Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9145456/7719C710306611EB85251355C4F9AE02/A07B0A149A9C11EC97EBB620C4F9AE02.roa
File: A07B0A149A9C11EC97EBB620C4F9AE02.roa (raw, json)
Hash identifier: zUGx2PTjTlvYg4LVlDPWCGrRElj3M3pMqmcWh11tTzY=
Subject key identifier: 10:04:4B:60:9C:0E:36:F1:CE:D7:6E:33:89:B1:81:EC:CC:93:A8:A4
Certificate issuer: /CN=A9145456/serialNumber=3FB0A56E20F194C7749879D4D225B3F97E9EBECF
Certificate serial: 0621
Authority key identifier: 3F:B0:A5:6E:20:F1:94:C7:74:98:79:D4:D2:25:B3:F9:7E:9E:BE:CF
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7ClbiDxlMd0mHnU0iWz-X6evs8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9145456/7719C710306611EB85251355C4F9AE02/A07B0A149A9C11EC97EBB620C4F9AE02.roa
Signing time: Mon 04 Sep 2023 02:05:14 +0000
ROA not before: Mon 04 Sep 2023 02:05:14 +0000
ROA not after: Fri 01 Mar 2024 00:00:00 +0000
asID: 139831
IP address blocks: 131.226.64.0/18 maxlen: 18
131.226.64.0/22 maxlen: 24
131.226.68.0/22 maxlen: 24
131.226.74.0/23 maxlen: 24
131.226.76.0/23 maxlen: 24
131.226.80.0/22 maxlen: 24
131.226.84.0/22 maxlen: 24
131.226.88.0/22 maxlen: 24
131.226.92.0/22 maxlen: 24
131.226.96.0/22 maxlen: 23
131.226.100.0/22 maxlen: 23
131.226.104.0/22 maxlen: 23
131.226.108.0/22 maxlen: 23
131.226.112.0/22 maxlen: 23
131.226.116.0/23 maxlen: 23
131.226.118.0/23 maxlen: 23
131.226.120.0/23 maxlen: 23
131.226.122.0/23 maxlen: 23
131.226.124.0/23 maxlen: 23
139.135.64.0/22 maxlen: 22
139.135.68.0/22 maxlen: 22
139.135.72.0/22 maxlen: 22
139.135.76.0/22 maxlen: 22
139.135.80.0/22 maxlen: 22
139.135.127.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1569 (0x621)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9145456/serialNumber=3FB0A56E20F194C7749879D4D225B3F97E9EBECF
Validity
Not Before: Sep 4 02:05:14 2023 GMT
Not After : Mar 1 00:00:00 2024 GMT
Subject: CN=64f53b5a-c429
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:54:4d:6a:77:a3:90:52:d3:51:18:5c:15:10:
8b:ec:86:5e:50:2b:ed:a2:91:36:03:56:3f:48:ff:
41:eb:db:3d:be:85:86:30:7a:b1:07:6f:dc:c3:f9:
fa:73:7c:bb:bf:3c:62:ae:66:3f:5e:12:33:9f:11:
74:bd:30:0b:75:69:b9:99:c4:69:1f:54:e5:0b:b1:
52:cc:a5:3b:08:d2:12:65:5d:96:37:3c:3e:aa:55:
84:a4:d2:27:36:bb:bb:60:be:87:ff:70:d7:91:fc:
a1:da:af:bf:8b:b6:79:e9:7b:95:9d:f4:d8:34:04:
b7:d7:d9:27:48:b3:96:ce:53:e6:59:c3:62:25:f5:
e8:e2:85:7f:36:3d:cc:33:56:b1:88:73:df:9b:86:
f3:5e:50:9f:5f:09:06:11:70:da:b0:e5:b7:0b:2e:
a7:6a:a2:6d:98:c8:20:20:1c:9e:fc:58:53:41:14:
61:7f:f4:de:7c:ef:76:27:cb:bf:f6:f5:b4:3e:1c:
6d:3a:2e:b8:86:e7:5d:ac:e1:76:73:51:96:59:aa:
0e:f5:dc:ba:6c:05:54:2a:35:cb:8d:0a:6b:19:65:
ff:12:62:02:79:a6:f8:7b:1c:37:cc:f5:4e:de:8d:
83:13:0e:ed:54:6b:bc:c7:57:12:28:b4:99:de:ea:
a1:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:04:4B:60:9C:0E:36:F1:CE:D7:6E:33:89:B1:81:EC:CC:93:A8:A4
X509v3 Authority Key Identifier:
