Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/0E269E2A178611EB8B773866C4F9AE02.roa
File: 0E269E2A178611EB8B773866C4F9AE02.roa (raw, json)
Hash identifier: tBcBahza0xNpG8ctBaSRtrnbA7voQN7xJpb55zDI6qk=
Subject key identifier: 34:09:E6:6B:82:11:FD:F5:50:62:9B:6D:F9:9B:B6:08:17:FF:50:B1
Certificate issuer: /CN=A913D46F/serialNumber=3971F7E21D08C9243ABB403F803064BF78B2D880
Certificate serial: 0AA2
Authority key identifier: 39:71:F7:E2:1D:08:C9:24:3A:BB:40:3F:80:30:64:BF:78:B2:D8:80
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OXH34h0IySQ6u0A_gDBkv3iy2IA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/0E269E2A178611EB8B773866C4F9AE02.roa
Signing time: Sun 02 Oct 2022 19:56:29 +0000
ROA not before: Sun 02 Oct 2022 19:56:29 +0000
ROA not after: Fri 01 Dec 2023 00:00:00 +0000
asID: 134146
IP address blocks: 103.73.224.0/22 maxlen: 22
103.73.224.0/23 maxlen: 23
103.73.224.0/24 maxlen: 24
103.73.225.0/24 maxlen: 24
103.73.226.0/23 maxlen: 23
103.73.226.0/24 maxlen: 24
103.73.227.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2722 (0xaa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913D46F/serialNumber=3971F7E21D08C9243ABB403F803064BF78B2D880
Validity
Not Before: Oct 2 19:56:29 2022 GMT
Not After : Dec 1 00:00:00 2023 GMT
Subject: CN=6339eced-7210
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:a7:d7:b2:02:82:08:5e:54:d3:40:a2:d9:d0:
fb:c0:41:83:9c:8e:15:59:86:53:88:17:08:2b:36:
35:3c:9a:5f:f8:7b:5a:27:d0:0e:28:21:1a:c4:b2:
12:b4:1c:a6:25:34:51:91:20:93:ee:76:68:fb:ec:
c2:59:aa:e7:90:a9:6c:74:5c:82:83:99:52:9d:81:
1a:b0:55:ef:1d:46:fb:b8:6b:54:dc:a0:db:b4:2d:
a2:62:b9:dd:8a:0a:16:2a:b7:f8:d6:a6:8e:4d:20:
07:e3:cc:cb:73:f2:2f:99:62:f4:fe:53:40:6f:c1:
a2:83:0c:19:08:99:e8:9d:79:bd:fa:52:7c:08:95:
42:9a:93:61:7a:07:35:23:0f:6c:0c:47:78:1b:17:
35:d8:6d:5d:51:08:5b:53:43:87:43:f1:72:2d:34:
33:34:33:21:0b:77:5d:45:13:d5:89:fb:15:6f:fc:
8f:dc:a5:16:fd:56:69:fd:d6:04:e6:15:0a:3f:5b:
c5:9b:dc:e5:61:0d:a5:be:e9:75:2e:73:a7:8e:79:
a3:5b:75:e6:af:b7:9c:12:8b:7c:59:cd:d1:54:ea:
49:f1:ef:0b:a0:e0:cc:a4:44:e5:9c:a5:f0:92:85:
9e:98:a0:7f:f6:33:82:c3:44:68:0a:44:c6:b8:39:
f3:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:09:E6:6B:82:11:FD:F5:50:62:9B:6D:F9:9B:B6:08:17:FF:50:B1
X509v3 Authority Key Identifier:
keyid:39:71:F7:E2:1D:08:C9:24:3A:BB:40:3F:80:30:64:BF:78:B2:D8:80
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OXH34h0IySQ6u0A_gDBkv3iy2IA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/0E269E2A178611EB8B773866C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.73.224.0/22
