Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/7664C566BE6D11EE99A9E384C4F9AE02.roa
File: 7664C566BE6D11EE99A9E384C4F9AE02.roa (raw, json)
Hash identifier: u96+KdEr46PBMsBBp9A9FbEeysoVzawGaqUgCOuPACk=
Subject key identifier: 04:CE:F8:C4:44:69:1F:FA:A4:9C:E5:CA:1D:A4:C0:C4:D9:56:85:19
Certificate issuer: /CN=A914E8BF/serialNumber=5FEB2BC066C7AF57D269F75733F0FF83E99039A3
Certificate serial: 97
Authority key identifier: 5F:EB:2B:C0:66:C7:AF:57:D2:69:F7:57:33:F0:FF:83:E9:90:39:A3
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-srwGbHr1fSafdXM_D_g-mQOaM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/7664C566BE6D11EE99A9E384C4F9AE02.roa
Signing time: Tue 28 May 2024 09:56:14 +0000
ROA not before: Tue 28 May 2024 09:56:14 +0000
ROA not after: Mon 30 Sep 2024 00:00:00 +0000
asID: 139660
IP address blocks: 103.135.44.0/24 maxlen: 24
103.135.45.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151 (0x97)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914E8BF
Validity
Not Before: May 28 09:56:14 2024 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=6655aa3e-5d12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:6b:18:2c:97:1b:7c:7e:80:f5:ea:83:1a:6f:
53:01:37:dd:71:3f:68:cf:c6:3a:12:72:3c:69:da:
0a:1e:a3:22:b5:cc:bb:7b:96:c8:f0:c6:d5:5d:4d:
ed:7e:b6:0a:de:2f:5a:c8:4f:3c:10:4a:e5:c3:85:
20:cb:ec:f5:74:87:5b:3a:22:b7:f5:a2:b0:5a:d0:
f0:f5:4f:8a:f4:71:b7:35:04:f1:ac:90:ea:ca:3c:
f2:6e:99:ee:bb:f5:68:43:fd:b1:a7:6c:62:d5:a6:
52:b3:95:83:a3:cb:fa:c5:7f:17:53:51:0f:41:3b:
a8:80:e0:07:19:bf:6c:06:de:04:10:b6:1f:64:4d:
50:76:75:36:21:73:41:49:a7:ce:1c:a1:a3:ff:d9:
18:af:a9:5d:0a:55:3a:0a:9d:f1:78:d8:65:e1:5a:
3f:4f:48:a5:89:2a:73:3d:05:66:6e:b6:c4:92:de:
34:7b:ec:66:01:6a:27:58:1d:b7:b3:18:ee:41:58:
ea:34:fe:ec:a6:72:e1:5d:8c:8e:58:63:2f:f3:9e:
52:eb:fa:35:43:83:ff:ce:94:c1:6b:12:c3:f4:b3:
13:91:37:07:82:3c:7b:15:c0:14:a8:5b:7b:77:2a:
26:c2:37:e8:9e:b6:66:d4:57:cd:39:29:f9:20:d9:
99:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:CE:F8:C4:44:69:1F:FA:A4:9C:E5:CA:1D:A4:C0:C4:D9:56:85:19
X509v3 Authority Key Identifier:
keyid:5F:EB:2B:C0:66:C7:AF:57:D2:69:F7:57:33:F0:FF:83:E9:90:39:A3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-srwGbHr1fSafdXM_D_g-mQOaM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/7664C566BE6D11EE99A9E384C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.135.44.0/23
Signature Algorithm: sha256WithRSAEncryption
