Route Origin Authorization

$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/4137A466099C11EEAD16CF0EC4F9AE02.roa
File:                     4137A466099C11EEAD16CF0EC4F9AE02.roa (raw, json)
Hash identifier:          K3MNcDNJDGlpMCF/VxxSXJMipmpw2OqN8/2xSuCbM+w=
Subject key identifier:   65:2F:8E:5C:C7:7F:82:4C:42:96:67:1C:9F:91:1B:E6:7E:EB:5E:07
Certificate issuer:       /CN=A911CA78/serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6
Certificate serial:       0A9A
Authority key identifier: 40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/4137A466099C11EEAD16CF0EC4F9AE02.roa
Signing time:             Thu 05 Oct 2023 13:41:31 +0000
ROA not before:           Thu 05 Oct 2023 13:41:31 +0000
ROA not after:            Fri 01 Mar 2024 00:00:00 +0000
asID:                     4788
IP address blocks:        1.9.0.0/16 maxlen: 24
                          1.32.0.0/17 maxlen: 19
                          27.146.0.0/16 maxlen: 21
                          27.146.0.0/17 maxlen: 24
                          27.146.128.0/18 maxlen: 24
                          27.146.192.0/19 maxlen: 24
                          27.146.224.0/20 maxlen: 24
                          27.146.240.0/21 maxlen: 24
                          27.146.248.0/22 maxlen: 22
                          27.146.248.0/23 maxlen: 23
                          27.146.248.0/24 maxlen: 24
                          42.188.0.0/14 maxlen: 19
                          45.116.244.0/22 maxlen: 24
                          58.26.0.0/16 maxlen: 24
                          58.27.0.0/17 maxlen: 24
                          58.139.0.0/16 maxlen: 17
                          58.139.0.0/17 maxlen: 24
                          58.139.128.0/18 maxlen: 21
                          58.139.128.0/19 maxlen: 24
                          58.139.160.0/20 maxlen: 24
                          58.139.176.0/21 maxlen: 24
                          58.139.184.0/22 maxlen: 22
                          58.139.184.0/23 maxlen: 24
                          60.48.0.0/14 maxlen: 16
                          60.48.0.0/15 maxlen: 22
                          60.50.0.0/16 maxlen: 22
                          60.51.0.0/17 maxlen: 18
                          60.51.0.0/18 maxlen: 22
                          60.51.64.0/19 maxlen: 20
                          60.51.64.0/20 maxlen: 22
                          60.51.80.0/21 maxlen: 22
                          60.52.0.0/15 maxlen: 20
                          60.52.0.0/16 maxlen: 23
                          60.53.0.0/17 maxlen: 23
                          60.53.128.0/18 maxlen: 23
                          60.53.192.0/19 maxlen: 23
                          60.53.224.0/20 maxlen: 23
                          60.53.240.0/21 maxlen: 21
                          60.53.240.0/22 maxlen: 22
                          60.53.240.0/23 maxlen: 23
                          103.4.140.0/22 maxlen: 22
                          103.4.140.0/23 maxlen: 24
                          103.4.142.0/23 maxlen: 24
                          114.133.0.0/16 maxlen: 21
                          114.133.0.0/17 maxlen: 24
                          114.133.128.0/18 maxlen: 24
                          114.133.192.0/19 maxlen: 24
                          114.133.224.0/20 maxlen: 24
                          114.133.240.0/21 maxlen: 24
                          115.132.0.0/20 maxlen: 22
                          115.132.16.0/20 maxlen: 22
                          115.132.32.0/20 maxlen: 22
                          115.132.48.0/20 maxlen: 22
                          115.132.64.0/20 maxlen: 22
                          115.132.80.0/20 maxlen: 22
                          115.132.96.0/19 maxlen: 22
                          115.132.128.0/20 maxlen: 22
                          115.132.144.0/20 maxlen: 22
                          115.132.160.0/20 maxlen: 22
                          115.132.176.0/20 maxlen: 22