Signature Algorithm: sha256WithRSAEncryption
56:fe:ba:86:8e:68:1f:be:86:53:35:9f:48:d0:aa:ce:4b:6e:
67:e7:ad:24:38:de:98:c0:61:33:44:a6:37:3a:89:96:ac:c4:
28:c8:cb:28:e8:26:75:34:e0:26:8e:56:62:a3:2b:21:f9:6b:
0a:13:d4:79:5a:aa:10:72:cb:bc:7c:a0:d4:53:84:6e:6c:c1:
72:8e:60:74:33:d3:44:0e:56:51:c8:97:77:29:10:fd:d2:03:
c2:6e:c0:ca:d7:0f:e8:26:86:d4:9f:22:06:89:56:1b:43:04:
31:8c:74:59:ea:49:d6:79:b2:97:17:de:8a:79:8a:2d:33:15:
c0:aa:50:12:5c:f5:a3:0b:6d:cf:aa:a1:b0:84:e5:9a:e8:42:
d3:f0:0d:02:d5:3a:5e:ab:10:8d:2c:fd:8a:12:1e:db:9c:ae:
92:b4:1c:24:d1:d2:63:48:b4:4b:40:d4:d0:8f:d6:49:fd:fb:
81:4d:54:07:0d:39:1c:5c:6d:15:48:93:d5:d3:83:1b:6a:fc:
21:e1:d3:a4:92:f2:c6:53:c6:8c:40:96:e6:4d:cc:a6:d4:06:
11:69:bf:8a:36:9c:d5:19:8d:eb:c6:b2:81:14:38:42:4c:8c:
b0:a6:e4:f4:25:4e:5c:a9:c5:de:da:62:9f:01:48:44:37:92:
86:cb:ff:7e
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICCqIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
M0Q0NkYxMTAvBgNVBAUTKDM5NzFGN0UyMUQwOEM5MjQzQUJCNDAzRjgwMzA2NEJG
NzhCMkQ4ODAwHhcNMjIxMDAyMTk1NjI5WhcNMjMxMjAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02MzM5ZWNlZC03MjEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAqqfXsgKCCF5U00Ci2dD7wEGDnI4VWYZTiBcIKzY1PJpf+HtaJ9AOKCEaxLIS
tBymJTRRkSCT7nZo++zCWarnkKlsdFyCg5lSnYEasFXvHUb7uGtU3KDbtC2iYrnd
igoWKrf41qaOTSAH48zLc/IvmWL0/lNAb8GigwwZCJnonXm9+lJ8CJVCmpNhegc1
Iw9sDEd4Gxc12G1dUQhbU0OHQ/FyLTQzNDMhC3ddRRPVifsVb/yP3KUW/VZp/dYE
5hUKP1vFm9zlYQ2lvul1LnOnjnmjW3Xmr7ecEot8Wc3RVOpJ8e8LoODMpETlnKXw
koWemKB/9jOCw0RoCkTGuDnzQQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDQJ5muC
Ef31UGKbbfmbtggX/1CxMB8GA1UdIwQYMBaAFDlx9+IdCMkkOrtAP4AwZL94stiA
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDQ2Ri83REEyNEM3QTAw
NjkxMUVBOEZEQjI4NURDNEY5QUUwMi9PWEgzNGgwSXlTUTZ1MEFfZ0RCa3YzaXky
SUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL09YSDM0aDBJeVNRNnUwQV9nREJrdjNpeTJJQS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
M0Q0NkYvN0RBMjRDN0EwMDY5MTFFQThGREIyODVEQzRGOUFFMDIvMEUyNjlFMkEx
Nzg2MTFFQjhCNzczODY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBAJnSeAwDQYJKoZIhvcNAQELBQADggEBAFb+uoaOaB++hlM1
n0jQqs5LbmfnrSQ43pjAYTNEpjc6iZasxCjIyyjoJnU04CaOVmKjKyH5awoT1Hla
qhByy7x8oNRThG5swXKOYHQz00QOVlHIl3cpEP3SA8JuwMrXD+gmhtSfIgaJVhtD
BDGMdFnqSdZ5spcX3op5ii0zFcCqUBJc9aMLbc+qobCE5ZroQtPwDQLVOl6rEI0s
/YoSHtucrpK0HCTR0mNItEtA1NCP1kn9+4FNVAcNORxcbRVIk9XTgxtq/CHh06SS
8sZTxoxAluZNzKbUBhFpv4o2nNUZjevGsoEUOEJMjLCm5PQlTlypxd7aYp8BSEQ3
kobL/34=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:55 2024 by rpki-client on console-ams.rpki-client.org