Route Origin Authorization

$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/5DD0D27A040A11EDBA11313DC4F9AE02.roa
File:                     5DD0D27A040A11EDBA11313DC4F9AE02.roa (raw, json)
Hash identifier:          W9BFVqDaLFrX0KCp1BewXHtKhhEWP1reB3z1/jtHgYU=
Subject key identifier:   0D:8F:F0:75:5C:A0:44:2D:4C:61:9E:05:8C:FC:7D:4C:DB:FA:5F:4E
Certificate issuer:       /CN=A9157D67/serialNumber=39C43967570087F583E425A9FE9B69B9506A59BD
Certificate serial:       056E
Authority key identifier: 39:C4:39:67:57:00:87:F5:83:E4:25:A9:FE:9B:69:B9:50:6A:59:BD
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/5DD0D27A040A11EDBA11313DC4F9AE02.roa
Signing time:             Fri 15 Jul 2022 06:50:09 +0000
ROA not before:           Fri 15 Jul 2022 06:50:09 +0000
ROA not after:            Thu 31 Aug 2023 00:00:00 +0000
asID:                     139341
IP address blocks:        43.132.64.0/23 maxlen: 24
                          43.132.69.0/24 maxlen: 24
                          43.132.70.0/23 maxlen: 24
                          43.132.72.0/23 maxlen: 23
                          43.132.74.0/24 maxlen: 24
                          43.132.75.0/24 maxlen: 24
                          43.132.76.0/22 maxlen: 24
                          43.132.80.0/23 maxlen: 24
                          43.132.82.0/24 maxlen: 24
                          43.132.85.0/24 maxlen: 24
                          43.132.86.0/24 maxlen: 24
                          43.132.87.0/24 maxlen: 24
                          43.132.88.0/24 maxlen: 24
                          43.132.89.0/24 maxlen: 24
                          43.132.90.0/23 maxlen: 24
                          43.132.92.0/24 maxlen: 24
                          43.132.93.0/24 maxlen: 24
                          43.152.0.0/24 maxlen: 24
                          43.152.1.0/24 maxlen: 24
                          43.152.2.0/24 maxlen: 24
                          43.152.3.0/24 maxlen: 24
                          43.152.4.0/24 maxlen: 24
                          43.152.5.0/24 maxlen: 24
                          43.152.6.0/24 maxlen: 24
                          43.152.7.0/24 maxlen: 24
                          43.152.8.0/24 maxlen: 24
                          43.152.9.0/24 maxlen: 24
                          43.152.10.0/24 maxlen: 24
                          43.152.11.0/24 maxlen: 24
                          43.152.12.0/24 maxlen: 24
                          43.152.13.0/24 maxlen: 24
                          43.152.14.0/23 maxlen: 24
                          43.152.16.0/23 maxlen: 24
                          43.152.18.0/24 maxlen: 24
                          43.152.19.0/24 maxlen: 24
                          43.152.20.0/24 maxlen: 24
                          43.152.21.0/24 maxlen: 24
                          43.152.22.0/24 maxlen: 24
                          43.152.23.0/24 maxlen: 24
                          43.152.24.0/23 maxlen: 24
                          43.152.26.0/23 maxlen: 24
                          43.152.28.0/23 maxlen: 24
                          43.152.30.0/23 maxlen: 24
                          43.152.32.0/22 maxlen: 24
                          43.152.36.0/23 maxlen: 24
                          43.152.38.0/23 maxlen: 24
                          43.152.40.0/24 maxlen: 24
                          43.152.41.0/24 maxlen: 24
                          43.152.42.0/23 maxlen: 23
                          43.152.44.0/23 maxlen: 24
                          43.152.46.0/24 maxlen: 24
                          43.152.47.0/24 maxlen: 24
                          43.152.48.0/24 maxlen: 24
                          43.152.49.0/24 maxlen: 24
                          43.152.50.0/24 maxlen: 24
                          43.152.51.0/24 maxlen: 24
                          43.152.52.0/24 maxlen: 24
                          43.152.53.0/24 maxlen: 24
                          43.152.54.0/24 maxlen: 24
                          43.152.55.0/24 maxlen: 24
                          43.152.56.0/24 maxlen: 24
                          43.152.57.0/24 maxlen: 24
                          43.152.58.0/23 maxlen: 23
                          43.152.60.0/24 maxlen: 24
