Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/5FD2529C3A6A11ED832EFA40C4F9AE02.roa
File: 5FD2529C3A6A11ED832EFA40C4F9AE02.roa (raw, json)
Hash identifier: TSeeQmuT5UICusi4V8CV5MuN5JDmSkF3/WD9dvj3niU=
Subject key identifier: 79:6C:7E:38:9A:E0:7D:BF:9F:42:05:F3:6D:ED:30:0B:72:33:64:D5
Certificate issuer: /CN=A91142EA/serialNumber=732254DBD618F1886D4DF9201393BFDF8B9E020E
Certificate serial: 0491
Authority key identifier: 73:22:54:DB:D6:18:F1:88:6D:4D:F9:20:13:93:BF:DF:8B:9E:02:0E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cyJU29YY8YhtTfkgE5O_34ueAg4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/5FD2529C3A6A11ED832EFA40C4F9AE02.roa
Signing time: Thu 22 Sep 2022 11:33:27 +0000
ROA not before: Thu 22 Sep 2022 11:33:27 +0000
ROA not after: Fri 30 Dec 2022 00:00:00 +0000
asID: 133866
IP address blocks: 103.76.44.0/22 maxlen: 22
103.76.44.0/24 maxlen: 24
103.76.45.0/24 maxlen: 24
103.76.46.0/24 maxlen: 24
103.76.47.0/24 maxlen: 24
116.206.88.0/22 maxlen: 22
116.206.88.0/24 maxlen: 24
116.206.89.0/24 maxlen: 24
116.206.90.0/24 maxlen: 24
116.206.91.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1169 (0x491)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91142EA/serialNumber=732254DBD618F1886D4DF9201393BFDF8B9E020E
Validity
Not Before: Sep 22 11:33:27 2022 GMT
Not After : Dec 30 00:00:00 2022 GMT
Subject: CN=632c4807-5f65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:4c:db:be:72:9b:2e:11:fe:06:f5:81:00:dd:
5c:45:21:26:c5:ae:16:3f:66:96:4a:1f:a8:9d:6e:
c8:e7:2b:65:a5:d6:44:0d:58:96:8e:a8:7b:25:51:
29:c2:49:1b:8b:6e:06:51:29:1b:8f:41:3c:10:df:
89:bd:07:40:2d:d8:5d:a6:33:6f:8c:0c:59:4d:9a:
d2:49:44:f6:fa:95:99:1f:e5:10:fb:f8:e2:4a:12:
ae:25:35:3e:ac:87:b9:fe:84:a8:a2:33:99:9a:60:
f6:a5:33:59:2e:70:48:f0:6c:e6:bc:3c:49:d7:42:
bf:28:3a:5a:37:c8:ce:c9:0c:06:8e:39:63:93:61:
43:b9:14:1c:03:92:88:f7:da:34:9c:44:fb:b6:d3:
f1:cd:18:10:aa:1c:b6:47:78:7e:b7:c4:62:f5:75:
3f:ce:2a:e7:e5:10:cf:f4:78:c6:0e:02:3d:e1:c3:
14:04:98:66:73:d3:f0:f1:2d:02:27:a5:81:de:ea:
d7:eb:57:b6:8f:39:b7:b7:4f:30:9b:b0:f4:13:0b:
2f:c5:00:4f:ee:72:4f:74:39:db:af:60:f1:b4:27:
58:c9:c4:4b:1b:84:14:f2:79:eb:ff:50:ff:9d:27:
02:23:a0:5a:16:56:9d:fc:ba:eb:66:55:4c:e6:a5:
ff:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:6C:7E:38:9A:E0:7D:BF:9F:42:05:F3:6D:ED:30:0B:72:33:64:D5
X509v3 Authority Key Identifier:
keyid:73:22:54:DB:D6:18:F1:88:6D:4D:F9:20:13:93:BF:DF:8B:9E:02:0E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/cyJU29YY8YhtTfkgE5O_34ueAg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cyJU29YY8YhtTfkgE5O_34ueAg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/5FD2529C3A6A11ED832EFA40C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.76.44.0/22