                          115.132.192.0/20 maxlen: 22
                          115.132.208.0/20 maxlen: 22
                          115.132.224.0/20 maxlen: 22
                          115.132.240.0/20 maxlen: 22
                          115.133.0.0/20 maxlen: 20
                          115.133.0.0/21 maxlen: 21
                          118.100.0.0/16 maxlen: 22
                          118.101.0.0/16 maxlen: 22
                          120.140.0.0/19 maxlen: 19
                          120.140.32.0/19 maxlen: 19
                          120.140.66.0/24 maxlen: 24
                          120.140.67.0/24 maxlen: 24
                          124.82.0.0/16 maxlen: 21
                          202.171.192.0/20 maxlen: 24
                          202.178.0.0/19 maxlen: 19
                          202.178.32.0/19 maxlen: 24
                          202.178.64.0/20 maxlen: 24
                          202.188.0.0/16 maxlen: 24
                          202.188.0.0/17 maxlen: 24
                          202.188.0.0/18 maxlen: 24
                          202.188.64.0/18 maxlen: 24
                          202.188.68.0/22 maxlen: 24
                          202.188.72.0/24 maxlen: 24
                          202.188.76.0/22 maxlen: 24
                          202.188.80.0/23 maxlen: 24
                          202.188.84.0/23 maxlen: 24
                          202.188.86.0/23 maxlen: 24
                          202.188.88.0/23 maxlen: 24
                          202.188.128.0/17 maxlen: 24
                          202.188.128.0/18 maxlen: 24
                          202.188.192.0/18 maxlen: 24
                          202.188.192.0/19 maxlen: 24
                          202.188.224.0/19 maxlen: 24
                          203.106.0.0/16 maxlen: 24
                          203.106.0.0/17 maxlen: 24
                          203.106.0.0/18 maxlen: 24
                          203.106.32.0/19 maxlen: 24
                          203.106.64.0/18 maxlen: 24
                          203.106.64.0/22 maxlen: 22
                          203.106.68.0/22 maxlen: 24
                          203.106.72.0/22 maxlen: 24
                          203.106.85.0/24 maxlen: 24
                          203.106.96.0/23 maxlen: 24
                          203.106.98.0/24 maxlen: 24
                          203.106.99.0/24 maxlen: 24
                          203.106.100.0/23 maxlen: 24
                          203.106.112.0/23 maxlen: 24
                          203.106.114.0/23 maxlen: 24
                          203.106.116.0/23 maxlen: 24
                          203.106.128.0/17 maxlen: 17
                          203.106.128.0/17 maxlen: 24
                          203.106.128.0/18 maxlen: 24
                          203.106.192.0/18 maxlen: 24
                          203.106.192.0/19 maxlen: 24
                          210.186.0.0/16 maxlen: 24
                          210.186.16.0/24 maxlen: 24
                          210.186.17.0/24 maxlen: 24
                          210.186.18.0/24 maxlen: 24
                          210.186.20.0/24 maxlen: 24
                          210.186.21.0/24 maxlen: 24
                          210.186.27.0/24 maxlen: 24
                          210.186.30.0/24 maxlen: 24
                          210.186.33.0/24 maxlen: 24
                          210.186.100.0/22 maxlen: 24
                          210.186.104.0/22 maxlen: 24
                          210.186.108.0/22 maxlen: 24
                          210.186.112.0/22 maxlen: 24
                          210.186.116.0/22 maxlen: 24
                          210.186.120.0/22 maxlen: 24
                          210.186.124.0/22 maxlen: 24
                          210.186.192.0/21 maxlen: 24
                          210.186.200.0/21 maxlen: 24
                          210.186.208.0/21 maxlen: 24
                          210.186.216.0/22 maxlen: 24