                          43.152.61.0/24 maxlen: 24
                          43.152.62.0/24 maxlen: 24
                          43.152.63.0/24 maxlen: 24
                          43.152.128.0/18 maxlen: 18
                          43.152.128.0/23 maxlen: 23
                          43.152.130.0/23 maxlen: 23
                          43.152.132.0/23 maxlen: 23
                          43.152.134.0/23 maxlen: 23
                          43.152.136.0/23 maxlen: 23
                          43.152.138.0/24 maxlen: 24
                          43.152.139.0/24 maxlen: 24
                          43.152.140.0/23 maxlen: 24
                          43.152.142.0/23 maxlen: 24
                          43.152.144.0/24 maxlen: 24
                          43.152.145.0/24 maxlen: 24
                          43.152.146.0/24 maxlen: 24
                          43.152.147.0/24 maxlen: 24
                          43.152.148.0/24 maxlen: 24
                          43.152.149.0/24 maxlen: 24
                          43.152.150.0/23 maxlen: 24
                          43.152.152.0/23 maxlen: 24
                          43.152.154.0/23 maxlen: 24
                          43.152.156.0/22 maxlen: 24
                          43.152.160.0/21 maxlen: 24
                          43.152.168.0/23 maxlen: 24
                          43.152.170.0/23 maxlen: 24
                          43.152.172.0/23 maxlen: 24
                          43.152.174.0/24 maxlen: 24
                          43.152.175.0/24 maxlen: 24
                          43.152.176.0/23 maxlen: 24
                          43.152.178.0/23 maxlen: 24
                          43.152.180.0/22 maxlen: 24
                          43.152.184.0/23 maxlen: 24
                          43.152.186.0/23 maxlen: 24
                          43.152.188.0/23 maxlen: 24
                          43.152.190.0/23 maxlen: 24
                          43.159.64.0/24 maxlen: 24
                          43.159.65.0/24 maxlen: 24
                          43.159.66.0/23 maxlen: 24
                          43.159.68.0/23 maxlen: 24
                          43.159.70.0/23 maxlen: 24
                          43.159.72.0/23 maxlen: 24
                          43.159.74.0/24 maxlen: 24
                          43.159.91.0/24 maxlen: 24
                          43.159.92.0/24 maxlen: 24
                          43.159.93.0/24 maxlen: 24
                          43.159.94.0/24 maxlen: 24
                          43.159.95.0/24 maxlen: 24
                          43.159.96.0/20 maxlen: 24
                          43.159.112.0/21 maxlen: 24
                          43.159.120.0/24 maxlen: 24
                          43.159.121.0/24 maxlen: 24
                          43.159.122.0/24 maxlen: 24
                          43.159.123.0/24 maxlen: 24
                          43.159.124.0/24 maxlen: 24
                          43.159.125.0/24 maxlen: 24
                          43.159.126.0/24 maxlen: 24
                          43.159.127.0/24 maxlen: 24
                          43.175.0.0/16 maxlen: 16
                          101.33.6.0/23 maxlen: 24
                          240d:c010:18::/48 maxlen: 48
                          240d:c010:19::/48 maxlen: 48
                          240d:c010:1a::/48 maxlen: 48
                          240d:c010:1c::/48 maxlen: 48
                          240d:c010:41::/48 maxlen: 48
                          240d:c010:42::/48 maxlen: 48
                          240d:c010:54::/47 maxlen: 48
                          240d:c010:56::/48 maxlen: 48
                          240d:c010:5a::/48 maxlen: 48
                          240d:c010:61::/48 maxlen: 48
                          240d:c010:62::/47 maxlen: 48
                          240d:c010:64::/47 maxlen: 48
                          240d:c010:69::/48 maxlen: 48
                          240d:c010:6b::/48 maxlen: 48
                          240d:c010:6f::/48 maxlen: 48
                          240d:c010:70::/44 maxlen: 48
                          240d:c010:80::/44 maxlen: 48
                          240d:c010:ab::/48 maxlen: 48
                          240d:c010:b2::/48 maxlen: 48
