Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/E86ACAA4979911ECB3B7CE39C4F9AE02.roa
File: E86ACAA4979911ECB3B7CE39C4F9AE02.roa (raw, json)
Hash identifier: PGDQJ2zAXvWw1dUSWXgVbMalbVxMiYE2VvwAxdp85HM=
Subject key identifier: D0:42:3D:B0:59:B5:C2:59:FC:68:D3:B5:7C:81:4B:1A:9B:41:C3:42
Certificate issuer: /CN=A9152DE4/serialNumber=217C3D8BED0B40C0FB088B59EE6E65AE6C661F0D
Certificate serial: 0258
Authority key identifier: 21:7C:3D:8B:ED:0B:40:C0:FB:08:8B:59:EE:6E:65:AE:6C:66:1F:0D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IXw9i-0LQMD7CItZ7m5lrmxmHw0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/E86ACAA4979911ECB3B7CE39C4F9AE02.roa
Signing time: Fri 03 Mar 2023 04:35:08 +0000
ROA not before: Fri 03 Mar 2023 04:35:08 +0000
ROA not after: Wed 01 May 2024 00:00:00 +0000
asID: 10075
IP address blocks: 103.179.199.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 600 (0x258)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9152DE4/serialNumber=217C3D8BED0B40C0FB088B59EE6E65AE6C661F0D
Validity
Not Before: Mar 3 04:35:08 2023 GMT
Not After : May 1 00:00:00 2024 GMT
Subject: CN=640178fc-4cf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:a6:31:82:77:9c:53:5f:b1:0e:4c:64:4c:d1:
4f:b7:a0:30:9a:42:5a:21:08:bb:9b:2f:74:6f:48:
f5:38:1d:95:b5:a0:ac:fb:01:9e:bb:ce:be:96:b0:
da:29:24:e0:9e:63:ec:e6:cc:15:a3:fd:3a:99:70:
0e:7b:19:2a:6d:e8:02:69:cb:b3:a0:fe:61:18:20:
66:9f:cd:6a:3f:8a:8b:15:8a:77:00:9c:28:c9:30:
79:7a:d0:1e:8d:25:e3:af:05:9c:9e:67:69:01:c3:
92:1b:8f:90:01:e3:c3:22:5f:fb:43:e8:dd:05:8a:
94:1b:0b:98:55:9f:8c:66:9d:c2:45:08:7a:8e:b3:
fc:8c:42:9d:d9:1b:1a:fe:fa:bb:5f:22:20:d2:8a:
92:0d:ec:2a:cd:91:98:c8:06:60:d5:e7:09:77:08:
4f:84:96:81:9a:ef:5e:75:04:2e:e0:fe:be:ab:e9:
1c:21:88:30:4a:73:21:9c:9a:43:d8:06:2c:4b:54:
9e:37:dd:73:18:4d:46:5a:a0:ac:d7:b4:ec:06:79:
81:d3:de:61:bb:fb:ca:99:46:02:1a:f4:2d:59:4e:
71:89:50:49:f7:b1:a3:2c:6c:4a:04:ac:87:bb:64:
73:5f:a4:63:e8:57:4c:cf:45:cf:4d:8f:57:e3:e9:
d6:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:42:3D:B0:59:B5:C2:59:FC:68:D3:B5:7C:81:4B:1A:9B:41:C3:42
X509v3 Authority Key Identifier:
keyid:21:7C:3D:8B:ED:0B:40:C0:FB:08:8B:59:EE:6E:65:AE:6C:66:1F:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IXw9i-0LQMD7CItZ7m5lrmxmHw0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/E86ACAA4979911ECB3B7CE39C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.179.199.0/24
Signature Algorithm: sha256WithRSAEncryption
54:4f:d1:c3:d3:16:96:b7:b7:b8:8d:71:22:dd:fe:64:12:7b:
af:3e:bf:a0:45:91:67:cb:5c:17:4a:1c:42:b6:32:13:05:e3:
31:2d:a7:3f:44:17:1a:37:1b:4c:6e:f6:e0:5b:95:1b:5e:21:
dc:e9:8f:a1:d2:5b:b2:e8:1c:ae:a8:41:d3:c3:7b:c5:dc:59:
fc:6f:6d:da:7f:92:ca:a7:a4:bf:32:08:0e:d1:9f:d8:8a:5d:
12:53:3a:6c:b0:a3:cb:89:f6:9a:ad:c9:f8:9f:30:40:46:9c:
65:68:22:1c:cf:74:2a:fd:47:bb:bf:25:97:04:22:34:77:2c:
ed:e2:d2:ba:80:9f:a5:9d:aa:ea:3f:f1:cd:cf:d7:45:8c:f3:
8d:9d:95:90:86:68:07:17:ac:ce:94:74:4c:61:ea:13:d1:19:
63:37:77:41:17:1b:38:e8:8d:1f:a6:50:87:b6:79:d9:66:76:
a9:5c:a1:04:92:f1:fd:c1:4a:97:e5:2f:3d:68:ea:db:fe:0d:
05:61:5e:6b:ed:f2:c1:d1:d7:ab:09:2e:70:4b:b3:16:1b:2f:
53:a9:8e:5e:41:ea:2b:f5:44:14:86:ad:9e:55:44:fb:de:f3:
8a:19:1b:85:06:75:ab:f2:89:82:be:bc:88:b7:32:24:29:1d:
37:8d:0f:b2
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICAlgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NTJERTQxMTAvBgNVBAUTKDIxN0MzRDhCRUQwQjQwQzBGQjA4OEI1OUVFNkU2NUFF
NkM2NjFGMEQwHhcNMjMwMzAzMDQzNTA4WhcNMjQwNTAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NDAxNzhmYy00Y2Y4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA7aYxgnecU1+xDkxkTNFPt6AwmkJaIQi7my90b0j1OB2VtaCs+wGeu86+lrDa
KSTgnmPs5swVo/06mXAOexkqbegCacuzoP5hGCBmn81qP4qLFYp3AJwoyTB5etAe
jSXjrwWcnmdpAcOSG4+QAePDIl/7Q+jdBYqUGwuYVZ+MZp3CRQh6jrP8jEKd2Rsa
/vq7XyIg0oqSDewqzZGYyAZg1ecJdwhPhJaBmu9edQQu4P6+q+kcIYgwSnMhnJpD
2AYsS1SeN91zGE1GWqCs17TsBnmB095hu/vKmUYCGvQtWU5xiVBJ97GjLGxKBKyH
u2RzX6Rj6FdMz0XPTY9X4+nWqQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNBCPbBZ
tcJZ/GjTtXyBSxqbQcNCMB8GA1UdIwQYMBaAFCF8PYvtC0DA+wiLWe5uZa5sZh8N
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkRFNC80Q0NDQzMzMjc5
MkExMUVDQjBDNTkxNjJDNEY5QUUwMi9JWHc5aS0wTFFNRDdDSXRaN201bHJteG1I
dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0lYdzlpLTBMUU1EN0NJdFo3bTVscm14bUh3MC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NTJERTQvNENDQ0MzMzI3OTJBMTFFQ0IwQzU5MTYyQzRGOUFFMDIvRTg2QUNBQTQ5
Nzk5MTFFQ0IzQjdDRTM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBABns8cwDQYJKoZIhvcNAQELBQADggEBAFRP0cPTFpa3t7iN
cSLd/mQSe68+v6BFkWfLXBdKHEK2MhMF4zEtpz9EFxo3G0xu9uBblRteIdzpj6HS
W7LoHK6oQdPDe8XcWfxvbdp/ksqnpL8yCA7Rn9iKXRJTOmywo8uJ9pqtyfifMEBG
nGVoIhzPdCr9R7u/JZcEIjR3LO3i0rqAn6Wdquo/8c3P10WM842dlZCGaAcXrM6U
dExh6hPRGWM3d0EXGzjojR+mUIe2edlmdqlcoQSS8f3BSpflLz1o6tv+DQVhXmvt
8sHR16sJLnBLsxYbL1Opjl5B6iv1RBSGrZ5VRPve84oZG4UGdavyiYK+vIi3MiQp
HTeND7I=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:06 2024 by rpki-client on console-fra.rpki-client.org