Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A914E93F/2ED775DAA36C11E891405926C4F9AE02/4578F81EC36B11EB9783703AC4F9AE02.roa
File: 4578F81EC36B11EB9783703AC4F9AE02.roa (raw, json)
Hash identifier: 2+WqL9Ew0qBQoS5jQ62Fc7NSqMOqhdAuKom1WxU8KZc=
Subject key identifier: 34:40:88:23:77:E8:7D:2B:70:30:1D:E7:57:1B:43:54:4A:B7:F7:46
Certificate issuer: /CN=A914E93F/serialNumber=B2F8AB00D57464DD5D05A45A47C420F5F896B8FC
Certificate serial: 0DBF
Authority key identifier: B2:F8:AB:00:D5:74:64:DD:5D:05:A4:5A:47:C4:20:F5:F8:96:B8:FC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/svirANV0ZN1dBaRaR8Qg9fiWuPw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914E93F/2ED775DAA36C11E891405926C4F9AE02/4578F81EC36B11EB9783703AC4F9AE02.roa
Signing time: Wed 02 Jun 2021 06:25:06 +0000
ROA not before: Wed 02 Jun 2021 06:25:06 +0000
ROA not after: Wed 31 Aug 2022 00:00:00 +0000
asID: 141677
IP address blocks: 14.192.49.0/24 maxlen: 24
14.192.51.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3519 (0xdbf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914E93F/serialNumber=B2F8AB00D57464DD5D05A45A47C420F5F896B8FC
Validity
Not Before: Jun 2 06:25:06 2021 GMT
Not After : Aug 31 00:00:00 2022 GMT
Subject: CN=60b72442-8547
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b1:58:91:87:c4:6c:6f:ef:62:50:48:45:b7:
58:0a:9b:7a:0f:1a:b5:be:f9:b3:06:2f:dc:a4:3c:
68:04:52:27:69:1b:38:9b:e6:54:9a:cd:45:01:82:
71:b1:5a:2a:9c:74:cd:eb:79:ad:bb:65:02:41:9d:
53:c2:a1:84:d6:e5:e6:01:94:e0:ca:ab:79:be:6c:
ca:f5:5a:62:47:f7:4c:47:44:54:5c:aa:47:6a:55:
15:37:5a:82:9d:27:1c:53:cd:89:1b:9e:1e:fb:4c:
e8:09:3a:e9:08:27:12:ea:95:35:2c:f8:bb:d6:31:
b0:f6:55:09:df:f7:bd:57:45:46:07:4f:75:23:cf:
b8:09:f7:32:8c:d8:0b:4b:2d:5b:2b:d2:0b:86:86:
81:41:7d:07:1b:df:95:f9:c3:bc:26:fe:a2:e6:89:
db:b1:09:b6:54:71:55:00:34:03:c5:85:e4:c8:cf:
46:f2:33:01:c9:21:ec:32:eb:06:46:f1:6d:5d:b5:
97:3a:0b:fd:f8:48:48:3e:cd:76:f6:cc:6e:e3:cf:
ed:c6:74:55:5a:87:02:f8:45:4f:5e:69:a6:96:e5:
20:b1:4d:b6:30:a9:b6:d8:64:c2:c7:0d:54:50:7f:
df:c1:1f:bc:08:7f:30:82:c5:21:96:01:0d:e9:88:
cd:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:40:88:23:77:E8:7D:2B:70:30:1D:E7:57:1B:43:54:4A:B7:F7:46
X509v3 Authority Key Identifier:
keyid:B2:F8:AB:00:D5:74:64:DD:5D:05:A4:5A:47:C4:20:F5:F8:96:B8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914E93F/2ED775DAA36C11E891405926C4F9AE02/svirANV0ZN1dBaRaR8Qg9fiWuPw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/svirANV0ZN1dBaRaR8Qg9fiWuPw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E93F/2ED775DAA36C11E891405926C4F9AE02/4578F81EC36B11EB9783703AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
