 2023 00:00:00 +0000
asID: 45498
IP address blocks: 27.109.112.0/22 maxlen: 22
27.109.112.0/23 maxlen: 23
27.109.112.0/24 maxlen: 24
27.109.113.0/24 maxlen: 24
27.109.114.0/23 maxlen: 23
27.109.114.0/24 maxlen: 24
27.109.115.0/24 maxlen: 24
103.145.136.0/23 maxlen: 23
103.145.136.0/24 maxlen: 24
103.145.137.0/24 maxlen: 24
117.20.112.0/22 maxlen: 24
117.20.116.0/22 maxlen: 24
202.93.153.0/24 maxlen: 24
202.129.236.0/24 maxlen: 24
203.118.242.0/24 maxlen: 24
2401:9700:1010::/48 maxlen: 48
2401:9700:2000::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2201 (0x899)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E2364/serialNumber=647B149EF016CC5356A7ED730F133E002C0E7FAA
Validity
Not Before: Jan 31 03:46:23 2022 GMT
Not After : Jan 31 00:00:00 2023 GMT
Subject: CN=61f75b8f-379c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ba:2b:b7:4c:10:1e:10:86:e4:66:3a:12:cb:
db:54:9c:19:2b:3a:0d:22:da:b5:67:9a:9e:17:24:
61:9e:df:a8:e9:1f:d2:7f:8e:4a:87:96:94:a6:66:
69:87:84:12:af:01:7c:2d:7f:b2:7c:92:70:04:1a:
c6:8c:95:d7:b3:4f:74:1d:9b:10:0f:45:ea:4e:31:
3f:e3:66:cb:40:59:af:e6:88:74:8f:77:82:7c:0e:
29:00:c5:94:3e:7b:00:bd:45:66:8d:49:bf:c6:16:
8e:39:94:45:41:bf:fa:3d:41:fa:a2:60:2c:c7:86:
76:5b:b9:92:f0:f3:c6:b2:41:bb:89:f4:a0:2c:da:
35:14:49:ca:5a:25:e5:69:33:da:d8:7a:20:52:9e:
98:19:9d:a2:12:46:b9:0f:f3:2d:04:de:7a:65:50:
cb:01:b2:ac:af:0e:40:e6:f8:b9:60:93:43:fc:b8:
7e:1e:c4:10:5c:bc:e1:3a:dd:ac:bb:8f:99:11:83:
58:df:c1:01:19:c5:8a:d3:14:b1:fc:94:73:0f:95:
45:06:8e:67:a1:65:ad:5e:74:ca:34:e4:f6:b3:73:
7a:fe:7c:13:56:1f:19:30:e0:90:cf:4f:8a:05:b6:
0b:f0:a4:c3:4b:b0:f7:08:9d:75:a3:5a:95:de:80:
d3:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:E2:DF:76:18:62:B6:D6:D5:B2:97:58:50:D1:58:A0:E2:9F:6E:BC
X509v3 Authority Key Identifier:
keyid:64:7B:14:9E:F0:16:CC:53:56:A7:ED:73:0F:13:3E:00:2C:0E:7F:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E2364/8FE71786FF9B11E9B7F4A772C4F9AE02/ZHsUnvAWzFNWp-1zDxM-ACwOf6o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZHsUnvAWzFNWp-1zDxM-ACwOf6o.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2364/8FE71786FF9B11E9B7F4A772C4F9AE02/5B9ECE9C824811EC9AAB122AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
27.109.112.0/22
103.145.136.0/23
117.20.112.0/21
202.93.153.0/24
202.129.236.0/24
203.118.242.0/24
IPv6:
2401:9700:1010::/48
2401:9700:2000::/40
Signature Algorithm: sha256WithRSAEncryption
e8:af:14:a4:bc:5c:a7:f6:5e:a0:5d:14:64:5e:4a:58:f4:39:
25:a8:91:d1:40:42:05:7f:b4:05:da:a2:0b:82:81:3f:0b:db:
