Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2364/8FE71786FF9B11E9B7F4A772C4F9AE02/E08A91D2633611EA8197D140C4F9AE02.roa
File: E08A91D2633611EA8197D140C4F9AE02.roa (raw, json)
Hash identifier: +HkTxgxEbVFvfdVRycFIWMSLdVMD6JidEOBrvp7/Mr0=
Subject key identifier: 5D:7C:BA:A4:4D:FA:98:C9:45:C2:F0:23:A1:81:DD:E8:85:C9:0F:1B
Certificate issuer: /CN=A91E2364/serialNumber=647B149EF016CC5356A7ED730F133E002C0E7FAA
Certificate serial: 0880
Authority key identifier: 64:7B:14:9E:F0:16:CC:53:56:A7:ED:73:0F:13:3E:00:2C:0E:7F:AA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZHsUnvAWzFNWp-1zDxM-ACwOf6o.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E2364/8FE71786FF9B11E9B7F4A772C4F9AE02/E08A91D2633611EA8197D140C4F9AE02.roa
Signing time: Fri 21 Jan 2022 02:16:00 +0000
ROA not before: Fri 21 Jan 2022 02:16:00 +0000
ROA not after: Tue 31 Jan 2023 00:00:00 +0000
asID: 45498
IP address blocks: 27.109.112.0/22 maxlen: 22
27.109.112.0/23 maxlen: 23
27.109.112.0/24 maxlen: 24
27.109.113.0/24 maxlen: 24
27.109.114.0/23 maxlen: 23
27.109.114.0/24 maxlen: 24
27.109.115.0/24 maxlen: 24
103.145.136.0/23 maxlen: 23
103.145.136.0/24 maxlen: 24
103.145.137.0/24 maxlen: 24
117.20.112.0/22 maxlen: 24
117.20.116.0/22 maxlen: 24
202.56.0.0/22 maxlen: 22
202.93.153.0/24 maxlen: 24
202.129.236.0/24 maxlen: 24
203.118.242.0/24 maxlen: 24
2401:9700:1010::/48 maxlen: 48
2401:9700:2000::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2176 (0x880)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E2364/serialNumber=647B149EF016CC5356A7ED730F133E002C0E7FAA
Validity
Not Before: Jan 21 02:16:00 2022 GMT
Not After : Jan 31 00:00:00 2023 GMT
Subject: CN=61ea1760-ac1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:49:a9:fe:5e:7a:e0:f6:35:05:d2:f3:d9:22:
1a:5c:65:88:16:3a:c5:c0:ea:18:b1:be:3c:3d:4a:
15:97:b2:ae:06:5b:e5:3e:80:aa:af:59:d4:2c:78:
9e:23:99:e9:f8:15:50:69:22:64:07:21:14:37:db:
43:ed:a9:31:57:bc:15:91:dd:a1:50:cf:56:e7:41:
18:60:f6:fa:8c:4e:d5:87:4b:88:15:a7:cf:e2:8b:
cc:3b:92:3b:3e:e7:88:ce:1d:f7:78:6f:ee:41:05:
8c:8c:dc:d3:01:46:c0:37:ad:f7:2e:1b:72:49:51:
ae:78:69:07:83:bb:54:2c:a5:b1:81:d2:bf:d6:61:
4d:61:a0:f7:54:11:46:fc:46:0d:57:5d:13:43:25:
36:8f:84:94:e0:20:a7:5a:dc:92:4c:f1:73:9c:d2:
91:2a:ce:d7:46:04:6e:4c:5a:7a:6a:87:e2:aa:98:
ed:16:09:61:90:17:6b:b3:12:e0:da:20:b2:64:dc:
27:75:b6:a7:c5:ae:61:aa:8a:83:d4:f0:64:a0:55:
97:c8:86:e4:ff:06:77:dd:91:62:4d:db:0c:19:14:
87:f8:94:b5:4a:c1:53:86:7e:13:d5:28:2c:08:3c:
b8:09:ba:85:4c:57:be:82:2b:f9:b2:e0:85:72:b2:
72:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:7C:BA:A4:4D:FA:98:C9:45:C2:F0:23:A1:81:DD:E8:85:C9:0F:1B
X509v3 Authority Key Identifier:
keyid:64:7B:14:9E:F0:16:CC:53:56:A7:ED:73:0F:13:3E:00:2C:0E:7F:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E2364/8FE71786FF9B11E9B7F4A772C4F9AE02/ZHsUnvAWzFNWp-1zDxM-ACwOf6o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZHsUnvAWzFNWp-1zDxM-ACwOf6o.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2364/8FE71786FF9B11E9B7F4A772C4F9AE02/E08A91D2633611EA8197D140C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
