Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91580D2/EBC1AC2C184F11EDADBC3C65C4F9AE02/C42B7A7863E711EE9ED7A410C4F9AE02.roa
File: C42B7A7863E711EE9ED7A410C4F9AE02.roa (raw, json)
Hash identifier: 0luS5qVC3zuTjYzBC24MjsWpZ37i5e3mvFn/yY+g9pA=
Subject key identifier: 5F:E1:40:F8:D8:1A:F3:C0:0D:70:A7:83:C5:3E:1D:2F:7D:FB:2F:FA
Certificate issuer: /CN=A91580D2/serialNumber=CA90D4D2125F0336B5398EE09977296F2E4092B4
Certificate serial: 014D
Authority key identifier: CA:90:D4:D2:12:5F:03:36:B5:39:8E:E0:99:77:29:6F:2E:40:92:B4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypDU0hJfAza1OY7gmXcpby5AkrQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91580D2/EBC1AC2C184F11EDADBC3C65C4F9AE02/C42B7A7863E711EE9ED7A410C4F9AE02.roa
Signing time: Fri 06 Oct 2023 01:29:18 +0000
ROA not before: Fri 06 Oct 2023 01:29:18 +0000
ROA not after: Wed 31 Jan 2024 00:00:00 +0000
asID: 212609
IP address blocks: 103.102.125.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 333 (0x14d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91580D2/serialNumber=CA90D4D2125F0336B5398EE09977296F2E4092B4
Validity
Not Before: Oct 6 01:29:18 2023 GMT
Not After : Jan 31 00:00:00 2024 GMT
Subject: CN=651f62ed-1569
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:e8:cc:4f:fd:38:8d:bf:ee:4b:e6:ed:59:bb:
0c:90:60:b4:3d:00:f9:eb:aa:1c:8f:d6:e3:4c:97:
5e:4f:ba:aa:8f:77:e9:a2:4f:da:b6:fd:a3:34:3e:
06:ce:4f:8c:bd:04:89:37:93:53:76:b5:1e:a3:d1:
2c:80:fd:87:71:4c:eb:89:41:bf:76:07:61:22:77:
19:fe:a2:bd:33:ed:01:be:e9:19:d4:ac:77:7d:af:
24:ac:d3:a9:8d:d8:05:15:c1:5b:89:d0:b1:1c:8b:
b2:9e:f2:c3:21:22:de:f2:7e:b8:8c:b3:88:54:37:
43:e6:f1:ea:35:ed:0d:4a:4c:47:f2:ef:42:db:2e:
6c:e1:50:d8:f4:f7:a5:35:2e:c8:88:9c:63:41:11:
68:b1:de:e9:9f:4e:61:ee:87:4f:e4:7b:5b:c1:12:
d3:49:e0:6e:3d:c8:fa:49:17:e8:aa:d5:2a:9c:85:
75:1c:fd:ea:94:3a:29:98:b5:66:01:26:a4:9e:25:
11:1b:6b:1b:1c:78:b3:82:1a:6f:59:cd:f1:b4:33:
7a:71:b3:1f:74:b1:14:f6:16:df:d7:ee:3a:4f:20:
36:1e:47:aa:02:98:43:60:b4:3f:d3:07:e4:68:1a:
37:06:d3:3e:63:c6:99:88:e6:41:31:17:f0:06:8b:
4c:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:E1:40:F8:D8:1A:F3:C0:0D:70:A7:83:C5:3E:1D:2F:7D:FB:2F:FA
X509v3 Authority Key Identifier:
keyid:CA:90:D4:D2:12:5F:03:36:B5:39:8E:E0:99:77:29:6F:2E:40:92:B4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91580D2/EBC1AC2C184F11EDADBC3C65C4F9AE02/ypDU0hJfAza1OY7gmXcpby5AkrQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypDU0hJfAza1OY7gmXcpby5AkrQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91580D2/EBC1AC2C184F11EDADBC3C65C4F9AE02/C42B7A7863E711EE9ED7A410C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.102.125.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:73:ad:ee:34:17:a5:b1:40:60:c0:2b:a5:d8:09:a5:4b:bd:
