Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91354AE/6C9F2DFAA50111EC89642757C4F9AE02/A74B58D0A8C511EC8F560C42C4F9AE02.roa
File: A74B58D0A8C511EC8F560C42C4F9AE02.roa (raw, json)
Hash identifier: 5nFUmwnwb6khXVmrvK/20Wt90uK4Ty6vDk9o5XR1M4U=
Subject key identifier: 13:8A:A2:95:75:B2:E9:50:00:49:A7:1B:E2:64:58:AE:D7:8A:28:B7
Certificate issuer: /CN=A91354AE/serialNumber=87F958DAF498659A9EEE0FF144226B1710489DE0
Certificate serial: 0D
Authority key identifier: 87:F9:58:DA:F4:98:65:9A:9E:EE:0F:F1:44:22:6B:17:10:48:9D:E0
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_lY2vSYZZqe7g_xRCJrFxBIneA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91354AE/6C9F2DFAA50111EC89642757C4F9AE02/A74B58D0A8C511EC8F560C42C4F9AE02.roa
Signing time: Mon 21 Mar 2022 03:19:01 +0000
ROA not before: Mon 21 Mar 2022 03:19:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 134428
IP address blocks: 103.183.246.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13 (0xd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91354AE
Validity
Not Before: Mar 21 03:19:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6237eea5-6501
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:27:d3:75:96:e2:58:09:d5:c8:13:49:e8:83:
24:a6:9b:d8:17:da:e2:37:cb:09:a3:ea:20:aa:2f:
8b:49:7f:cc:94:a6:c0:2c:e6:e5:bf:20:cf:74:ff:
93:43:df:df:39:5f:44:92:3e:1f:c1:fe:da:ad:b6:
2b:7f:d1:86:29:2a:2e:28:b3:33:74:e0:f8:33:76:
2c:64:f2:e8:17:85:35:cf:df:f7:0f:f9:3c:20:e2:
d9:58:89:e6:7c:0d:69:1f:bc:91:35:dd:ab:79:a1:
e0:55:af:19:12:3b:8b:29:57:b9:6d:1b:10:b0:05:
76:a1:ed:1c:82:23:72:6e:0a:9a:eb:b4:5c:e1:0e:
5f:98:3e:f9:56:52:78:6f:d8:5e:7b:fa:8b:0e:13:
8c:f6:4d:d5:74:79:9c:8f:2a:95:f2:d9:81:96:44:
53:b1:3e:62:5d:37:00:40:71:55:fb:28:4d:84:56:
97:f7:52:b7:e2:6c:c6:b6:ab:10:1f:0d:17:02:c2:
5e:42:92:ef:61:96:0e:52:8f:8c:dc:5a:0d:dd:09:
cf:71:42:9c:37:65:c8:4f:13:8e:c1:3a:1f:4d:c3:
10:b5:f9:7c:67:be:41:bf:d5:79:90:10:f6:28:97:
e6:7b:0e:dc:d0:06:e0:77:41:a4:0f:e8:59:e1:9f:
f2:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:8A:A2:95:75:B2:E9:50:00:49:A7:1B:E2:64:58:AE:D7:8A:28:B7
X509v3 Authority Key Identifier:
keyid:87:F9:58:DA:F4:98:65:9A:9E:EE:0F:F1:44:22:6B:17:10:48:9D:E0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91354AE/6C9F2DFAA50111EC89642757C4F9AE02/h_lY2vSYZZqe7g_xRCJrFxBIneA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_lY2vSYZZqe7g_xRCJrFxBIneA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91354AE/6C9F2DFAA50111EC89642757C4F9AE02/A74B58D0A8C511EC8F560C42C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.183.246.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:ad:be:8a:6d:04:ea:b2:cc:fa:7d:5a:b0:3a:5c:26:42:10:
84:72:02:c8:33:5b:60:de:b3:5d:be:ba:b0:43:c6:62:ed:a8:
f7:85:4b:77:7f:27:41:ec:64:cf:36:a4:c7:04:e9:74:42:91:
c7:15:3c:10:41:4c:1c:b1:91:86:f3:82:c5:54:95:bd:95:e4:
98:57:12:b7:09:e0:3b:57:17:32:81:cc:f7:99:08:81:9c:0f:
0e:67:84:ce:3a:db:6e:99:5d:31:33:78:81:12:5a:13:23:2c:
e1:57:d5:7e:7c:a0:9a:17:cf:d3:e7:8a:a4:86:cb:c2:64:8f:
5b:47:34:45:74:6d:1b:39:5e:41:99:2f:3f:e6:7f:ae:a8:77:
51:67:fb:14:0c:99:04:eb:4a:72:f6:a4:2f:fb:17:7b:3b:1d:
ff:d1:00:5b:0e:6f:50:a1:42:ad:53:fa:74:35:97:fe:90:51:
61:5e:c0:3a:7e:1b:91:5c:5d:a9:ee:cd:1a:d0:49:75:6d:17:
8f:78:43:ca:fc:83:d0:31:53:9c:06:39:7a:59:4e:00:26:ca:
9c:0c:56:e1:9b:75:a8:d4:fd:46:3e:4e:70:93:9f:fb:5e:b6:
73:eb:4c:65:cc:7c:13:f4:c1:25:cc:b4:ea:4b:fb:39:f0:6a:
af:87:3a:72
-----BEGIN CERTIFICATE-----
MIIFcDCCBFigAwIBAgIBDTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz
NTRBRTExMC8GA1UEBRMoODdGOTU4REFGNDk4NjU5QTlFRUUwRkYxNDQyMjZCMTcx
MDQ4OURFMDAeFw0yMjAzMjEwMzE5MDFaFw0yMzA3MDEwMDAwMDBaMBgxFjAUBgNV
BAMTDTYyMzdlZWE1LTY1MDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDFJ9N1luJYCdXIE0nogySmm9gX2uI3ywmj6iCqL4tJf8yUpsAs5uW/IM90/5ND
3985X0SSPh/B/tqttit/0YYpKi4oszN04Pgzdixk8ugXhTXP3/cP+Twg4tlYieZ8
DWkfvJE13at5oeBVrxkSO4spV7ltGxCwBXah7RyCI3JuCprrtFzhDl+YPvlWUnhv
2F57+osOE4z2TdV0eZyPKpXy2YGWRFOxPmJdNwBAcVX7KE2EVpf3UrfibMa2qxAf
DRcCwl5Cku9hlg5Sj4zcWg3dCc9xQpw3ZchPE47BOh9NwxC1+XxnvkG/1XmQEPYo
l+Z7DtzQBuB3QaQP6Fnhn/LhAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUE4qilXWy
6VAASacb4mRYrteKKLcwHwYDVR0jBBgwFoAUh/lY2vSYZZqe7g/xRCJrFxBIneAw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM1NEFFLzZDOUYyREZBQTUw
MTExRUM4OTY0Mjc1N0M0RjlBRTAyL2hfbFkydlNZWlpxZTdnX3hSQ0pyRnhCSW5l
QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvaF9sWTJ2U1laWnFlN2dfeFJDSnJGeEJJbmVBLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw
C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz
NTRBRS82QzlGMkRGQUE1MDExMUVDODk2NDI3NTdDNEY5QUUwMi9BNzRCNThEMEE4
QzUxMUVDOEY1NjBDNDJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v
cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEAGe39jANBgkqhkiG9w0BAQsFAAOCAQEAoq2+im0E6rLM+n1a
sDpcJkIQhHICyDNbYN6zXb66sEPGYu2o94VLd38nQexkzzakxwTpdEKRxxU8EEFM
HLGRhvOCxVSVvZXkmFcStwngO1cXMoHM95kIgZwPDmeEzjrbbpldMTN4gRJaEyMs
4VfVfnygmhfP0+eKpIbLwmSPW0c0RXRtGzleQZkvP+Z/rqh3UWf7FAyZBOtKcvak
L/sXezsd/9EAWw5vUKFCrVP6dDWX/pBRYV7AOn4bkVxdqe7NGtBJdW0Xj3hDyvyD
0DFTnAY5ellOACbKnAxW4Zt1qNT9Rj5OcJOf+162c+tMZcx8E/TBJcy06kv7OfBq
r4c6cg==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:29:47 2025 by rpki-client