Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/AF56D39CFA4A11EDA47C091DC4F9AE02.roa
File: AF56D39CFA4A11EDA47C091DC4F9AE02.roa (raw, json)
Hash identifier: Pt7aY/hRbI5aV0K2VDquEuvqFNqIh8e610Ub2e4g/rU=
Subject key identifier: 01:BA:60:FD:27:6D:B4:A9:85:BA:2B:D5:23:7C:36:FB:04:06:E8:68
Certificate issuer: /CN=A913D46F/serialNumber=3971F7E21D08C9243ABB403F803064BF78B2D880
Certificate serial: 0B21
Authority key identifier: 39:71:F7:E2:1D:08:C9:24:3A:BB:40:3F:80:30:64:BF:78:B2:D8:80
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OXH34h0IySQ6u0A_gDBkv3iy2IA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/AF56D39CFA4A11EDA47C091DC4F9AE02.roa
Signing time: Wed 24 May 2023 15:50:20 +0000
ROA not before: Wed 24 May 2023 15:50:20 +0000
ROA not after: Fri 01 Dec 2023 00:00:00 +0000
asID: 132735
IP address blocks: 103.73.226.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2849 (0xb21)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913D46F/serialNumber=3971F7E21D08C9243ABB403F803064BF78B2D880
Validity
Not Before: May 24 15:50:20 2023 GMT
Not After : Dec 1 00:00:00 2023 GMT
Subject: CN=646e323b-d667
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:4f:23:08:46:fa:85:e6:0e:ed:1f:b6:c6:a4:
6c:8b:6f:19:53:57:25:ba:06:25:4e:98:fa:b0:1c:
8c:a4:db:f8:8a:4f:ab:bf:bd:19:38:0d:2b:e6:8c:
5c:81:b2:3d:f3:fd:81:b0:7b:cd:ba:46:d9:3d:46:
33:f9:d3:ec:10:d1:65:0c:d2:75:53:21:e2:34:ac:
3a:3f:53:4c:e2:c5:6b:38:75:da:67:da:eb:f3:02:
5f:68:c5:17:6e:f8:17:37:e9:9c:aa:71:62:1e:4a:
96:44:69:e0:e5:e6:eb:1c:80:93:4f:7a:bd:9b:48:
a4:d7:35:6e:75:98:ff:b4:0a:61:65:ae:5c:03:2d:
78:88:27:82:57:5a:47:29:a0:36:87:51:ec:a0:2c:
f3:c2:71:97:3b:9c:9a:5e:10:42:fb:a6:5c:21:0a:
61:bc:44:6b:d3:11:fe:b8:c4:90:1f:c3:2d:53:3e:
cd:3d:c3:77:49:09:09:e9:72:a6:15:0f:36:b3:48:
2e:19:ee:5e:a6:7e:ad:15:db:a0:5c:2f:c2:ca:5a:
be:60:77:dc:e9:d1:71:f1:69:d2:ed:9f:1e:98:e4:
da:4d:ab:06:b8:d8:dd:f3:43:73:52:51:a4:58:f0:
41:c8:62:9f:fd:ad:86:0d:e0:ec:4e:7c:15:60:ae:
76:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:BA:60:FD:27:6D:B4:A9:85:BA:2B:D5:23:7C:36:FB:04:06:E8:68
X509v3 Authority Key Identifier:
keyid:39:71:F7:E2:1D:08:C9:24:3A:BB:40:3F:80:30:64:BF:78:B2:D8:80
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OXH34h0IySQ6u0A_gDBkv3iy2IA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/AF56D39CFA4A11EDA47C091DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.73.226.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:ef:0c:ba:24:fa:f4:0b:63:19:10:5b:44:bb:d8:92:1f:ed:
5d:7a:17:29:1d:f7:cb:65:6a:39:56:05:cf:42:f3:f1:bd:a6:
79:63:4b:d7:a5:a8:22:c9:52:e2:ab:e8:22:5d:f7:c2:09:fb:
29:70:a0:ff:53:b2:96:6d:4d:33:6b:9c:c9:89:4e:0f:9a:23:
03:94:d6:8d:63:1a:0f:59:1b:eb:88:f3:8c:8a:11:88:c9:a7:
69:6f:1c:31:f8:e1:e1:ca:c7:8a:50:2c:03:bf:80:85:43:ca:
9a:bb:6e:52:39:e4:eb:8f:dc:38:fe:56:57:f9:9a:db:9f:1c:
21:e1:4e:b7:96:ca:56:b4:cd:c2:b4:12:cb:23:ee:95:e6:7b:
3d:d1:cf:11:c1:24:e6:20:8d:24:f4:6e:7b:74:5d:b1:89:a0:
6b:67:34:9f:c4:a7:59:1c:3d:98:6f:cd:82:25:08:66:bc:10:
3a:5d:2c:c8:28:73:7c:a0:08:ea:47:af:74:24:0b:53:57:70:
4a:04:b8:e5:09:4c:ff:8d:a1:bb:3e:0d:88:ca:c4:1b:61:e3:
08:1c:83:da:7a:31:01:f8:d7:83:c2:8a:31:8b:cb:e1:13:ee:
6d:03:08:f2:b7:e1:69:02:c0:b2:75:1f:37:8b:28:0e:77:48:
40:69:d3:5f
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICCyEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
M0Q0NkYxMTAvBgNVBAUTKDM5NzFGN0UyMUQwOEM5MjQzQUJCNDAzRjgwMzA2NEJG
NzhCMkQ4ODAwHhcNMjMwNTI0MTU1MDIwWhcNMjMxMjAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NDZlMzIzYi1kNjY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA308jCEb6heYO7R+2xqRsi28ZU1clugYlTpj6sByMpNv4ik+rv70ZOA0r5oxc
gbI98/2BsHvNukbZPUYz+dPsENFlDNJ1UyHiNKw6P1NM4sVrOHXaZ9rr8wJfaMUX
bvgXN+mcqnFiHkqWRGng5ebrHICTT3q9m0ik1zVudZj/tAphZa5cAy14iCeCV1pH
KaA2h1HsoCzzwnGXO5yaXhBC+6ZcIQphvERr0xH+uMSQH8MtUz7NPcN3SQkJ6XKm
FQ82s0guGe5epn6tFdugXC/Cylq+YHfc6dFx8WnS7Z8emOTaTasGuNjd80NzUlGk
WPBByGKf/a2GDeDsTnwVYK52sQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAG6YP0n
bbSphbor1SN8NvsEBuhoMB8GA1UdIwQYMBaAFDlx9+IdCMkkOrtAP4AwZL94stiA
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDQ2Ri83REEyNEM3QTAw
NjkxMUVBOEZEQjI4NURDNEY5QUUwMi9PWEgzNGgwSXlTUTZ1MEFfZ0RCa3YzaXky
SUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL09YSDM0aDBJeVNRNnUwQV9nREJrdjNpeTJJQS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
M0Q0NkYvN0RBMjRDN0EwMDY5MTFFQThGREIyODVEQzRGOUFFMDIvQUY1NkQzOUNG
QTRBMTFFREE0N0MwOTFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBABnSeIwDQYJKoZIhvcNAQELBQADggEBAAvvDLok+vQLYxkQ
W0S72JIf7V16Fykd98tlajlWBc9C8/G9pnljS9elqCLJUuKr6CJd98IJ+ylwoP9T
spZtTTNrnMmJTg+aIwOU1o1jGg9ZG+uI84yKEYjJp2lvHDH44eHKx4pQLAO/gIVD
ypq7blI55OuP3Dj+Vlf5mtufHCHhTreWyla0zcK0Essj7pXmez3RzxHBJOYgjST0
bnt0XbGJoGtnNJ/Ep1kcPZhvzYIlCGa8EDpdLMgoc3ygCOpHr3QkC1NXcEoEuOUJ
TP+Nobs+DYjKxBth4wgcg9p6MQH414PCijGLy+ET7m0DCPK34WkCwLJ1HzeLKA53
SEBp018=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:55 2024 by rpki-client on console-ams.rpki-client.org