Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913BEF9/4E02D68C99D811ECAB6C5C6FC4F9AE02/566E147EA38411ED84AB746EC4F9AE02.roa
File: 566E147EA38411ED84AB746EC4F9AE02.roa (raw, json)
Hash identifier: 7f/WkhGYHpaDF0aQ1oh1UTqYbw0udzhO+XUIi7V0T4k=
Subject key identifier: 99:BE:01:21:FB:0C:4E:1B:5F:86:9F:F8:4F:BD:7F:2E:CC:57:33:C0
Certificate issuer: /CN=A913BEF9/serialNumber=0555D04D6AA7CD08907385B9EFAF7FECE6C35E18
Certificate serial: 0223
Authority key identifier: 05:55:D0:4D:6A:A7:CD:08:90:73:85:B9:EF:AF:7F:EC:E6:C3:5E:18
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BVXQTWqnzQiQc4W5769_7ObDXhg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913BEF9/4E02D68C99D811ECAB6C5C6FC4F9AE02/566E147EA38411ED84AB746EC4F9AE02.roa
Signing time: Thu 11 May 2023 06:13:41 +0000
ROA not before: Thu 11 May 2023 06:13:41 +0000
ROA not after: Wed 29 May 2024 00:00:00 +0000
asID: 149629
IP address blocks: 103.182.246.0/23 maxlen: 23
103.182.246.0/24 maxlen: 24
103.182.247.0/24 maxlen: 24
2001:df0:8040::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 547 (0x223)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913BEF9/serialNumber=0555D04D6AA7CD08907385B9EFAF7FECE6C35E18
Validity
Not Before: May 11 06:13:41 2023 GMT
Not After : May 29 00:00:00 2024 GMT
Subject: CN=645c8794-1456
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c5:a1:0f:25:b7:26:bd:7d:4a:6d:b5:0c:b1:
0e:bc:51:fa:7e:fb:e9:fc:04:39:46:8f:e2:7b:fe:
f0:7f:b4:a7:a4:f6:2b:07:8c:78:9f:92:1c:82:32:
45:a2:ed:3d:b6:88:c3:f7:47:87:6a:c1:2c:8d:bd:
84:78:70:94:ee:35:d7:89:18:b5:87:e0:ef:36:5b:
85:5f:ed:d6:e0:fe:87:06:53:29:ec:93:20:4d:67:
0d:5b:e3:8d:b4:48:5d:f5:e0:92:19:45:39:f0:f9:
d3:e6:b1:1f:88:4c:fc:fd:26:2b:b6:6f:e4:c3:c9:
10:4c:54:78:b7:0e:c7:7e:94:9b:c7:07:bd:95:3c:
98:4c:cf:4d:eb:60:42:b8:0d:97:d1:90:59:da:2c:
51:bb:d1:5f:ed:fe:f4:d0:45:e3:a2:5d:67:3b:99:
d0:d9:70:fd:0f:1c:49:9d:30:7b:40:37:c3:f2:79:
2c:c6:81:6d:b9:6c:76:6b:c7:1b:ed:ad:7d:ad:e2:
c0:3f:53:1a:a8:6d:ad:3d:d7:a3:ef:22:78:49:b0:
56:84:62:8e:48:83:87:23:75:7d:8c:af:7b:86:c6:
4d:39:3c:64:b6:51:f9:64:7c:bf:f2:c7:3e:b4:70:
0c:c0:58:a1:cb:de:1a:52:61:54:d9:35:3f:31:b2:
b7:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:BE:01:21:FB:0C:4E:1B:5F:86:9F:F8:4F:BD:7F:2E:CC:57:33:C0
X509v3 Authority Key Identifier:
keyid:05:55:D0:4D:6A:A7:CD:08:90:73:85:B9:EF:AF:7F:EC:E6:C3:5E:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913BEF9/4E02D68C99D811ECAB6C5C6FC4F9AE02/BVXQTWqnzQiQc4W5769_7ObDXhg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BVXQTWqnzQiQc4W5769_7ObDXhg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913BEF9/4E02D68C99D811ECAB6C5C6FC4F9AE02/566E147EA38411ED84AB746EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.182.246.0/23
