Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/E6D5CC2A6BE611EEA0BEB226C4F9AE02.roa
File: E6D5CC2A6BE611EEA0BEB226C4F9AE02.roa (raw, json)
Hash identifier: vW4KukOh0jj7/4mcI4Er8vI2fxyJSVE5C0uEnhAhyaY=
Subject key identifier: DC:85:71:88:21:DB:66:3C:69:37:A7:33:30:E8:17:04:27:F0:F8:4F
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 0D77
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/E6D5CC2A6BE611EEA0BEB226C4F9AE02.roa
Signing time: Mon 16 Oct 2023 05:43:15 +0000
ROA not before: Mon 16 Oct 2023 05:43:15 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 113.203.223.0/24 maxlen: 24
113.203.224.0/24 maxlen: 24
115.167.120.0/22 maxlen: 24
180.178.170.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3447 (0xd77)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Oct 16 05:43:15 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=652ccd73-e5e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:b8:49:7b:94:6b:54:9b:d8:69:39:9e:27:ba:
3a:19:3f:a7:ee:96:b9:14:e0:d2:dc:be:5a:5f:d7:
44:16:b7:73:9c:a6:71:03:af:06:bc:62:ef:f3:80:
2a:22:a7:f2:09:7f:39:8d:c7:b4:58:ac:49:20:fa:
f2:53:32:ed:25:ff:fe:6a:eb:82:85:bc:e8:64:95:
f5:bf:5e:d1:9f:6a:d2:9d:23:82:9e:97:41:04:a2:
18:75:e7:82:d9:f1:ea:20:2d:71:34:ca:39:87:39:
f6:61:a4:aa:d4:f2:7f:99:38:3e:1f:9c:04:c9:8c:
3b:a5:19:38:92:e8:91:c3:05:df:ed:f5:4c:44:f9:
dc:e8:88:fd:02:17:78:ec:73:7b:80:14:df:b1:21:
ce:51:e5:e4:e0:5d:aa:6c:03:28:4a:3b:12:d9:10:
02:ed:56:31:9a:af:05:59:92:37:40:57:c0:3e:b5:
21:0f:90:3f:a1:b2:40:14:13:a4:09:3f:7a:4d:2f:
2d:7d:81:ab:f8:50:5a:68:5e:e9:a7:46:c4:d9:74:
3b:72:b9:fc:72:9a:2e:11:ba:c2:6d:82:b1:f4:a6:
41:e7:cd:4c:dd:ee:54:7e:13:1f:d6:5a:88:20:ca:
b1:6d:d1:25:45:1a:3b:c9:f6:a4:e0:cf:94:86:66:
f8:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:85:71:88:21:DB:66:3C:69:37:A7:33:30:E8:17:04:27:F0:F8:4F
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/E6D5CC2A6BE611EEA0BEB226C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
113.203.223.0-113.203.224.255
115.167.120.0/22
180.178.170.0/24
Signature Algorithm: sha256WithRSAEncryption
21:a4:83:88:2b:31:3e:1c:c6:d6:20:12:31:cf:16:b1:d3:cf:
1d:6b:24:05:d5:1f:b6:21:f6:17:71:d8:37:df:d8:1c:60:2b:
83:cc:14:7b:cb:f8:6d:44:0e:e0:b7:46:58:97:17:5d:b9:45:
fa:37:fd:1f:0b:84:3d:a7:7c:4e:ae:99:75:b3:2a:27:e7:a7:
b1:0a:54:b5:b8:ff:7d:86:09:54:96:d3:04:93:72:28:63:85:
d9:b3:8a:32:dc:e6:06:4f:53:3a:6e:f3:0d:4d:a5:17:f8:9d:
36:35:c7:b1:c8:ae:a9:e8:32:e0:30:9a:d1:b8:95:89:92:b7:
03:8d:5e:53:1d:2b:7b:a3:09:5a:36:35:15:56:c4:f8:56:93:
99:b0:80:b5:fd:27:9f:01:47:cd:a7:9b:fd:b6:f5:6f:51:ec:
97:15:c7:8d:53:fc:db:f8:35:65:60:ef:f9:36:32:32:de:eb:
61:6a:8c:d0:12:00:64:40:ba:48:93:34:de:ea:7b:d9:4e:ee:
02:52:b1:74:fd:1c:0b:9f:a1:12:90:fd:db:b2:33:91:c9:d8:
e4:e6:12:61:a8:49:2a:48:14:fa:ce:5b:ad:10:3e:2b:2f:bd:
8f:d1:2b:b9:8c:28:d9:43:98:61:ee:81:b3:80:60:91:35:1c:
61:09:cc:9f
-----BEGIN CERTIFICATE-----
MIIFhTCCBG2gAwIBAgICDXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTYxMzQxMTAvBgNVBAUTKDgzMDgwODc5MTFFQTQ5RTIxNURDNDkyNkIwMjI2QTUy
MUU1QjM5QzQwHhcNMjMxMDE2MDU0MzE1WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NTJjY2Q3My1lNWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA0rhJe5RrVJvYaTmeJ7o6GT+n7pa5FODS3L5aX9dEFrdznKZxA68GvGLv84Aq
IqfyCX85jce0WKxJIPryUzLtJf/+auuChbzoZJX1v17Rn2rSnSOCnpdBBKIYdeeC
2fHqIC1xNMo5hzn2YaSq1PJ/mTg+H5wEyYw7pRk4kuiRwwXf7fVMRPnc6Ij9Ahd4
7HN7gBTfsSHOUeXk4F2qbAMoSjsS2RAC7VYxmq8FWZI3QFfAPrUhD5A/obJAFBOk
CT96TS8tfYGr+FBaaF7pp0bE2XQ7crn8cpouEbrCbYKx9KZB581M3e5UfhMf1lqI
IMqxbdElRRo7yfak4M+Uhmb4zwIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFNyFcYgh
22Y8aTenMzDoFwQn8PhPMB8GA1UdIwQYMBaAFIMICHkR6kniFdxJJrAialIeWznE
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81RjlBQTRCRUMy
QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9nd2dJZVJIcVNlSVYzRWttc0NKcVVoNWJP
Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2d3Z0llUkhxU2VJVjNFa21zQ0pxVWg1Yk9jUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RTYxMzQvNUY5QUE0QkVDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvRTZENUNDMkE2
QkU2MTFFRUEwQkVCMjI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E
JDAiMCAEAgABMBowDAMEAHHL3wMEAHHL4AMEAnOneAMEALSyqjANBgkqhkiG9w0B
AQsFAAOCAQEAIaSDiCsxPhzG1iASMc8WsdPPHWskBdUftiH2F3HYN9/YHGArg8wU
e8v4bUQO4LdGWJcXXblF+jf9HwuEPad8Tq6ZdbMqJ+ensQpUtbj/fYYJVJbTBJNy
KGOF2bOKMtzmBk9TOm7zDU2lF/idNjXHsciuqegy4DCa0biViZK3A41eUx0re6MJ
WjY1FVbE+FaTmbCAtf0nnwFHzaeb/bb1b1HslxXHjVP82/g1ZWDv+TYyMt7rYWqM
0BIAZEC6SJM03up72U7uAlKxdP0cC5+hEpD927IzkcnY5OYSYahJKkgU+s5brRA+
Ky+9j9EruYwo2UOYYe6Bs4BgkTUcYQnMnw==
-----END CERTIFICATE-----
Generated at Sun Apr 13 01:48:26 2025 by rpki-client