Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/509AD5EC093A11EF8CF27270C4F9AE02.roa
File: 509AD5EC093A11EF8CF27270C4F9AE02.roa (raw, json)
Hash identifier: dYrRhLAqS2fK6HNWxr2WBKK5+6GWRLPNj/kKOUImbpQ=
Subject key identifier: 59:A0:6C:D3:1C:7F:CA:C5:00:9E:CC:EF:1D:0A:AE:C7:41:97:D6:4F
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 1192
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/509AD5EC093A11EF8CF27270C4F9AE02.roa
Signing time: Mon 06 May 2024 15:52:20 +0000
ROA not before: Mon 06 May 2024 15:52:20 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 140900
IP address blocks: 113.203.209.0/24 maxlen: 24
113.203.246.0/24 maxlen: 24
223.29.239.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4498 (0x1192)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: May 6 15:52:20 2024 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=6638fcb4-77df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ad:1f:70:36:64:4b:9c:0b:65:1b:f2:75:05:
2a:d0:71:ce:ca:ca:a9:7f:68:ce:7c:1c:9e:f3:eb:
5f:ac:04:2b:0b:78:11:f6:8e:b1:73:ab:03:fc:63:
d9:61:72:9e:21:5c:4c:0c:bd:b1:f9:96:9c:7c:b2:
da:44:92:91:6a:6b:1c:94:72:df:1a:69:9b:dc:f3:
36:db:70:e1:c0:d1:d5:66:c6:c9:3f:c0:9b:b8:00:
72:2b:80:fa:70:6c:3d:03:2f:c0:ef:f8:ef:f3:2d:
45:12:fc:15:ab:b5:5c:53:09:84:4a:52:67:1b:02:
7f:a3:92:2c:c2:02:00:fe:28:1d:9f:45:84:c7:40:
49:d8:e0:be:73:42:f7:70:cd:62:ee:17:38:53:25:
1f:ec:d9:ef:8f:a7:e1:82:0c:5d:45:bb:9b:93:0b:
56:1a:b1:82:94:01:ff:cf:7f:46:7a:4d:1d:9a:ff:
30:eb:e2:dd:60:4f:b7:7d:bf:7a:9d:fa:ea:2d:38:
ec:cc:14:d9:a1:eb:29:bd:ea:9e:9d:a3:54:24:9a:
9d:34:9f:52:89:43:2d:ae:3d:8b:ee:63:75:20:75:
46:1c:86:d2:34:fd:f1:ed:5e:5f:bf:77:32:72:3e:
ba:18:ca:28:57:bd:87:c3:dd:77:d4:4a:5e:b1:52:
db:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:A0:6C:D3:1C:7F:CA:C5:00:9E:CC:EF:1D:0A:AE:C7:41:97:D6:4F
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/509AD5EC093A11EF8CF27270C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
113.203.209.0/24
113.203.246.0/24
223.29.239.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:3b:9d:51:a6:22:76:45:7b:6a:79:de:9d:f1:72:c1:6a:02:
5d:c2:f7:92:de:4d:ff:4d:d4:6e:24:93:a3:f3:ed:8f:0e:80:
2b:e8:3a:76:8b:3f:11:e4:33:53:07:86:75:47:36:61:4f:81:
21:e7:bb:95:53:10:a9:c5:00:28:e8:2b:9a:29:3f:a7:e5:23:
bf:b8:98:5b:d5:f0:22:65:60:53:3c:81:c0:08:ef:b1:34:d7:
0e:d2:8b:4a:07:7e:74:75:64:4a:aa:10:b6:ee:4e:df:8d:ee:
1f:25:70:11:ef:79:3a:2c:49:a8:c5:ed:e6:57:3d:92:63:2a:
0b:6a:7e:dc:68:05:f9:8f:ca:91:78:da:bf:8a:ac:23:b7:87:
de:6d:29:c3:cb:92:1d:37:c4:b4:0c:90:33:e3:96:56:5e:0c:
49:34:2a:67:0b:e4:35:be:43:12:2d:85:74:16:57:aa:58:cd:
a5:78:16:db:76:6a:b0:7c:86:33:19:4a:d0:ad:18:dd:8b:4e:
29:96:e5:98:4e:d5:e7:31:33:d5:74:00:b0:5f:ba:73:4a:20:
4f:ff:a7:bb:03:02:50:a8:f6:99:6f:15:67:68:1b:8d:ab:14:
85:0e:ad:8f:3d:d0:24:a1:6c:51:8a:29:b4:88:4c:cc:b3:e8:
fd:07:c7:b5
-----BEGIN CERTIFICATE-----
MIIFfTCCBGWgAwIBAgICEZIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTYxMzQxMTAvBgNVBAUTKDgzMDgwODc5MTFFQTQ5RTIxNURDNDkyNkIwMjI2QTUy
MUU1QjM5QzQwHhcNMjQwNTA2MTU1MjIwWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NjM4ZmNiNC03N2RmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAuq0fcDZkS5wLZRvydQUq0HHOysqpf2jOfBye8+tfrAQrC3gR9o6xc6sD/GPZ
YXKeIVxMDL2x+ZacfLLaRJKRamsclHLfGmmb3PM223DhwNHVZsbJP8CbuAByK4D6
cGw9Ay/A7/jv8y1FEvwVq7VcUwmESlJnGwJ/o5IswgIA/igdn0WEx0BJ2OC+c0L3
cM1i7hc4UyUf7Nnvj6fhggxdRbubkwtWGrGClAH/z39Gek0dmv8w6+LdYE+3fb96
nfrqLTjszBTZoespveqenaNUJJqdNJ9SiUMtrj2L7mN1IHVGHIbSNP3x7V5fv3cy
cj66GMooV72Hw9131EpesVLbUQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFFmgbNMc
f8rFAJ7M7x0KrsdBl9ZPMB8GA1UdIwQYMBaAFIMICHkR6kniFdxJJrAialIeWznE
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81RjlBQTRCRUMy
QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9nd2dJZVJIcVNlSVYzRWttc0NKcVVoNWJP
Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2d3Z0llUkhxU2VJVjNFa21zQ0pxVWg1Yk9jUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RTYxMzQvNUY5QUE0QkVDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvNTA5QUQ1RUMw
OTNBMTFFRjhDRjI3MjcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E
HDAaMBgEAgABMBIDBABxy9EDBABxy/YDBADfHe8wDQYJKoZIhvcNAQELBQADggEB
ALQ7nVGmInZFe2p53p3xcsFqAl3C95LeTf9N1G4kk6Pz7Y8OgCvoOnaLPxHkM1MH
hnVHNmFPgSHnu5VTEKnFACjoK5opP6flI7+4mFvV8CJlYFM8gcAI77E01w7Si0oH
fnR1ZEqqELbuTt+N7h8lcBHveTosSajF7eZXPZJjKgtqftxoBfmPypF42r+KrCO3
h95tKcPLkh03xLQMkDPjllZeDEk0KmcL5DW+QxIthXQWV6pYzaV4Ftt2arB8hjMZ
StCtGN2LTimW5ZhO1ecxM9V0ALBfunNKIE//p7sDAlCo9plvFWdoG42rFIUOrY89
0CShbFGKKbSITMyz6P0Hx7U=
-----END CERTIFICATE-----
Generated at Sun Apr 13 02:02:41 2025 by rpki-client