IPv6:
2001:df0:8040::/48
Signature Algorithm: sha256WithRSAEncryption
36:ac:e8:b2:53:e2:6d:77:ae:9f:54:b1:8c:ed:e8:06:a0:03:
d1:d2:53:f8:72:46:56:03:da:fa:a9:e2:0e:4f:fb:97:e9:cf:
74:49:ad:1f:dc:d0:94:68:df:34:25:af:f1:3e:e2:ed:2c:54:
3f:30:a0:e3:c2:a5:c3:23:6f:92:9a:00:24:a6:7b:df:df:38:
b0:ee:69:06:06:9d:fb:cb:f0:34:3f:f3:ae:d8:4d:92:82:4e:
a8:10:6b:e0:3e:28:3d:63:0f:6c:c1:0e:36:3f:02:20:89:1b:
57:d4:60:0c:d6:15:29:a3:ac:12:fe:72:a7:55:6b:04:d7:bd:
77:6d:a6:57:a4:4d:97:0d:e0:f7:8f:0b:5e:71:b5:2c:d7:07:
c9:fc:5c:cd:e1:31:00:b9:4e:34:f8:f5:02:0a:de:cd:91:72:
7b:8f:5d:dd:59:a8:7e:d6:f2:0b:a3:7c:51:72:77:69:8c:23:
9d:81:92:44:12:ff:4a:77:02:2d:8a:f4:1e:e4:22:99:79:57:
f1:62:63:8c:0c:93:ac:1e:ed:35:38:c2:78:7b:d7:63:3c:a5:
95:36:92:3e:32:21:a4:a0:2b:77:15:6f:8c:d1:6f:94:73:cc:
22:48:a2:6c:a7:20:ee:58:7d:92:77:d2:f2:98:20:0d:80:5a:
0c:77:27:2e
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgICAiMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
M0JFRjkxMTAvBgNVBAUTKDA1NTVEMDRENkFBN0NEMDg5MDczODVCOUVGQUY3RkVD
RTZDMzVFMTgwHhcNMjMwNTExMDYxMzQxWhcNMjQwNTI5MDAwMDAwWjAYMRYwFAYD
VQQDEw02NDVjODc5NC0xNDU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAs8WhDyW3Jr19Sm21DLEOvFH6fvvp/AQ5Ro/ie/7wf7SnpPYrB4x4n5IcgjJF
ou09tojD90eHasEsjb2EeHCU7jXXiRi1h+DvNluFX+3W4P6HBlMp7JMgTWcNW+ON
tEhd9eCSGUU58PnT5rEfiEz8/SYrtm/kw8kQTFR4tw7HfpSbxwe9lTyYTM9N62BC
uA2X0ZBZ2ixRu9Ff7f700EXjol1nO5nQ2XD9DxxJnTB7QDfD8nksxoFtuWx2a8cb
7a19reLAP1MaqG2tPdej7yJ4SbBWhGKOSIOHI3V9jK97hsZNOTxktlH5ZHy/8sc+
tHAMwFihy94aUmFU2TU/MbK3GwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJm+ASH7
DE4bX4af+E+9fy7MVzPAMB8GA1UdIwQYMBaAFAVV0E1qp80IkHOFue+vf+zmw14Y
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQkVGOS80RTAyRDY4Qzk5
RDgxMUVDQUI2QzVDNkZDNEY5QUUwMi9CVlhRVFdxbnpRaVFjNFc1NzY5XzdPYkRY
aGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0JWWFFUV3FuelFpUWM0VzU3NjlfN09iRFhoZy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
M0JFRjkvNEUwMkQ2OEM5OUQ4MTFFQ0FCNkM1QzZGQzRGOUFFMDIvNTY2RTE0N0VB
Mzg0MTFFRDg0QUI3NDZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E
ITAfMAwEAgABMAYDBAFntvYwDwQCAAIwCQMHACABDfCAQDANBgkqhkiG9w0BAQsF
AAOCAQEANqzoslPibXeun1SxjO3oBqAD0dJT+HJGVgPa+qniDk/7l+nPdEmtH9zQ
lGjfNCWv8T7i7SxUPzCg48KlwyNvkpoAJKZ73984sO5pBgad+8vwND/zrthNkoJO
qBBr4D4oPWMPbMEONj8CIIkbV9RgDNYVKaOsEv5yp1VrBNe9d22mV6RNlw3g948L
XnG1LNcHyfxczeExALlONPj1AgrezZFye49d3VmoftbyC6N8UXJ3aYwjnYGSRBL/
SncCLYr0HuQimXlX8WJjjAyTrB7tNTjCeHvXYzyllTaSPjIhpKArdxVvjNFvlHPM
IkiibKcg7lh9knfS8pggDYBaDHcnLg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:03 2024 by rpki-client on console-fra.rpki-client.org