14.192.49.0/24
14.192.51.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:d7:28:2a:ed:6e:3b:53:3b:fe:4c:9d:63:b6:c3:ed:e0:35:
e9:29:06:45:f8:b9:9e:05:48:81:a2:09:d1:ba:62:05:f1:8b:
8b:4f:4b:da:16:65:95:0e:77:64:5d:34:d2:b0:7e:51:95:51:
b1:ef:df:8f:2f:b5:2d:47:b0:eb:d6:5e:71:4f:2d:fa:61:e4:
22:ff:3a:62:69:eb:96:e3:69:af:39:22:d5:22:33:ec:51:f7:
b4:5e:83:6d:d7:90:60:c4:c7:e6:46:46:de:7b:18:58:e7:c7:
b4:8f:97:3b:b2:44:be:82:04:5c:90:4d:8c:29:57:ed:65:5e:
68:a1:3b:7c:20:f2:9e:00:d9:f9:a2:0c:a2:f0:32:36:e2:83:
78:75:85:6d:58:b5:3a:46:ab:ce:be:80:26:94:2d:19:28:75:
47:c4:5a:97:b7:b5:21:5d:e7:b2:6a:8c:e8:87:e1:3a:6b:8e:
bd:24:06:dd:81:74:dc:99:1e:01:f8:c4:b5:ff:e2:d7:7f:24:
bf:21:60:a9:2c:1e:c0:43:78:53:87:24:d3:59:a2:ef:b3:36:
f2:07:4a:59:2b:b8:de:85:f5:e3:d3:da:f7:d2:68:f8:c8:20:
50:d9:d8:c6:74:1f:d0:7b:dd:18:6f:bf:f3:47:50:74:cb:a6:
8e:d7:27:ce
-----BEGIN CERTIFICATE-----
MIIFdzCCBF+gAwIBAgICDb8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NEU5M0YxMTAvBgNVBAUTKEIyRjhBQjAwRDU3NDY0REQ1RDA1QTQ1QTQ3QzQyMEY1
Rjg5NkI4RkMwHhcNMjEwNjAyMDYyNTA2WhcNMjIwODMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02MGI3MjQ0Mi04NTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAqrFYkYfEbG/vYlBIRbdYCpt6Dxq1vvmzBi/cpDxoBFInaRs4m+ZUms1FAYJx
sVoqnHTN63mtu2UCQZ1TwqGE1uXmAZTgyqt5vmzK9VpiR/dMR0RUXKpHalUVN1qC
nSccU82JG54e+0zoCTrpCCcS6pU1LPi71jGw9lUJ3/e9V0VGB091I8+4CfcyjNgL
Sy1bK9ILhoaBQX0HG9+V+cO8Jv6i5onbsQm2VHFVADQDxYXkyM9G8jMBySHsMusG
RvFtXbWXOgv9+EhIPs129sxu48/txnRVWocC+EVPXmmmluUgsU22MKm22GTCxw1U
UH/fwR+8CH8wgsUhlgEN6YjNCQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDRAiCN3
6H0rcDAd51cbQ1RKt/dGMB8GA1UdIwQYMBaAFLL4qwDVdGTdXQWkWkfEIPX4lrj8
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTkzRi8yRUQ3NzVEQUEz
NkMxMUU4OTE0MDU5MjZDNEY5QUUwMi9zdmlyQU5WMFpOMWRCYVJhUjhRZzlmaVd1
UHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3N2aXJBTlYwWk4xZEJhUmFSOFFnOWZpV3VQdy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NEU5M0YvMkVENzc1REFBMzZDMTFFODkxNDA1OTI2QzRGOUFFMDIvNDU3OEY4MUVD
MzZCMTFFQjk3ODM3MDNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E
FjAUMBIEAgABMAwDBAAOwDEDBAAOwDMwDQYJKoZIhvcNAQELBQADggEBAKzXKCrt
bjtTO/5MnWO2w+3gNekpBkX4uZ4FSIGiCdG6YgXxi4tPS9oWZZUOd2RdNNKwflGV
UbHv348vtS1HsOvWXnFPLfph5CL/OmJp65bjaa85ItUiM+xR97Reg23XkGDEx+ZG
Rt57GFjnx7SPlzuyRL6CBFyQTYwpV+1lXmihO3wg8p4A2fmiDKLwMjbig3h1hW1Y
tTpGq86+gCaULRkodUfEWpe3tSFd57JqjOiH4Tprjr0kBt2BdNyZHgH4xLX/4td/
JL8hYKksHsBDeFOHJNNZou+zNvIHSlkruN6F9ePT2vfSaPjIIFDZ2MZ0H9B73Rhv
v/NHUHTLpo7XJ84=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:39 2023 by rpki-client on console-ams.rpki-client.org