Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913D680/8E286682553C11EB8C630F72C4F9AE02/537084E2554C11EB87AB9070C4F9AE02.roa
File: 537084E2554C11EB87AB9070C4F9AE02.roa (raw, json)
Hash identifier: EG2aJcExm+ZB0CxLheLCiwprsBnopeGKrWHlnE/qWrk=
Subject key identifier: DB:EC:7A:6F:51:12:74:02:6B:13:46:48:50:F5:25:DB:D8:E7:A9:A9
Certificate issuer: /CN=A913D680/serialNumber=914936530B0FF87E540D846C9020FB84D3B5F583
Certificate serial: 031F
Authority key identifier: 91:49:36:53:0B:0F:F8:7E:54:0D:84:6C:90:20:FB:84:D3:B5:F5:83
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kUk2UwsP-H5UDYRskCD7hNO19YM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913D680/8E286682553C11EB8C630F72C4F9AE02/537084E2554C11EB87AB9070C4F9AE02.roa
Signing time: Thu 17 Feb 2022 01:10:58 +0000
ROA not before: Thu 17 Feb 2022 01:10:58 +0000
ROA not after: Mon 01 May 2023 00:00:00 +0000
asID: 9381
IP address blocks: 43.248.164.0/22 maxlen: 24
103.25.72.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 799 (0x31f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913D680/serialNumber=914936530B0FF87E540D846C9020FB84D3B5F583
Validity
Not Before: Feb 17 01:10:58 2022 GMT
Not After : May 1 00:00:00 2023 GMT
Subject: CN=620da0a2-f6d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:72:8e:9c:dd:06:6a:0a:f8:ca:c2:a2:20:c6:
9b:5a:d0:29:81:b1:0e:44:e5:cc:78:75:e5:37:ef:
ba:d2:ed:6c:89:98:1e:3a:58:bf:6b:db:7e:90:6e:
d4:ba:84:9d:fa:4b:3d:32:8a:24:58:b4:80:02:c6:
60:d1:62:31:f2:87:d6:36:2a:3b:ca:b8:47:b3:0c:
f1:7b:ea:22:03:52:50:bf:52:d1:27:21:a3:f8:42:
f5:07:8a:e0:a7:76:69:8c:69:77:6e:b6:bc:54:6a:
d3:6a:b1:ba:2b:12:11:ea:ff:42:e7:5e:14:84:36:
41:71:5b:e3:89:c4:c1:6e:5c:ce:6a:c1:01:c1:77:
87:4b:b6:e4:cc:03:ed:bc:95:40:17:ca:68:53:9a:
22:ea:8c:99:e3:72:ab:fc:0c:41:0c:fb:1b:30:5d:
1b:c1:e1:8a:be:cc:55:58:04:4a:75:c5:48:6f:57:
17:74:45:24:96:23:82:49:e0:a0:6a:e1:75:2a:56:
9c:c4:ab:7c:62:05:ff:10:94:88:95:de:62:d9:8c:
27:70:1a:32:43:89:b8:e0:67:19:2a:dc:80:87:68:
74:af:43:57:5f:1b:41:bc:ba:a2:be:75:2d:ad:ac:
ea:38:a8:be:8c:09:f0:50:7d:46:f4:07:8e:d3:4c:
46:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:EC:7A:6F:51:12:74:02:6B:13:46:48:50:F5:25:DB:D8:E7:A9:A9
X509v3 Authority Key Identifier:
keyid:91:49:36:53:0B:0F:F8:7E:54:0D:84:6C:90:20:FB:84:D3:B5:F5:83
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913D680/8E286682553C11EB8C630F72C4F9AE02/kUk2UwsP-H5UDYRskCD7hNO19YM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kUk2UwsP-H5UDYRskCD7hNO19YM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D680/8E286682553C11EB8C630F72C4F9AE02/537084E2554C11EB87AB9070C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.248.164.0/22