                          210.186.220.0/22 maxlen: 24
                          210.186.224.0/21 maxlen: 24
                          210.186.232.0/21 maxlen: 24
                          210.186.240.0/21 maxlen: 24
                          210.186.248.0/22 maxlen: 24
                          210.187.0.0/16 maxlen: 24
                          210.187.42.0/24 maxlen: 24
                          210.187.54.0/24 maxlen: 24
                          210.187.64.0/18 maxlen: 24
                          210.187.208.0/21 maxlen: 21
                          210.187.216.0/21 maxlen: 21
                          210.187.224.0/21 maxlen: 21
                          210.187.232.0/21 maxlen: 21
                          210.187.240.0/21 maxlen: 21
                          210.187.248.0/21 maxlen: 21
                          210.195.0.0/16 maxlen: 21
                          218.111.0.0/16 maxlen: 18
                          218.208.0.0/16 maxlen: 24
                          219.92.0.0/16 maxlen: 24
                          219.93.0.0/16 maxlen: 24
                          219.94.0.0/17 maxlen: 18
                          219.94.0.0/18 maxlen: 24
                          219.95.0.0/16 maxlen: 21
                          2001:e68::/32 maxlen: 64
                          2001:e68::/35 maxlen: 35
                          2001:e68:2::/56 maxlen: 56
                          2001:e68:2000::/48 maxlen: 48
                          2001:e68:2001::/64 maxlen: 64
                          2001:e68:2001:1::/64 maxlen: 64
                          2001:e68:2001:2::/63 maxlen: 63
                          2001:e68:2001:4::/62 maxlen: 62
                          2001:e68:2001:8::/61 maxlen: 61
                          2001:e68:2001:10::/60 maxlen: 60
                          2001:e68:2001:20::/59 maxlen: 59
                          2001:e68:2001:40::/58 maxlen: 58
                          2001:e68:2001:80::/57 maxlen: 57
                          2001:e68:2001:100::/56 maxlen: 56
                          2001:e68:2001:200::/55 maxlen: 55
                          2001:e68:2001:400::/54 maxlen: 54
                          2001:e68:2001:800::/53 maxlen: 53
                          2001:e68:2001:1000::/52 maxlen: 52
                          2001:e68:2001:2000::/51 maxlen: 51
                          2001:e68:2001:4000::/50 maxlen: 50
                          2001:e68:2001:8000::/49 maxlen: 49
                          2001:e68:2002::/47 maxlen: 47
                          2001:e68:2004::/46 maxlen: 46
                          2001:e68:2008::/45 maxlen: 45
                          2001:e68:2010::/44 maxlen: 44
                          2001:e68:2020::/43 maxlen: 43
                          2001:e68:2040::/42 maxlen: 42
                          2001:e68:2080::/41 maxlen: 41
                          2001:e68:2100::/40 maxlen: 40
                          2001:e68:2200::/39 maxlen: 39
                          2001:e68:2400::/38 maxlen: 38
                          2001:e68:2800::/37 maxlen: 37
                          2001:e68:3000::/36 maxlen: 36
                          2001:e68:4000::/34 maxlen: 34
                          2001:e68:8000::/33 maxlen: 33
                          2001:4470::/32 maxlen: 32
                          2401:3c00:202::/47 maxlen: 47
                          2401:3c00:204::/47 maxlen: 47
                          2401:3c00:206::/47 maxlen: 47
                          2401:3c00:208::/47 maxlen: 47
                          2401:3c00:20a::/47 maxlen: 47
                          2401:3c00:20c::/47 maxlen: 47
                          2401:3c00:20e::/47 maxlen: 47
                          2401:3c00:210::/47 maxlen: 47
                          2401:3c00:212::/47 maxlen: 47
                          2401:3c00:214::/47 maxlen: 47
                          2401:3c00:216::/47 maxlen: 47
                          2401:3c00:218::/47 maxlen: 47

