Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F87BB/9DF0DFBE7DE911ECBEA08E0FC4F9AE02/8AAFFCFED45111ED932D4D1FC4F9AE02.roa
File: 8AAFFCFED45111ED932D4D1FC4F9AE02.roa (raw, json)
Hash identifier: iTvm4ZEef/dIIj9WrmGy5RXayk1+Q1VNA9HhePKsdWc=
Subject key identifier: 4B:0B:1D:FA:86:43:8B:92:84:A7:B7:A9:D7:F9:76:BA:7F:BD:67:66
Certificate issuer: /CN=A91F87BB/serialNumber=B319DF1455D8A2E1498CDC5D491569831C5AFDA1
Certificate serial: 025C
Authority key identifier: B3:19:DF:14:55:D8:A2:E1:49:8C:DC:5D:49:15:69:83:1C:5A:FD:A1
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sxnfFFXYouFJjNxdSRVpgxxa_aE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F87BB/9DF0DFBE7DE911ECBEA08E0FC4F9AE02/8AAFFCFED45111ED932D4D1FC4F9AE02.roa
Signing time: Thu 06 Apr 2023 08:03:41 +0000
ROA not before: Thu 06 Apr 2023 08:03:40 +0000
ROA not after: Wed 01 May 2024 00:00:00 +0000
asID: 150799
IP address blocks: 103.180.55.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 604 (0x25c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F87BB/serialNumber=B319DF1455D8A2E1498CDC5D491569831C5AFDA1
Validity
Not Before: Apr 6 08:03:40 2023 GMT
Not After : May 1 00:00:00 2024 GMT
Subject: CN=642e7cdc-9452
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:49:c3:76:8b:28:fa:23:70:78:76:74:93:0a:
b7:8f:64:56:8d:db:55:74:80:82:06:13:b9:06:ca:
06:9a:b3:55:ca:6a:23:3a:52:98:d2:f6:07:ad:44:
ae:a5:84:ac:d1:86:0e:ea:13:39:31:2b:cf:31:f5:
cf:77:a9:4f:30:63:60:20:a7:a4:14:b3:1e:c8:da:
8b:55:e3:91:78:20:2b:c5:08:6c:a8:a5:36:aa:5d:
34:09:14:20:a6:c8:39:81:c3:47:02:f0:32:f9:ff:
4f:dc:6f:ca:bb:0a:ee:d5:09:f7:90:2e:02:5f:21:
95:b4:de:1b:e4:ec:1b:8f:65:99:fa:cc:53:fa:1e:
44:b6:f1:90:b4:bc:f2:c6:fa:e0:27:0b:8a:b2:a7:
8a:cf:71:84:ee:e6:df:a6:1e:58:de:af:61:a6:99:
b3:90:d5:b2:61:83:3b:18:eb:51:c7:89:1a:3a:97:
37:41:58:e9:14:d8:0a:5e:8f:a7:d2:98:77:d8:ec:
4a:31:2c:33:82:a5:d4:95:61:8f:fa:ba:b8:1d:d3:
f4:90:e4:03:0c:cb:87:59:3c:24:a6:56:d3:09:6b:
89:d3:18:10:37:01:52:6b:0b:61:ae:4f:3d:99:e1:
ce:fe:bf:6b:7d:80:e8:e1:fa:80:30:95:22:17:25:
2b:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:0B:1D:FA:86:43:8B:92:84:A7:B7:A9:D7:F9:76:BA:7F:BD:67:66
X509v3 Authority Key Identifier:
keyid:B3:19:DF:14:55:D8:A2:E1:49:8C:DC:5D:49:15:69:83:1C:5A:FD:A1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F87BB/9DF0DFBE7DE911ECBEA08E0FC4F9AE02/sxnfFFXYouFJjNxdSRVpgxxa_aE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sxnfFFXYouFJjNxdSRVpgxxa_aE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F87BB/9DF0DFBE7DE911ECBEA08E0FC4F9AE02/8AAFFCFED45111ED932D4D1FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.180.55.0/24