87:78:df:18:56:99:98:ca:3b:76:32:a6:53:56:73:df:5f:bb:
c3:b2:f5:37:63:13:16:f1:7c:d6:d6:d6:24:48:60:db:e3:ec:
46:6a:69:28:95:bc:8b:a6:e7:f2:1d:17:23:c2:f8:98:b3:e7:
95:c2:f6:d1:f4:05:53:1e:92:e1:0c:cb:8c:b7:b1:6b:a0:af:
e4:d3:64:e6:34:31:df:3c:e8:b2:ba:d1:d3:b1:41:ca:e3:94:
86:a1:d8:2a:ac:08:c4:05:d0:29:4c:03:5b:75:0d:db:3f:54:
34:cc:82:bb:f5:72:a3:d8:de:52:f3:4b:11:08:1a:e2:3c:67:
8f:d1:6d:72:fb:8f:97:62:9a:0c:90:5a:d3:c2:65:a7:01:bb:
37:cf:ac:f7:b7:4d:ac:23:6a:7c:d0:fa:9c:00:95:86:45:51:
6e:a7:a3:7a:f1:e2:e6:af:19:5b:21:fc:11:1a:c8:25:6a:64:
18:fa:fa:e6:92:7b:89:a8:db:a6:19:91:c1:ad:47:d9:ee:9f:
e1:8e:40:5b:c9:84:f8:44:7d:1f:6e:6a:0c:63:28:71:8f:2a:
84:dd:89:d8:01:89:6f:c6:a9:44:50:ef:64:4b:aa:88:4d:0e:
64:b4:fc:90
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICAU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NTgwRDIxMTAvBgNVBAUTKENBOTBENEQyMTI1RjAzMzZCNTM5OEVFMDk5NzcyOTZG
MkU0MDkyQjQwHhcNMjMxMDA2MDEyOTE4WhcNMjQwMTMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NTFmNjJlZC0xNTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAlejMT/04jb/uS+btWbsMkGC0PQD566ocj9bjTJdeT7qqj3fpok/atv2jND4G
zk+MvQSJN5NTdrUeo9EsgP2HcUzriUG/dgdhIncZ/qK9M+0BvukZ1Kx3fa8krNOp
jdgFFcFbidCxHIuynvLDISLe8n64jLOIVDdD5vHqNe0NSkxH8u9C2y5s4VDY9Pel
NS7IiJxjQRFosd7pn05h7odP5HtbwRLTSeBuPcj6SRfoqtUqnIV1HP3qlDopmLVm
ASakniURG2sbHHizghpvWc3xtDN6cbMfdLEU9hbf1+46TyA2HkeqAphDYLQ/0wfk
aBo3BtM+Y8aZiOZBMRfwBotM2QIDAQABo4IClTCCApEwHQYDVR0OBBYEFF/hQPjY
GvPADXCng8U+HS99+y/6MB8GA1UdIwQYMBaAFMqQ1NISXwM2tTmO4Jl3KW8uQJK0
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODBEMi9FQkMxQUMyQzE4
NEYxMUVEQURCQzNDNjVDNEY5QUUwMi95cERVMGhKZkF6YTFPWTdnbVhjcGJ5NUFr
clEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3lwRFUwaEpmQXphMU9ZN2dtWGNwYnk1QWtyUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NTgwRDIvRUJDMUFDMkMxODRGMTFFREFEQkMzQzY1QzRGOUFFMDIvQzQyQjdBNzg2
M0U3MTFFRTlFRDdBNDEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBABnZn0wDQYJKoZIhvcNAQELBQADggEBAEtzre40F6WxQGDA
K6XYCaVLvYd43xhWmZjKO3YyplNWc99fu8Oy9TdjExbxfNbW1iRIYNvj7EZqaSiV
vIum5/IdFyPC+Jiz55XC9tH0BVMekuEMy4y3sWugr+TTZOY0Md886LK60dOxQcrj
lIah2CqsCMQF0ClMA1t1Dds/VDTMgrv1cqPY3lLzSxEIGuI8Z4/RbXL7j5dimgyQ
WtPCZacBuzfPrPe3TawjanzQ+pwAlYZFUW6no3rx4uavGVsh/BEayCVqZBj6+uaS
e4mo26YZkcGtR9nun+GOQFvJhPhEfR9uagxjKHGPKoTdidgBiW/GqURQ72RLqohN
DmS0/JA=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:07 2024 by rpki-client on console-ams.rpki-client.org