116.206.88.0/22
Signature Algorithm: sha256WithRSAEncryption
06:cd:88:88:df:08:7b:7c:8f:08:c2:79:f7:24:8a:e9:bd:bc:
0b:ff:bb:8c:13:b1:db:cb:c0:47:24:ea:28:a9:da:20:a7:31:
11:88:5d:7a:e3:b5:72:83:b0:53:15:c3:79:38:28:85:08:03:
61:d4:52:80:ca:b2:d0:87:1a:49:6c:04:1e:b8:72:a4:83:47:
44:ee:b0:39:5d:da:52:22:af:85:10:b6:40:bd:b8:01:b9:25:
fe:42:c6:ec:ee:b7:81:47:e1:1b:c3:55:d3:b4:e7:a4:03:f3:
fe:ba:84:5b:c4:7d:3a:cf:2d:ce:29:ba:40:fc:0f:23:83:94:
86:61:0d:15:bb:f3:d1:6e:26:65:5c:2b:37:7d:b2:ce:1a:71:
b5:d8:32:7c:b0:15:a6:cb:dc:72:c2:fa:56:9b:5f:16:76:b6:
37:e9:c2:13:46:b7:cb:fd:74:f5:a5:5a:52:67:66:74:90:fc:
ae:27:d1:45:65:44:e6:08:8e:75:b3:99:89:79:fc:53:f4:e8:
b0:9e:8d:48:f6:38:0d:b9:69:aa:60:e8:90:7f:23:8b:26:aa:
fc:43:34:12:a7:2a:1e:5f:ad:ef:a8:01:77:de:f9:01:b6:5b:
0b:b1:56:44:f8:d4:7e:02:67:79:4c:df:1a:25:00:eb:a7:30:
86:01:f8:df
-----BEGIN CERTIFICATE-----
MIIFdzCCBF+gAwIBAgICBJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MTQyRUExMTAvBgNVBAUTKDczMjI1NERCRDYxOEYxODg2RDRERjkyMDEzOTNCRkRG
OEI5RTAyMEUwHhcNMjIwOTIyMTEzMzI3WhcNMjIxMjMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02MzJjNDgwNy01ZjY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAwkzbvnKbLhH+BvWBAN1cRSEmxa4WP2aWSh+onW7I5ytlpdZEDViWjqh7JVEp
wkkbi24GUSkbj0E8EN+JvQdALdhdpjNvjAxZTZrSSUT2+pWZH+UQ+/jiShKuJTU+
rIe5/oSoojOZmmD2pTNZLnBI8GzmvDxJ10K/KDpaN8jOyQwGjjljk2FDuRQcA5KI
99o0nET7ttPxzRgQqhy2R3h+t8Ri9XU/zirn5RDP9HjGDgI94cMUBJhmc9Pw8S0C
J6WB3urX61e2jzm3t08wm7D0EwsvxQBP7nJPdDnbr2DxtCdYycRLG4QU8nnr/1D/
nScCI6BaFlad/LrrZlVM5qX/iQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFHlsfjia
4H2/n0IF823tMAtyM2TVMB8GA1UdIwQYMBaAFHMiVNvWGPGIbU35IBOTv9+LngIO
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNDJFQS9GNTMzMkQ3RTg0
QzMxMUU2Qjk4MjFBODFDNEY5QUUwMi9jeUpVMjlZWThZaHRUZmtnRTVPXzM0dWVB
ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2N5SlUyOVlZOFlodFRma2dFNU9fMzR1ZUFnNC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
MTQyRUEvRjUzMzJEN0U4NEMzMTFFNkI5ODIxQTgxQzRGOUFFMDIvNUZEMjUyOUMz
QTZBMTFFRDgzMkVGQTQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E
FjAUMBIEAgABMAwDBAJnTCwDBAJ0zlgwDQYJKoZIhvcNAQELBQADggEBAAbNiIjf
CHt8jwjCefckium9vAv/u4wTsdvLwEck6iip2iCnMRGIXXrjtXKDsFMVw3k4KIUI
A2HUUoDKstCHGklsBB64cqSDR0TusDld2lIir4UQtkC9uAG5Jf5Cxuzut4FH4RvD
VdO056QD8/66hFvEfTrPLc4pukD8DyODlIZhDRW789FuJmVcKzd9ss4acbXYMnyw
FabL3HLC+labXxZ2tjfpwhNGt8v9dPWlWlJnZnSQ/K4n0UVlROYIjnWzmYl5/FP0
6LCejUj2OA25aapg6JB/I4smqvxDNBKnKh5fre+oAXfe+QG2WwuxVkT41H4CZ3lM
3xolAOunMIYB+N8=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-ams.rpki-client.org