Signature Algorithm: sha256WithRSAEncryption
75:1c:73:f3:07:c4:3e:68:33:ca:ca:ad:9d:a7:3f:8d:3c:02:
83:19:aa:82:32:96:f2:d9:e4:23:94:30:af:bb:99:c3:c5:d2:
0b:1c:08:8c:d3:33:7b:bb:85:55:f5:00:38:b3:36:21:09:ef:
0e:f2:73:0c:7b:34:ed:e6:e0:8d:ee:da:e2:6c:b2:d1:ad:3a:
07:b5:bd:e5:c6:f1:ee:9d:14:e1:51:bf:4f:00:38:f4:d3:91:
19:03:c5:cd:e9:7f:d1:e4:c0:2a:00:a7:ca:88:2b:c5:61:e1:
d9:a5:31:5f:77:15:3c:69:a5:05:4c:c6:58:58:73:1a:01:2c:
65:3f:3d:53:9b:15:5c:4d:af:89:e2:84:9c:4f:b7:ce:93:bf:
1c:1b:8e:0b:51:29:12:f7:66:5c:9b:2a:1c:8c:6b:2c:af:90:
90:7e:8e:ba:6b:c3:27:f2:08:c1:de:7d:d5:e7:ac:bd:77:ec:
a7:fc:f4:36:e0:8f:cc:82:2a:aa:f6:5e:ee:f2:9b:66:4d:be:
84:1c:75:c3:65:cd:fa:6a:26:28:77:f4:c2:fd:5d:82:8b:28:
35:51:6c:66:b0:df:b1:41:1e:6d:b4:c6:1c:15:39:c6:f3:b3:
e5:d6:34:a3:4c:6b:da:22:77:0a:03:14:ea:b2:6f:66:48:b0:
68:a8:7a:44
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICAlwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
Rjg3QkIxMTAvBgNVBAUTKEIzMTlERjE0NTVEOEEyRTE0OThDREM1RDQ5MTU2OTgz
MUM1QUZEQTEwHhcNMjMwNDA2MDgwMzQwWhcNMjQwNTAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NDJlN2NkYy05NDUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA7knDdoso+iNweHZ0kwq3j2RWjdtVdICCBhO5BsoGmrNVymojOlKY0vYHrUSu
pYSs0YYO6hM5MSvPMfXPd6lPMGNgIKekFLMeyNqLVeOReCArxQhsqKU2ql00CRQg
psg5gcNHAvAy+f9P3G/Kuwru1Qn3kC4CXyGVtN4b5Owbj2WZ+sxT+h5EtvGQtLzy
xvrgJwuKsqeKz3GE7ubfph5Y3q9hppmzkNWyYYM7GOtRx4kaOpc3QVjpFNgKXo+n
0ph32OxKMSwzgqXUlWGP+rq4HdP0kOQDDMuHWTwkplbTCWuJ0xgQNwFSawthrk89
meHO/r9rfYDo4fqAMJUiFyUrWwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEsLHfqG
Q4uShKe3qdf5drp/vWdmMB8GA1UdIwQYMBaAFLMZ3xRV2KLhSYzcXUkVaYMcWv2h
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODdCQi85REYwREZCRTdE
RTkxMUVDQkVBMDhFMEZDNEY5QUUwMi9zeG5mRkZYWW91RkpqTnhkU1JWcGd4eGFf
YUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3N4bmZGRlhZb3VGSmpOeGRTUlZwZ3h4YV9hRS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
Rjg3QkIvOURGMERGQkU3REU5MTFFQ0JFQTA4RTBGQzRGOUFFMDIvOEFBRkZDRkVE
NDUxMTFFRDkzMkQ0RDFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBABntDcwDQYJKoZIhvcNAQELBQADggEBAHUcc/MHxD5oM8rK
rZ2nP408AoMZqoIylvLZ5COUMK+7mcPF0gscCIzTM3u7hVX1ADizNiEJ7w7ycwx7
NO3m4I3u2uJsstGtOge1veXG8e6dFOFRv08AOPTTkRkDxc3pf9HkwCoAp8qIK8Vh
4dmlMV93FTxppQVMxlhYcxoBLGU/PVObFVxNr4nihJxPt86TvxwbjgtRKRL3Zlyb
KhyMayyvkJB+jrprwyfyCMHefdXnrL137Kf89Dbgj8yCKqr2Xu7ym2ZNvoQcdcNl
zfpqJih39ML9XYKLKDVRbGaw37FBHm20xhwVOcbzs+XWNKNMa9oidwoDFOqyb2ZI
sGioekQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:51 2024 by rpki-client on console-fra.rpki-client.org