Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9147526/4B149548744C11EC9B58307AC4F9AE02/9C788008C30111EC9BCE8E54C4F9AE02.roa
File: 9C788008C30111EC9BCE8E54C4F9AE02.roa (raw, json)
Hash identifier: nautxF0H2xb5J/Z43Y0QnAWIoMpVvcjvdrlOgWoYKGc=
Subject key identifier: 64:39:68:90:69:16:12:E1:AF:BC:83:AB:03:F5:D4:BA:BB:B4:15:C7
Certificate issuer: /CN=A9147526/serialNumber=76DF846E6554C70CCAB78B8F8A5A7463E930AC0D
Certificate serial: CB
Authority key identifier: 76:DF:84:6E:65:54:C7:0C:CA:B7:8B:8F:8A:5A:74:63:E9:30:AC:0D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dt-EbmVUxwzKt4uPilp0Y-kwrA0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9147526/4B149548744C11EC9B58307AC4F9AE02/9C788008C30111EC9BCE8E54C4F9AE02.roa
Signing time: Sat 23 Apr 2022 12:33:43 +0000
ROA not before: Sat 23 Apr 2022 12:33:43 +0000
ROA not after: Wed 31 Aug 2022 00:00:00 +0000
asID: 136141
IP address blocks: 103.141.12.0/24 maxlen: 24
103.141.13.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 203 (0xcb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9147526/serialNumber=76DF846E6554C70CCAB78B8F8A5A7463E930AC0D
Validity
Not Before: Apr 23 12:33:43 2022 GMT
Not After : Aug 31 00:00:00 2022 GMT
Subject: CN=6263f227-989c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ad:c7:08:c8:91:dc:4b:8f:43:a2:30:a0:8a:
47:0d:da:38:b6:1f:7b:3e:d5:b0:ca:f1:73:1a:4e:
4b:0e:35:4d:79:b5:d9:a6:56:f4:cc:cf:cb:ce:d6:
36:40:f3:47:fb:83:ef:19:ed:ba:55:1d:fb:73:ea:
37:d8:4b:be:94:4b:38:9c:5a:5a:8a:b8:7a:af:dc:
28:71:00:d8:21:bb:9f:92:d8:8a:34:63:9e:61:33:
1e:44:13:d9:1a:21:40:81:e3:0f:d8:d2:b4:81:88:
98:31:06:cb:d0:15:79:44:f9:6e:4c:64:9f:c1:14:
2f:05:48:da:37:3b:25:dd:e2:4e:32:2f:f0:1b:da:
f9:0f:19:be:38:08:58:ef:c5:a9:86:e4:44:68:72:
16:39:87:83:a5:e5:88:ff:e6:df:9d:6d:fd:83:92:
b5:41:b3:47:5e:ce:bc:76:da:c2:d0:89:b9:b8:1e:
8b:8f:9b:2f:b5:58:dd:bb:34:08:f4:3a:95:ca:af:
75:b6:c0:18:c0:af:a7:96:9a:5d:b2:ca:f1:51:42:
fb:94:1e:c3:dc:3e:78:9e:be:76:7e:9c:c8:a7:3e:
d3:d6:ed:5d:02:31:8c:e7:fb:14:07:f5:c5:0f:a3:
bb:a5:14:a1:d5:60:cb:5a:0c:b7:5e:5c:2c:17:0e:
5d:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:39:68:90:69:16:12:E1:AF:BC:83:AB:03:F5:D4:BA:BB:B4:15:C7
X509v3 Authority Key Identifier:
keyid:76:DF:84:6E:65:54:C7:0C:CA:B7:8B:8F:8A:5A:74:63:E9:30:AC:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9147526/4B149548744C11EC9B58307AC4F9AE02/dt-EbmVUxwzKt4uPilp0Y-kwrA0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dt-EbmVUxwzKt4uPilp0Y-kwrA0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147526/4B149548744C11EC9B58307AC4F9AE02/9C788008C30111EC9BCE8E54C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.141.12.0/23
