Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9164860/B401C982E97011E8B0359359C4F9AE02/44AF9702604011EEAA44FA36C4F9AE02.roa
File: 44AF9702604011EEAA44FA36C4F9AE02.roa (raw, json)
Hash identifier: jEuuydbwkXhkHfB+S0x79n5Tyie3StbvrB37tDgV9Yg=
Subject key identifier: 1C:0C:8D:F0:6C:B6:96:45:76:95:B4:05:2E:51:DA:4E:C8:BC:63:00
Certificate issuer: /CN=A9164860/serialNumber=BC536C00F85F59041D9C4C2961F72242BF60D51E
Certificate serial: 10F5
Authority key identifier: BC:53:6C:00:F8:5F:59:04:1D:9C:4C:29:61:F7:22:42:BF:60:D5:1E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vFNsAPhfWQQdnEwpYfciQr9g1R4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9164860/B401C982E97011E8B0359359C4F9AE02/44AF9702604011EEAA44FA36C4F9AE02.roa
Signing time: Sun 01 Oct 2023 09:59:19 +0000
ROA not before: Sun 01 Oct 2023 09:59:19 +0000
ROA not after: Fri 01 Mar 2024 00:00:00 +0000
asID: 137074
IP address blocks: 43.224.188.0/22 maxlen: 22
43.224.188.0/23 maxlen: 23
43.224.190.0/23 maxlen: 23
43.226.4.0/22 maxlen: 22
43.226.4.0/24 maxlen: 24
43.226.5.0/24 maxlen: 24
43.226.6.0/24 maxlen: 24
43.226.7.0/24 maxlen: 24
103.18.64.0/22 maxlen: 22
103.18.64.0/23 maxlen: 23
103.18.66.0/23 maxlen: 23
103.43.212.0/22 maxlen: 22
103.43.212.0/23 maxlen: 23
103.43.214.0/23 maxlen: 23
103.104.16.0/22 maxlen: 24
116.89.246.0/23 maxlen: 24
203.28.64.0/22 maxlen: 22
203.28.64.0/23 maxlen: 24
203.28.66.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4341 (0x10f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9164860/serialNumber=BC536C00F85F59041D9C4C2961F72242BF60D51E
Validity
Not Before: Oct 1 09:59:19 2023 GMT
Not After : Mar 1 00:00:00 2024 GMT
Subject: CN=651942f7-c398
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:03:92:a3:56:85:90:4d:07:60:cf:aa:0d:b6:
11:96:10:ad:1c:a7:1b:e9:4f:08:db:62:85:d3:a4:
57:ff:71:ea:15:08:e7:7c:0d:6b:ab:c4:24:32:49:
44:f2:c1:da:f5:de:65:06:42:7e:d3:c1:a8:35:5e:
82:45:69:46:fa:aa:0a:bc:e8:c0:fa:e7:4d:0d:6d:
fd:a1:35:cd:a9:39:2d:9e:83:15:bf:92:5a:aa:cc:
51:f3:cc:91:0c:f1:64:09:d4:68:7c:a1:a1:df:c1:
54:4c:53:ff:91:1c:67:dc:96:63:0a:a3:67:5e:cb:
75:01:4b:2d:03:f4:ce:a6:35:ce:cc:1c:61:a3:ea:
c4:80:02:ef:65:6c:0b:ec:f2:19:45:70:5a:32:26:
82:df:ed:3a:e1:f8:51:7d:13:f3:05:9b:53:90:8b:
6a:f9:cb:62:73:af:5b:8d:61:6d:8d:be:21:4c:3b:
12:d8:cf:20:be:d8:65:a6:9c:84:e5:f9:39:33:1c:
e4:93:27:05:c6:fc:fa:f4:71:b7:09:43:36:39:f4:
62:5d:14:13:71:4e:05:b9:e0:01:4d:f3:c2:ab:e4:
78:83:5c:ff:1f:25:12:3a:95:d5:32:59:23:51:f1:
79:fb:6f:da:87:a6:45:39:59:b5:e8:1b:2c:6c:af:
e2:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:0C:8D:F0:6C:B6:96:45:76:95:B4:05:2E:51:DA:4E:C8:BC:63:00
X509v3 Authority Key Identifier:
keyid:BC:53:6C:00:F8:5F:59:04:1D:9C:4C:29:61:F7:22:42:BF:60:D5:1E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9164860/B401C982E97011E8B0359359C4F9AE02/vFNsAPhfWQQdnEwpYfciQr9g1R4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vFNsAPhfWQQdnEwpYfciQr9g1R4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164860/B401C982E97011E8B0359359C4F9AE02/44AF9702604011EEAA44FA36C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.224.188.0/22
