Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A914BF04/DA538A56EA2811EB9AE60B74C4F9AE02/F9161FEA63E811ED89C1807DC4F9AE02.roa
File: F9161FEA63E811ED89C1807DC4F9AE02.roa (raw, json)
Hash identifier: D6Yb7y8Kpn8duB4yf7UkyAjJ/3GwGnrPsWvQjgmIbvg=
Subject key identifier: 86:8B:38:7E:21:54:FB:FD:DE:99:DB:B3:D8:C2:D5:4F:26:D8:33:D0
Certificate issuer: /CN=A914BF04/serialNumber=B01E7C1EDE102251EE60741E2E19F060303D71C9
Certificate serial: 03D0
Authority key identifier: B0:1E:7C:1E:DE:10:22:51:EE:60:74:1E:2E:19:F0:60:30:3D:71:C9
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sB58Ht4QIlHuYHQeLhnwYDA9cck.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914BF04/DA538A56EA2811EB9AE60B74C4F9AE02/F9161FEA63E811ED89C1807DC4F9AE02.roa
Signing time: Wed 15 Mar 2023 02:52:28 +0000
ROA not before: Wed 15 Mar 2023 02:52:28 +0000
ROA not after: Wed 01 May 2024 00:00:00 +0000
asID: 141681
IP address blocks: 103.161.242.0/24 maxlen: 24
103.170.17.0/24 maxlen: 24
2400:bde0::/48 maxlen: 48
2400:bde0:0:1::/64 maxlen: 64
2400:bde0:4000::/36 maxlen: 36
2400:bde0:6000::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 976 (0x3d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914BF04/serialNumber=B01E7C1EDE102251EE60741E2E19F060303D71C9
Validity
Not Before: Mar 15 02:52:28 2023 GMT
Not After : May 1 00:00:00 2024 GMT
Subject: CN=641132ec-5365
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:65:5e:ea:bd:b6:69:92:ce:e2:75:03:69:34:
c9:28:3c:d1:7f:b6:53:5f:f4:fd:ba:2b:67:ec:d8:
31:1d:62:23:b4:26:81:6c:7f:fa:bd:01:12:5e:47:
4f:b4:fd:fa:cb:af:78:1e:8a:5e:3b:61:8a:37:85:
67:7d:b2:95:a8:d4:5d:85:48:51:91:d2:e4:a9:30:
a5:79:c3:a6:38:e9:00:7a:28:4c:3e:51:45:92:64:
f7:1f:79:f8:00:1b:9d:f8:4b:78:45:be:5c:50:68:
e5:01:af:6d:cd:07:ce:a2:7a:97:ed:cb:c0:ce:18:
ab:ef:df:f9:82:d1:e2:7f:c1:56:e5:c4:d2:85:7a:
91:ee:f1:f6:75:9f:51:ae:cb:b0:29:a9:48:3a:4d:
c1:12:e0:53:5b:c5:96:0d:c2:97:0b:b5:8d:21:ec:
55:2c:57:59:72:75:eb:f0:b7:b1:a3:81:d2:bf:6a:
bd:08:38:b6:33:a8:df:14:cf:22:fd:6e:30:8c:26:
d0:04:34:8c:87:6f:6a:6f:b1:99:dd:1f:f0:3c:56:
3d:a7:29:d8:a2:0a:0e:5f:66:6e:16:f3:3a:78:62:
cc:67:4b:e6:ed:53:61:42:c2:40:da:f6:a9:77:5b:
a1:d7:cc:7d:c4:fe:9a:a3:9c:4f:d9:5d:2d:91:c1:
cf:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:8B:38:7E:21:54:FB:FD:DE:99:DB:B3:D8:C2:D5:4F:26:D8:33:D0
X509v3 Authority Key Identifier:
keyid:B0:1E:7C:1E:DE:10:22:51:EE:60:74:1E:2E:19:F0:60:30:3D:71:C9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914BF04/DA538A56EA2811EB9AE60B74C4F9AE02/sB58Ht4QIlHuYHQeLhnwYDA9cck.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sB58Ht4QIlHuYHQeLhnwYDA9cck.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BF04/DA538A56EA2811EB9AE60B74C4F9AE02/F9161FEA63E811ED89C1807DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.161.242.0/24