07:a2:89:01:9d:fa:c7:4e:b5:36:06:c9:88:51:02:5c:30:5c:
be:21:1c:7f:c6:ef:fe:28:d5:df:18:e5:11:99:35:3e:78:f3:
3d:c0:cb:ee:56:80:8e:1f:a9:ee:da:66:b6:74:9b:cd:61:db:
a1:f7:46:47:ad:db:17:8c:29:af:67:f7:a0:d0:45:25:19:25:
ee:d3:e2:bb:75:c7:2c:9f:e7:14:d5:0b:35:d7:0f:9e:db:00:
22:41:69:51:6b:20:93:66:26:10:c5:24:60:2d:07:ac:db:4e:
5e:ef:58:61:fb:c1:19:59:25:b7:34:b8:47:39:8a:e2:a1:ea:
4f:e9:30:b5:a8:11:d2:e6:09:e6:99:97:74:af:bd:29:7a:b9:
ae:ff:57:90:63:be:5a:21:7f:44:d1:cd:2f:6d:d1:8e:97:22:
e8:87:cd:5e:ff:0e:06:31:f8:66:8f:2e:5b:b5:a6:41:d9:be:
0a:a6:e0:e3:bf:61:f6:86:b2:a1:87:6d:30:39:13:d3:ec:61:
24:3d:d0:cd:9c:e5:36:5d:13:62:83:0a:e3:28:d7:31:96:a9:
22:eb:48:6a:76:90:91:85:66:bb:2b:8a:88:ff:2d:9e:15:5a:
20:f7:a2:68:92:35:b2:97:bd:ca:8b:ad:5c:19:fd:76:44:76:
cc:24:bf:b7
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICAJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NEU4QkYxMTAvBgNVBAUTKDVGRUIyQkMwNjZDN0FGNTdEMjY5Rjc1NzMzRjBGRjgz
RTk5MDM5QTMwHhcNMjQwNTI4MDk1NjE0WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NjU1YWEzZS01ZDEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA0GsYLJcbfH6A9eqDGm9TATfdcT9oz8Y6EnI8adoKHqMitcy7e5bI8MbVXU3t
frYK3i9ayE88EErlw4Ugy+z1dIdbOiK39aKwWtDw9U+K9HG3NQTxrJDqyjzybpnu
u/VoQ/2xp2xi1aZSs5WDo8v6xX8XU1EPQTuogOAHGb9sBt4EELYfZE1QdnU2IXNB
SafOHKGj/9kYr6ldClU6Cp3xeNhl4Vo/T0iliSpzPQVmbrbEkt40e+xmAWonWB23
sxjuQVjqNP7spnLhXYyOWGMv855S6/o1Q4P/zpTBaxLD9LMTkTcHgjx7FcAUqFt7
dyomwjfonrZm1FfNOSn5INmZgwIDAQABo4IClTCCApEwHQYDVR0OBBYEFATO+MRE
aR/6pJzlyh2kwMTZVoUZMB8GA1UdIwQYMBaAFF/rK8Bmx69X0mn3VzPw/4PpkDmj
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RThCRi9CMzg5Q0YzODQx
QTcxMUVFOTJFNUIzNzhDNEY5QUUwMi9YLXNyd0diSHIxZlNhZmRYTV9EX2ctbVFP
YU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1gtc3J3R2JIcjFmU2FmZFhNX0RfZy1tUU9hTS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NEU4QkYvQjM4OUNGMzg0MUE3MTFFRTkyRTVCMzc4QzRGOUFFMDIvNzY2NEM1NjZC
RTZEMTFFRTk5QTlFMzg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBAFnhywwDQYJKoZIhvcNAQELBQADggEBAAeiiQGd+sdOtTYG
yYhRAlwwXL4hHH/G7/4o1d8Y5RGZNT548z3Ay+5WgI4fqe7aZrZ0m81h26H3Rket
2xeMKa9n96DQRSUZJe7T4rt1xyyf5xTVCzXXD57bACJBaVFrIJNmJhDFJGAtB6zb
Tl7vWGH7wRlZJbc0uEc5iuKh6k/pMLWoEdLmCeaZl3SvvSl6ua7/V5Bjvlohf0TR
zS9t0Y6XIuiHzV7/DgYx+GaPLlu1pkHZvgqm4OO/YfaGsqGHbTA5E9PsYSQ90M2c
5TZdE2KDCuMo1zGWqSLrSGp2kJGFZrsrioj/LZ4VWiD3omiSNbKXvcqLrVwZ/XZE
dswkv7c=
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:36:11 2025 by rpki-client