43.226.4.0/22
103.18.64.0/22
103.43.212.0/22
103.104.16.0/22
116.89.246.0/23
203.28.64.0/22
Signature Algorithm: sha256WithRSAEncryption
33:0a:94:34:a8:86:da:6b:3b:f8:7e:f1:f8:6b:fc:29:c9:53:
ca:14:21:b0:8d:67:5c:e3:e7:b9:d0:ad:46:4a:3b:3f:c5:55:
56:7b:79:79:8b:da:48:a9:3f:df:2d:e4:71:73:05:2c:8b:b3:
25:16:82:ba:f9:f9:e5:63:c3:95:12:13:5c:92:76:59:37:0a:
08:b1:9b:49:a5:98:2a:a4:33:60:d0:68:2f:5a:c7:57:9f:94:
e3:0d:ee:f9:e7:d7:cc:ad:de:1c:ff:41:b2:6a:0b:d0:bf:4c:
70:0b:92:8d:15:c5:48:71:5d:cf:4b:73:f4:62:78:58:f2:30:
0b:93:be:ff:d1:a3:1f:fd:ba:6e:a6:b3:8c:a2:74:b0:98:d1:
0a:1b:34:88:15:d9:5f:6e:87:75:80:9f:61:30:6b:b3:1e:97:
6b:6c:9d:88:5b:a8:08:f1:0d:af:52:87:a4:61:ee:46:fe:7d:
0d:3e:c5:8b:af:74:cd:ed:50:6d:29:65:63:15:9f:48:eb:97:
da:b9:18:cb:64:34:0f:e3:39:ab:77:94:82:92:5a:6a:fd:de:
66:0a:0f:91:ef:6a:1c:30:f1:10:07:d9:5f:54:db:f4:04:8c:
e7:03:e8:5a:ea:db:92:d2:b5:8c:f4:33:e1:25:41:26:d1:7c:
b3:3c:88:c6
-----BEGIN CERTIFICATE-----
MIIFlTCCBH2gAwIBAgICEPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NjQ4NjAxMTAvBgNVBAUTKEJDNTM2QzAwRjg1RjU5MDQxRDlDNEMyOTYxRjcyMjQy
QkY2MEQ1MUUwHhcNMjMxMDAxMDk1OTE5WhcNMjQwMzAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NTE5NDJmNy1jMzk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAtwOSo1aFkE0HYM+qDbYRlhCtHKcb6U8I22KF06RX/3HqFQjnfA1rq8QkMklE
8sHa9d5lBkJ+08GoNV6CRWlG+qoKvOjA+udNDW39oTXNqTktnoMVv5JaqsxR88yR
DPFkCdRofKGh38FUTFP/kRxn3JZjCqNnXst1AUstA/TOpjXOzBxho+rEgALvZWwL
7PIZRXBaMiaC3+064fhRfRPzBZtTkItq+ctic69bjWFtjb4hTDsS2M8gvthlppyE
5fk5MxzkkycFxvz69HG3CUM2OfRiXRQTcU4FueABTfPCq+R4g1z/HyUSOpXVMlkj
UfF5+2/ah6ZFOVm16BssbK/i3QIDAQABo4ICuTCCArUwHQYDVR0OBBYEFBwMjfBs
tpZFdpW0BS5R2k7IvGMAMB8GA1UdIwQYMBaAFLxTbAD4X1kEHZxMKWH3IkK/YNUe
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDg2MC9CNDAxQzk4MkU5
NzAxMUU4QjAzNTkzNTlDNEY5QUUwMi92Rk5zQVBoZldRUWRuRXdwWWZjaVFyOWcx
UjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3ZGTnNBUGhmV1FRZG5Fd3BZZmNpUXI5ZzFSNC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NjQ4NjAvQjQwMUM5ODJFOTcwMTFFOEIwMzU5MzU5QzRGOUFFMDIvNDRBRjk3MDI2
MDQwMTFFRUFBNDRGQTM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQwYIKwYBBQUHAQcBAf8E
NDAyMDAEAgABMCoDBAIr4LwDBAIr4gQDBAJnEkADBAJnK9QDBAJnaBADBAF0WfYD
BALLHEAwDQYJKoZIhvcNAQELBQADggEBADMKlDSohtprO/h+8fhr/CnJU8oUIbCN
Z1zj57nQrUZKOz/FVVZ7eXmL2kipP98t5HFzBSyLsyUWgrr5+eVjw5USE1ySdlk3
Cgixm0mlmCqkM2DQaC9ax1eflOMN7vnn18yt3hz/QbJqC9C/THALko0VxUhxXc9L
c/RieFjyMAuTvv/Rox/9um6ms4yidLCY0QobNIgV2V9uh3WAn2Ewa7Mel2tsnYhb
qAjxDa9Sh6Rh7kb+fQ0+xYuvdM3tUG0pZWMVn0jrl9q5GMtkNA/jOat3lIKSWmr9
3mYKD5Hvahww8RAH2V9U2/QEjOcD6Frq25LStYz0M+ElQSbRfLM8iMY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:09 2024 by rpki-client on console-fra.rpki-client.org