103.25.72.0/22
Signature Algorithm: sha256WithRSAEncryption
3c:f3:a5:25:e3:31:38:af:b2:01:d5:fb:c3:73:45:8e:c5:66:
20:26:4b:20:ff:66:0d:24:53:18:52:0e:29:d2:d0:7b:34:3e:
dd:4f:e4:1a:96:3d:b7:4d:3b:c5:5e:d4:80:49:3f:cb:d3:e9:
fe:3c:f0:08:22:a5:44:07:bc:ec:f4:39:e8:79:1c:7c:58:c5:
a7:07:89:85:46:ff:1e:82:c0:3b:4b:65:bf:a0:c0:f4:e9:0a:
b0:43:39:58:8c:dc:59:99:61:55:cd:a4:3f:df:9b:87:3d:f7:
69:b9:89:e0:e5:9a:fb:ab:ea:ee:f5:aa:4a:53:04:a8:1e:d8:
c6:3c:f0:39:1e:50:ec:d4:45:36:02:81:95:1c:d1:e3:4b:e5:
82:9c:3a:e4:f4:14:c1:db:7e:0a:15:28:6e:4b:a2:5c:0f:e9:
8d:b9:dc:2b:ed:5c:7d:2c:0e:b3:e9:c0:39:22:ec:7e:11:29:
f6:ac:d4:03:12:e1:c8:b0:25:e1:d1:e7:1f:e9:8c:86:cd:0d:
7a:ff:87:a9:cb:4e:51:28:30:d8:9d:fa:9d:63:71:8f:25:a8:
f5:f7:ce:ee:4c:9b:10:e6:ab:44:d2:e5:f6:0e:36:fb:97:24:
2c:77:68:ee:cc:70:1e:95:71:ba:ae:ff:99:33:d6:89:ab:56:
d4:3d:a5:35
-----BEGIN CERTIFICATE-----
MIIFdzCCBF+gAwIBAgICAx8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
M0Q2ODAxMTAvBgNVBAUTKDkxNDkzNjUzMEIwRkY4N0U1NDBEODQ2QzkwMjBGQjg0
RDNCNUY1ODMwHhcNMjIwMjE3MDExMDU4WhcNMjMwNTAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02MjBkYTBhMi1mNmQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAuXKOnN0Gagr4ysKiIMabWtApgbEOROXMeHXlN++60u1siZgeOli/a9t+kG7U
uoSd+ks9MookWLSAAsZg0WIx8ofWNio7yrhHswzxe+oiA1JQv1LRJyGj+EL1B4rg
p3ZpjGl3bra8VGrTarG6KxIR6v9C514UhDZBcVvjicTBblzOasEBwXeHS7bkzAPt
vJVAF8poU5oi6oyZ43Kr/AxBDPsbMF0bweGKvsxVWARKdcVIb1cXdEUkliOCSeCg
auF1KlacxKt8YgX/EJSIld5i2YwncBoyQ4m44GcZKtyAh2h0r0NXXxtBvLqivnUt
razqOKi+jAnwUH1G9AeO00xGHQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNvsem9R
EnQCaxNGSFD1JdvY56mpMB8GA1UdIwQYMBaAFJFJNlMLD/h+VA2EbJAg+4TTtfWD
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDY4MC84RTI4NjY4MjU1
M0MxMUVCOEM2MzBGNzJDNEY5QUUwMi9rVWsyVXdzUC1INVVEWVJza0NEN2hOTzE5
WU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2tVazJVd3NQLUg1VURZUnNrQ0Q3aE5PMTlZTS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
M0Q2ODAvOEUyODY2ODI1NTNDMTFFQjhDNjMwRjcyQzRGOUFFMDIvNTM3MDg0RTI1
NTRDMTFFQjg3QUI5MDcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E
FjAUMBIEAgABMAwDBAIr+KQDBAJnGUgwDQYJKoZIhvcNAQELBQADggEBADzzpSXj
MTivsgHV+8NzRY7FZiAmSyD/Zg0kUxhSDinS0Hs0Pt1P5BqWPbdNO8Ve1IBJP8vT
6f488AgipUQHvOz0Oeh5HHxYxacHiYVG/x6CwDtLZb+gwPTpCrBDOViM3FmZYVXN
pD/fm4c992m5ieDlmvur6u71qkpTBKge2MY88DkeUOzURTYCgZUc0eNL5YKcOuT0
FMHbfgoVKG5LolwP6Y253CvtXH0sDrPpwDki7H4RKfas1AMS4ciwJeHR5x/pjIbN
DXr/h6nLTlEoMNid+p1jcY8lqPX3zu5MmxDmq0TS5fYONvuXJCx3aO7McB6Vcbqu
/5kz1omrVtQ9pTU=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:39 2023 by rpki-client on console-fra.rpki-client.org