27.109.112.0/22
103.145.136.0/23
117.20.112.0/21
202.56.0.0/22
202.93.153.0/24
202.129.236.0/24
203.118.242.0/24
IPv6:
2401:9700:1010::/48
2401:9700:2000::/40
Signature Algorithm: sha256WithRSAEncryption
80:df:bf:a4:96:d7:8d:a5:1e:0f:78:7c:43:01:3d:a4:9a:59:
90:0a:a8:b0:8e:b4:6c:94:af:a7:df:38:e4:92:05:77:39:c5:
f2:f2:de:31:26:81:54:84:44:52:7a:d4:5f:96:f4:2a:66:59:
d9:ca:33:3d:f8:99:30:7b:7b:f8:32:cf:ea:55:56:00:ec:71:
7c:f7:bc:87:60:e7:c8:22:bb:b2:f4:96:ec:06:e3:c4:18:15:
49:29:c7:d0:5f:07:0a:54:3a:f6:f8:58:37:03:ff:8d:2b:84:
42:9e:a9:ac:62:30:af:68:b6:e1:3d:e7:c8:af:2f:79:ec:60:
e6:49:4a:19:7d:04:e2:cb:ee:f9:dc:da:04:d2:98:c7:8e:60:
70:a1:4f:4a:b5:c3:f4:d7:4f:ca:8c:64:75:23:ab:c9:03:7b:
df:59:d2:68:ba:2d:d3:84:6f:8a:21:d7:0f:89:6e:14:75:72:
c2:f9:85:4f:bf:73:af:e7:54:9d:f9:8a:e9:a2:9a:0c:ac:08:
0b:17:5b:55:a6:e7:6a:4a:06:e1:c9:de:df:c8:b3:f1:d6:50:
32:eb:96:57:3a:13:bc:2b:ed:e0:ae:ca:0d:48:44:7f:7a:50:
4c:64:0c:c6:83:59:26:5d:ed:46:66:d1:7d:01:59:01:e9:86:
c2:9f:af:b5
-----BEGIN CERTIFICATE-----
MIIFrjCCBJagAwIBAgICCIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTIzNjQxMTAvBgNVBAUTKDY0N0IxNDlFRjAxNkNDNTM1NkE3RUQ3MzBGMTMzRTAw
MkMwRTdGQUEwHhcNMjIwMTIxMDIxNjAwWhcNMjMwMTMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02MWVhMTc2MC1hYzFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAoUmp/l564PY1BdLz2SIaXGWIFjrFwOoYsb48PUoVl7KuBlvlPoCqr1nULHie
I5np+BVQaSJkByEUN9tD7akxV7wVkd2hUM9W50EYYPb6jE7Vh0uIFafP4ovMO5I7
PueIzh33eG/uQQWMjNzTAUbAN633LhtySVGueGkHg7tULKWxgdK/1mFNYaD3VBFG
/EYNV10TQyU2j4SU4CCnWtySTPFznNKRKs7XRgRuTFp6aofiqpjtFglhkBdrsxLg
2iCyZNwndbanxa5hqoqD1PBkoFWXyIbk/wZ33ZFiTdsMGRSH+JS1SsFThn4T1Sgs
CDy4CbqFTFe+giv5suCFcrJyaQIDAQABo4IC0jCCAs4wHQYDVR0OBBYEFF18uqRN
+pjJRcLwI6GB3eiFyQ8bMB8GA1UdIwQYMBaAFGR7FJ7wFsxTVqftcw8TPgAsDn+q
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjM2NC84RkU3MTc4NkZG
OUIxMUU5QjdGNEE3NzJDNEY5QUUwMi9aSHNVbnZBV3pGTldwLTF6RHhNLUFDd09m
Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1pIc1VudkFXekZOV3AtMXpEeE0tQUN3T2Y2by5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RTIzNjQvOEZFNzE3ODZGRjlCMTFFOUI3RjRBNzcyQzRGOUFFMDIvRTA4QTkxRDI2
MzM2MTFFQTgxOTdEMTQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwXAYIKwYBBQUHAQcBAf8E
TTBLMDAEAgABMCoDBAIbbXADBAFnkYgDBAN1FHADBALKOAADBADKXZkDBADKgewD
BADLdvIwFwQCAAIwEQMHACQBlwAQEAMGACQBlwAgMA0GCSqGSIb3DQEBCwUAA4IB
AQCA37+klteNpR4PeHxDAT2kmlmQCqiwjrRslK+n3zjkkgV3OcXy8t4xJoFUhERS
etRflvQqZlnZyjM9+Jkwe3v4Ms/qVVYA7HF897yHYOfIIruy9JbsBuPEGBVJKcfQ
XwcKVDr2+Fg3A/+NK4RCnqmsYjCvaLbhPefIry957GDmSUoZfQTiy+753NoE0pjH
jmBwoU9KtcP010/KjGR1I6vJA3vfWdJoui3ThG+KIdcPiW4UdXLC+YVPv3Ov51Sd
+YrpopoMrAgLF1tVpudqSgbhyd7fyLPx1lAy65ZXOhO8K+3grsoNSER/elBMZAzG
g1kmXe1GZtF9AVkB6YbCn6+1
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:44 2024 by rpki-client on console-fra.rpki-client.org