                          240d:c010:bf::/48 maxlen: 48
                          240d:c010:cf::/48 maxlen: 48
                          240d:c010:fb::/48 maxlen: 48

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1390 (0x56e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9157D67/serialNumber=39C43967570087F583E425A9FE9B69B9506A59BD
        Validity
            Not Before: Jul 15 06:50:09 2022 GMT
            Not After : Aug 31 00:00:00 2023 GMT
        Subject: CN=62d10e21-cb66
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a1:a5:85:92:91:02:d0:a6:a4:74:16:0b:5d:ce:
                    8b:f7:6d:b8:f3:df:f0:77:76:bd:d7:4a:b4:3a:9c:
                    32:c2:52:b0:40:5a:9b:ce:23:40:bc:03:e2:29:ad:
                    eb:c5:57:8e:59:b6:f3:0b:32:cb:71:56:7d:07:63:
                    3e:24:97:d4:92:85:59:47:ad:55:91:98:c3:a9:2b:
                    fe:97:ed:db:74:5b:57:2e:63:a9:7e:9f:2d:17:4f:
                    4a:3f:19:ac:04:88:9f:ec:59:94:da:cd:14:7b:81:
                    c5:40:c6:f1:9a:f9:69:f9:60:a5:54:31:c0:3c:4c:
                    73:59:59:75:0a:e0:5c:5a:0e:a9:a9:0f:88:95:dd:
                    9c:38:1c:16:7b:10:93:6b:15:6a:12:9c:b2:2c:a3:
                    4d:37:3c:d9:6c:54:e4:b5:b8:1e:4e:b1:5e:4b:6e:
                    35:dd:48:fd:12:82:d7:c9:21:99:5f:c0:ec:12:f5:
                    d7:4d:46:9e:28:da:46:5e:ef:a5:c1:bc:a3:d5:d5:
                    d7:6f:60:cb:dc:3e:e6:45:02:29:e0:d7:bb:56:c6:
                    d0:0f:7c:91:f0:54:ee:cd:ee:37:02:bd:59:7c:7f:
                    12:79:98:39:60:02:93:29:a7:65:4a:79:c6:2d:6e:
                    d1:5a:3c:a1:77:46:ca:b2:61:c7:24:6b:bc:41:85:
                    9c:39
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0D:8F:F0:75:5C:A0:44:2D:4C:61:9E:05:8C:FC:7D:4C:DB:FA:5F:4E
            X509v3 Authority Key Identifier:
                keyid:39:C4:39:67:57:00:87:F5:83:E4:25:A9:FE:9B:69:B9:50:6A:59:BD

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/5DD0D27A040A11EDBA11313DC4F9AE02.roa
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  43.132.64.0/23
                  43.132.69.0-43.132.82.255
                  43.132.85.0-43.132.93.255
                  43.152.0.0/18
                  43.152.128.0/18
                  43.159.64.0-43.159.74.255
                  43.159.91.0-43.159.127.255
                  43.175.0.0/16
                  101.33.6.0/23
                IPv6:
                  240d:c010:18::-240d:c010:1a:ffff:ffff:ffff:ffff:ffff
                  240d:c010:1c::/48
                  240d:c010:41::-240d:c010:42:ffff:ffff:ffff:ffff:ffff
                  240d:c010:54::-240d:c010:56:ffff:ffff:ffff:ffff:ffff
                  240d:c010:5a::/48
                  240d:c010:61::-240d:c010:65:ffff:ffff:ffff:ffff:ffff
                  240d:c010:69::/48
                  240d:c010:6b::/48
                  240d:c010:6f::-240d:c010:8f:ffff:ffff:ffff:ffff:ffff
                  240d:c010:ab::/48
                  240d:c010:b2::/48
                  240d:c010:bf::/48
                  240d:c010:cf::/48
                  240d:c010:fb::/48

    Signature Algorithm: sha256WithRSAEncryption
         ae:20:78:22:96:dc:da:e7:85:19:1a:6f:75:48:c1:c5:36:0d:
         29:d7:c8:54:95:c9:16:e8:d0:49:24:58:36:7f:b7:51:90:93:
         bd:5f:09:bb:2f:06:26:97:fd:41:fa:57:3c:ed:f4:fb:81:aa:
         d6:3b:fd:29:30:ba:1f:12:e4:95:22:3b:f3:77:b8:1e:65:7e:
         63:10:ae:06:e0:49:22:b0:f0:c2:77:70:9e:71:a4:9b:b2:65:
         43:fb:90:23:7d:92:54:8c:e0:28:8a:74:75:eb:89:97:3a:07:
         cc:e7:aa:aa:5a:4c:fe:85:7e:c7:42:02:70:87:24:ba:ec:12:
         37:fe:99:cd:17:6e:a1:0a:7a:fc:f9:91:82:08:3f:de:05:28:
         bf:fc:2f:9b:1d:6a:7a:51:37:0f:60:34:31:b6:4e:51:2e:80:
         8b:2a:1e:dc:8e:d0:30:d7:f9:2a:8c:e4:cb:84:c3:3b:d6:02:
         08:37:a2:d9:04:ea:d3:b3:d2:5d:08:32:17:76:80:2c:cc:72:
         0e:ba:36:79:47:e1:63:3e:1e:c9:d8:03:2f:4f:d7:0e:53:00:
         13:42:f2:d5:89:d7:b6:b0:89:48:f8:ec:a9:28:11:f6:e8:ae:
         5c:e7:82:13:55:24:7a:28:f5:5f:cf:18:09:a4:e5:4a:3f:dc:
         10:cf:95:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:07 2024 by rpki-client on console-fra.rpki-client.org