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2714 (0xa9a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A911CA78/serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6
        Validity
            Not Before: Oct  5 13:41:31 2023 GMT
            Not After : Mar  1 00:00:00 2024 GMT
        Subject: CN=651ebd0a-41ec
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:15:f7:ae:8e:2e:b4:22:8d:6a:6a:f7:79:c2:
                    06:77:92:54:bd:47:04:03:2b:f8:41:58:e4:3f:5c:
                    fb:e0:43:17:57:3a:87:f9:4d:35:d9:dd:41:e5:a8:
                    9f:26:b8:66:f3:cd:6e:e9:3f:e8:2b:a5:12:09:49:
                    7b:3d:00:a4:95:08:cc:d5:a2:c4:56:42:61:e1:38:
                    7d:4a:ff:3c:5a:ac:97:8b:1b:04:d2:1a:ee:cb:21:
                    a5:7b:f9:e2:2d:ea:38:95:b4:73:2c:77:47:5b:64:
                    fe:9a:3d:93:48:59:4a:12:ba:6f:55:8a:c1:17:5f:
                    6e:29:47:f6:dc:16:99:5d:7b:e3:d7:0b:3e:9c:e3:
                    2a:4b:ed:f8:dc:a2:b8:bf:52:12:16:e0:d1:80:e3:
                    dd:39:bd:84:fe:7b:22:6d:cb:39:ce:1c:6d:74:f9:
                    d5:3d:a5:91:b5:4b:a8:a4:48:50:81:a0:5f:e4:30:
                    fb:0e:4f:46:cc:ee:f5:b9:c5:2c:97:6c:01:63:41:
                    1f:30:67:69:72:76:62:ec:f8:06:ce:90:f3:da:72:
                    40:e3:55:15:65:12:b2:10:27:4d:5a:23:53:93:3d:
                    13:4a:d4:73:83:9d:ec:8f:e6:d0:13:d6:40:85:79:
                    0a:b1:38:7f:c3:84:3b:3f:8c:84:56:5d:eb:94:09:
                    06:b9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                65:2F:8E:5C:C7:7F:82:4C:42:96:67:1C:9F:91:1B:E6:7E:EB:5E:07
            X509v3 Authority Key Identifier:
                keyid:40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/4137A466099C11EEAD16CF0EC4F9AE02.roa
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  1.9.0.0/16
                  1.32.0.0/17
                  27.146.0.0/16
                  42.188.0.0/14
                  45.116.244.0/22
                  58.26.0.0-58.27.127.255
                  58.139.0.0/16
                  60.48.0.0-60.53.255.255
                  103.4.140.0/22
                  114.133.0.0/16
                  115.132.0.0-115.133.15.255
                  118.100.0.0/15
                  120.140.0.0/18
                  120.140.66.0/23
                  124.82.0.0/16
                  202.171.192.0/20
                  202.178.0.0-202.178.79.255
                  202.188.0.0/16
                  203.106.0.0/16
                  210.186.0.0/15
                  210.195.0.0/16
                  218.111.0.0/16
                  218.208.0.0/16
                  219.92.0.0-219.94.127.255
                  219.95.0.0/16
                IPv6:
                  2001:e68::/32
                  2001:4470::/32
                  2401:3c00:202::-2401:3c00:219:ffff:ffff:ffff:ffff:ffff

    Signature Algorithm: sha256WithRSAEncryption
         44:27:62:d9:04:ac:4c:26:20:4e:8a:ce:7e:25:bb:1a:af:cd:
         8b:26:2b:c4:fa:df:5f:8c:e4:cd:6e:5c:af:9a:ab:c8:67:f3:
         8d:87:ab:fb:1b:3e:c9:39:8b:df:e5:df:c9:93:8d:2a:92:c6:
         a6:3d:82:b3:6b:64:d0:7c:19:d3:94:71:7a:9f:e2:79:be:46:
         32:8f:33:08:d1:8e:e7:9d:dd:ce:cf:eb:59:6e:90:e4:19:4b:
         8f:81:3f:53:d3:f7:26:68:72:e8:08:91:67:94:82:52:6f:72:
         17:7b:34:9a:55:d6:8d:ed:c8:6a:2d:8b:5d:8f:d7:93:c6:c4:
         d5:29:b9:06:55:ef:32:75:01:c8:44:92:7e:c1:5e:b0:5b:01:
         3a:26:53:37:bb:9b:ce:9b:2d:81:16:b4:18:9e:c4:ef:22:2e:
         63:0b:ff:1d:15:59:d1:06:3f:d3:85:32:dc:c8:71:79:c6:e4:
         b0:26:a4:03:30:dd:f6:01:22:1b:7b:d2:4e:67:44:9f:12:16:
         32:dd:42:04:a1:7f:db:3b:4d:85:3e:cd:b1:11:43:f8:67:9d:
         2f:c8:e0:8e:6b:21:74:d3:b4:0d:b6:bf:6f:5d:26:bc:18:74:
         8d:48:8c:07:3f:90:3e:3a:33:7f:cf:eb:86:22:dc:7f:22:18:
         e4:49:6c:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:50:56 2024 by rpki-client on console-fra.rpki-client.org