keyid:3F:B0:A5:6E:20:F1:94:C7:74:98:79:D4:D2:25:B3:F9:7E:9E:BE:CF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9145456/7719C710306611EB85251355C4F9AE02/P7ClbiDxlMd0mHnU0iWz-X6evs8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7ClbiDxlMd0mHnU0iWz-X6evs8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145456/7719C710306611EB85251355C4F9AE02/A07B0A149A9C11EC97EBB620C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
131.226.64.0/18
139.135.64.0-139.135.83.255
139.135.127.0/24
Signature Algorithm: sha256WithRSAEncryption
90:62:30:48:34:d8:e3:4c:52:99:20:0a:63:6a:37:38:e1:56:
94:b8:bd:4f:53:26:73:dc:e4:48:85:c9:29:1d:6c:af:14:ea:
f8:46:87:40:50:87:c4:76:ef:2d:f0:5e:84:79:a6:ad:66:cb:
2d:ad:3a:0b:ea:d6:77:ee:53:8f:4e:87:d9:a5:d2:a0:54:a1:
d6:9f:5c:bd:00:f2:bf:fd:ea:98:b9:f8:e7:e1:de:64:7f:28:
11:13:6a:fe:48:19:6d:98:b4:92:a7:9a:21:d9:20:b8:b0:ec:
a9:7e:7e:c9:e3:a2:e9:41:b3:c9:2b:f3:db:f9:9a:d0:c7:c5:
95:3e:03:23:eb:85:c8:d1:a1:6b:f9:45:83:68:35:84:07:43:
ea:8e:f0:96:64:1e:44:ae:b4:1c:e2:06:14:49:6a:b2:85:58:
9c:8a:65:20:a3:4f:cd:1c:33:bb:3d:be:bb:40:c8:e9:d7:e5:
3e:05:93:bd:6b:47:d8:d2:ea:be:e3:ee:a3:5e:7b:6f:d9:40:
64:2e:f4:8f:2f:65:2a:b3:e4:c7:15:a2:dc:93:d0:b8:f2:e2:
0e:2e:c5:27:c3:0f:9d:f0:f3:f8:9f:c4:9e:87:fa:15:06:f7:
fd:01:12:ea:8c:66:42:4e:6f:7c:cf:d0:8f:56:1f:55:ba:78:
93:b6:b6:eb
-----BEGIN CERTIFICATE-----
MIIFhTCCBG2gAwIBAgICBiEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NDU0NTYxMTAvBgNVBAUTKDNGQjBBNTZFMjBGMTk0Qzc3NDk4NzlENEQyMjVCM0Y5
N0U5RUJFQ0YwHhcNMjMwOTA0MDIwNTE0WhcNMjQwMzAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NGY1M2I1YS1jNDI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAzlRNanejkFLTURhcFRCL7IZeUCvtopE2A1Y/SP9B69s9voWGMHqxB2/cw/n6
c3y7vzxirmY/XhIznxF0vTALdWm5mcRpH1TlC7FSzKU7CNISZV2WNzw+qlWEpNIn
Nru7YL6H/3DXkfyh2q+/i7Z56XuVnfTYNAS319knSLOWzlPmWcNiJfXo4oV/Nj3M
M1axiHPfm4bzXlCfXwkGEXDasOW3Cy6naqJtmMggIBye/FhTQRRhf/TefO92J8u/
9vW0PhxtOi64huddrOF2c1GWWaoO9dy6bAVUKjXLjQprGWX/EmICeab4exw3zPVO
3o2DEw7tVGu8x1cSKLSZ3uqhtwIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFBAES2Cc
DjbxztduM4mxgezMk6ikMB8GA1UdIwQYMBaAFD+wpW4g8ZTHdJh51NIls/l+nr7P
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTQ1Ni83NzE5QzcxMDMw
NjYxMUVCODUyNTEzNTVDNEY5QUUwMi9QN0NsYmlEeGxNZDBtSG5VMGlXei1YNmV2
czguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL1A3Q2xiaUR4bE1kMG1IblUwaVd6LVg2ZXZzOC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NDU0NTYvNzcxOUM3MTAzMDY2MTFFQjg1MjUxMzU1QzRGOUFFMDIvQTA3QjBBMTQ5
QTlDMTFFQzk3RUJCNjIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E
JDAiMCAEAgABMBoDBAaD4kAwDAMEBouHQAMEAouHUAMEAIuHfzANBgkqhkiG9w0B
AQsFAAOCAQEAkGIwSDTY40xSmSAKY2o3OOFWlLi9T1Mmc9zkSIXJKR1srxTq+EaH
QFCHxHbvLfBehHmmrWbLLa06C+rWd+5Tj06H2aXSoFSh1p9cvQDyv/3qmLn45+He
ZH8oERNq/kgZbZi0kqeaIdkguLDsqX5+yeOi6UGzySvz2/ma0MfFlT4DI+uFyNGh
a/lFg2g1hAdD6o7wlmQeRK60HOIGFElqsoVYnIplIKNPzRwzuz2+u0DI6dflPgWT
vWtH2NLqvuPuo157b9lAZC70jy9lKrPkxxWi3JPQuPLiDi7FJ8MPnfDz+J/Enof6
FQb3/QES6oxmQk5vfM/Qj1YfVbp4k7a26w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:04 2024 by rpki-client on console-fra.rpki-client.org