Signature Algorithm: sha256WithRSAEncryption
a1:b3:bc:a2:e0:6b:dd:29:1a:33:28:1b:52:40:35:f6:65:3c:
92:19:0f:dc:a9:68:53:79:1c:64:0f:64:20:0d:2e:c2:7d:d6:
91:b2:a6:86:ac:a4:1a:6d:38:9f:cc:ae:22:3a:39:29:f9:2e:
47:4e:ee:20:3f:22:43:92:34:ec:1d:30:03:01:b1:fc:77:7b:
33:1d:52:63:fd:94:f1:ee:b3:ae:56:99:d9:5a:08:5c:c9:c2:
81:66:8e:0b:39:d0:f2:2a:28:54:4c:3b:21:0d:1e:ae:06:b8:
a6:4b:e6:f2:76:e6:45:ff:b8:7f:33:4d:94:cf:6f:16:4a:64:
24:9a:1e:d2:4e:34:d8:69:2b:e4:1a:c2:a3:24:91:33:2a:8f:
f0:f0:6d:b6:f3:ba:bb:72:e0:3b:48:7b:be:22:76:0a:9b:56:
3e:5d:41:3a:41:2b:df:69:1a:e7:b7:8e:ec:ea:8d:31:bd:0d:
46:e6:46:b5:64:dc:0e:34:bb:3d:6c:66:9a:df:54:28:07:72:
02:5f:be:bc:fe:a2:45:c2:01:dd:c6:6b:63:14:71:6b:dd:c0:
56:88:94:28:8b:0d:a9:27:06:b5:d2:e4:7c:a1:3c:86:55:f3:
15:b4:1d:4a:34:39:eb:bf:c8:04:d8:c2:9b:13:16:81:62:f1:
05:f2:b3:47
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICAMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NDc1MjYxMTAvBgNVBAUTKDc2REY4NDZFNjU1NEM3MENDQUI3OEI4RjhBNUE3NDYz
RTkzMEFDMEQwHhcNMjIwNDIzMTIzMzQzWhcNMjIwODMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02MjYzZjIyNy05ODljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAua3HCMiR3EuPQ6IwoIpHDdo4th97PtWwyvFzGk5LDjVNebXZplb0zM/LztY2
QPNH+4PvGe26VR37c+o32Eu+lEs4nFpairh6r9wocQDYIbufktiKNGOeYTMeRBPZ
GiFAgeMP2NK0gYiYMQbL0BV5RPluTGSfwRQvBUjaNzsl3eJOMi/wG9r5Dxm+OAhY
78WphuREaHIWOYeDpeWI/+bfnW39g5K1QbNHXs68dtrC0Im5uB6Lj5svtVjduzQI
9DqVyq91tsAYwK+nlppdssrxUUL7lB7D3D54nr52fpzIpz7T1u1dAjGM5/sUB/XF
D6O7pRSh1WDLWgy3XlwsFw5ddQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGQ5aJBp
FhLhr7yDqwP11Lq7tBXHMB8GA1UdIwQYMBaAFHbfhG5lVMcMyreLj4padGPpMKwN
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzUyNi80QjE0OTU0ODc0
NEMxMUVDOUI1ODMwN0FDNEY5QUUwMi9kdC1FYm1WVXh3ekt0NHVQaWxwMFkta3dy
QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2R0LUVibVZVeHd6S3Q0dVBpbHAwWS1rd3JBMC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NDc1MjYvNEIxNDk1NDg3NDRDMTFFQzlCNTgzMDdBQzRGOUFFMDIvOUM3ODgwMDhD
MzAxMTFFQzlCQ0U4RTU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBAFnjQwwDQYJKoZIhvcNAQELBQADggEBAKGzvKLga90pGjMo
G1JANfZlPJIZD9ypaFN5HGQPZCANLsJ91pGypoaspBptOJ/MriI6OSn5LkdO7iA/
IkOSNOwdMAMBsfx3ezMdUmP9lPHus65WmdlaCFzJwoFmjgs50PIqKFRMOyENHq4G
uKZL5vJ25kX/uH8zTZTPbxZKZCSaHtJONNhpK+QawqMkkTMqj/Dwbbbzurty4DtI
e74idgqbVj5dQTpBK99pGue3juzqjTG9DUbmRrVk3A40uz1sZprfVCgHcgJfvrz+
okXCAd3Ga2MUcWvdwFaIlCiLDaknBrXS5HyhPIZV8xW0HUo0Oeu/yATYwpsTFoFi
8QXys0c=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:40 2023 by rpki-client on console-fra.rpki-client.org