103.170.17.0/24
IPv6:
2400:bde0::/48
2400:bde0:4000::/36
2400:bde0:6000::/36
Signature Algorithm: sha256WithRSAEncryption
3e:e9:6a:74:bc:2f:6d:ab:73:7b:30:63:23:a8:d5:ed:d9:eb:
bb:d2:83:61:31:3e:89:62:09:fc:53:62:e7:38:79:30:2e:f9:
f7:fc:5f:ae:bc:1f:f8:00:cc:f0:11:0e:f3:80:ad:9d:54:fb:
fd:97:a6:92:0a:18:3e:8a:3c:3c:24:c6:b5:04:0f:b7:73:40:
6e:a2:1a:d4:92:cf:e4:53:37:0f:b1:03:18:4b:9c:13:52:28:
67:f4:83:a0:3f:81:ac:b8:79:4b:5a:fc:81:6a:73:49:a1:a4:
b1:d8:93:36:19:21:0d:2b:e8:6b:0c:55:f9:82:45:97:82:a2:
58:c1:26:17:60:1c:ba:87:b6:30:7f:5c:98:f2:18:c5:4f:42:
ad:37:c5:bb:8b:29:10:67:a9:56:51:5b:40:bb:a2:bd:60:3b:
22:e4:c7:5e:42:44:ca:90:bf:ad:4e:68:b4:d3:17:57:01:3b:
4c:d1:61:70:26:e4:08:82:74:6c:b5:85:68:1e:47:be:65:0a:
9a:72:bc:14:4a:ec:95:24:88:cd:41:24:28:d0:c3:ab:a9:54:
b0:cf:a8:2f:0a:06:23:88:66:9d:75:33:c9:97:d6:21:a5:00:
cd:c1:81:c2:23:aa:e5:1a:5e:b2:d7:8f:51:5e:35:33:79:06:
29:9f:d0:2f
-----BEGIN CERTIFICATE-----
MIIFmDCCBICgAwIBAgICA9AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NEJGMDQxMTAvBgNVBAUTKEIwMUU3QzFFREUxMDIyNTFFRTYwNzQxRTJFMTlGMDYw
MzAzRDcxQzkwHhcNMjMwMzE1MDI1MjI4WhcNMjQwNTAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NDExMzJlYy01MzY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAoWVe6r22aZLO4nUDaTTJKDzRf7ZTX/T9uitn7NgxHWIjtCaBbH/6vQESXkdP
tP36y694HopeO2GKN4VnfbKVqNRdhUhRkdLkqTClecOmOOkAeihMPlFFkmT3H3n4
ABud+Et4Rb5cUGjlAa9tzQfOonqX7cvAzhir79/5gtHif8FW5cTShXqR7vH2dZ9R
rsuwKalIOk3BEuBTW8WWDcKXC7WNIexVLFdZcnXr8Lexo4HSv2q9CDi2M6jfFM8i
/W4wjCbQBDSMh29qb7GZ3R/wPFY9pynYogoOX2ZuFvM6eGLMZ0vm7VNhQsJA2vap
d1uh18x9xP6ao5xP2V0tkcHPmwIDAQABo4ICvDCCArgwHQYDVR0OBBYEFIaLOH4h
VPv93pnbs9jC1U8m2DPQMB8GA1UdIwQYMBaAFLAefB7eECJR7mB0Hi4Z8GAwPXHJ
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkYwNC9EQTUzOEE1NkVB
MjgxMUVCOUFFNjBCNzRDNEY5QUUwMi9zQjU4SHQ0UUlsSHVZSFFlTGhud1lEQTlj
Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3NCNThIdDRRSWxIdVlIUWVMaG53WURBOWNjay5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NEJGMDQvREE1MzhBNTZFQTI4MTFFQjlBRTYwQjc0QzRGOUFFMDIvRjkxNjFGRUE2
M0U4MTFFRDg5QzE4MDdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRgYIKwYBBQUHAQcBAf8E
NzA1MBIEAgABMAwDBABnofIDBABnqhEwHwQCAAIwGQMHACQAveAAAAMGBCQAveBA
AwYEJAC94GAwDQYJKoZIhvcNAQELBQADggEBAD7panS8L22rc3swYyOo1e3Z67vS
g2ExPoliCfxTYuc4eTAu+ff8X668H/gAzPARDvOArZ1U+/2XppIKGD6KPDwkxrUE
D7dzQG6iGtSSz+RTNw+xAxhLnBNSKGf0g6A/gay4eUta/IFqc0mhpLHYkzYZIQ0r
6GsMVfmCRZeColjBJhdgHLqHtjB/XJjyGMVPQq03xbuLKRBnqVZRW0C7or1gOyLk
x15CRMqQv61OaLTTF1cBO0zRYXAm5AiCdGy1hWgeR75lCppyvBRK7JUkiM1BJCjQ
w6upVLDPqC8KBiOIZp11M8mX1iGlAM3BgcIjquUaXrLXj1FeNTN5Bimf0C8=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:05 2024 by rpki-client on console-fra.rpki-client.org