f4:62:28:91:7a:ba:39:c0:c7:a3:c6:4d:51:8f:ef:a8:74:5c:
61:fa:43:97:0e:01:cd:21:fc:63:6e:b6:4e:dc:4b:b7:42:84:
b6:4f:4d:a5:90:46:b1:68:d5:4c:c2:12:80:b1:94:fd:23:a1:
7e:4b:84:2e:f2:e7:03:47:8a:d1:b4:cb:8d:5d:c3:56:fa:8f:
ff:1d:c6:aa:59:e9:45:21:f9:c7:28:c3:98:7f:b9:d4:f0:f0:
3c:6c:03:2b:6c:02:53:59:03:56:93:b9:81:a9:31:43:c1:28:
6e:ec:91:34:3a:61:bb:17:6b:86:36:bd:58:d4:bc:3b:f2:85:
ac:e7:2f:5c:90:cb:c8:aa:4f:85:a2:9e:68:c2:da:95:e2:cc:
63:42:e6:70:d9:24:08:da:02:f8:89:56:20:fc:6b:92:3f:8d:
4b:59:86:38:75:07:b8:48:78:43:e1:04:f9:11:3f:d9:f1:b4:
41:29:e2:93:b6:8b:56:46:b0:df:6a:b8:0e:d7:83:c1:4f:13:
12:f2:c7:18:7c:db:ad:dc:eb:34:dc:31:c2:94:6c:4b:29:19:
14:d8:d6:f2
-----BEGIN CERTIFICATE-----
MIIFqDCCBJCgAwIBAgICCJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTIzNjQxMTAvBgNVBAUTKDY0N0IxNDlFRjAxNkNDNTM1NkE3RUQ3MzBGMTMzRTAw
MkMwRTdGQUEwHhcNMjIwMTMxMDM0NjIzWhcNMjMwMTMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02MWY3NWI4Zi0zNzljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAqbort0wQHhCG5GY6EsvbVJwZKzoNItq1Z5qeFyRhnt+o6R/Sf45Kh5aUpmZp
h4QSrwF8LX+yfJJwBBrGjJXXs090HZsQD0XqTjE/42bLQFmv5oh0j3eCfA4pAMWU
PnsAvUVmjUm/xhaOOZRFQb/6PUH6omAsx4Z2W7mS8PPGskG7ifSgLNo1FEnKWiXl
aTPa2HogUp6YGZ2iEka5D/MtBN56ZVDLAbKsrw5A5vi5YJND/Lh+HsQQXLzhOt2s
u4+ZEYNY38EBGcWK0xSx/JRzD5VFBo5noWWtXnTKNOT2s3N6/nwTVh8ZMOCQz0+K
BbYL8KTDS7D3CJ11o1qV3oDTxQIDAQABo4ICzDCCAsgwHQYDVR0OBBYEFJri33YY
YrbW1bKXWFDRWKDin268MB8GA1UdIwQYMBaAFGR7FJ7wFsxTVqftcw8TPgAsDn+q
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjM2NC84RkU3MTc4NkZG
OUIxMUU5QjdGNEE3NzJDNEY5QUUwMi9aSHNVbnZBV3pGTldwLTF6RHhNLUFDd09m
Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1pIc1VudkFXekZOV3AtMXpEeE0tQUN3T2Y2by5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RTIzNjQvOEZFNzE3ODZGRjlCMTFFOUI3RjRBNzcyQzRGOUFFMDIvNUI5RUNFOUM4
MjQ4MTFFQzlBQUIxMjJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwVgYIKwYBBQUHAQcBAf8E
RzBFMCoEAgABMCQDBAIbbXADBAFnkYgDBAN1FHADBADKXZkDBADKgewDBADLdvIw
FwQCAAIwEQMHACQBlwAQEAMGACQBlwAgMA0GCSqGSIb3DQEBCwUAA4IBAQDorxSk
vFyn9l6gXRRkXkpY9DklqJHRQEIFf7QF2qILgoE/C9v0YiiRero5wMejxk1Rj++o
dFxh+kOXDgHNIfxjbrZO3Eu3QoS2T02lkEaxaNVMwhKAsZT9I6F+S4Qu8ucDR4rR
tMuNXcNW+o//HcaqWelFIfnHKMOYf7nU8PA8bAMrbAJTWQNWk7mBqTFDwShu7JE0
OmG7F2uGNr1Y1Lw78oWs5y9ckMvIqk+Fop5owtqV4sxjQuZw2SQI2gL4iVYg/GuS
P41LWYY4dQe4SHhD4QT5ET/Z8bRBKeKTtotWRrDfargO14PBTxMS8scYfNut3Os0
3DHClGxLKRkU2Nby
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:32 2024 by rpki-client on console-ams.rpki-client.org