Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A916F9F6/F655F7F67A6711EBBCF76C6FC4F9AE02/B30E1A98C3C911ED8118F36BC4F9AE02.roa
File: B30E1A98C3C911ED8118F36BC4F9AE02.roa (raw, json)
Hash identifier: g1SG43az+ibtog4ZwmMZnLX/9Icf2kkBBPyZ2iygi5g=
Subject key identifier: 10:1A:4C:2B:5B:18:83:F6:FB:42:7A:2C:49:7D:47:C4:54:F4:3D:73
Certificate issuer: /CN=A916F9F6/serialNumber=14E5163867106FCE4552AEECFB1F202661E6DF5D
Certificate serial: 04E6
Authority key identifier: 14:E5:16:38:67:10:6F:CE:45:52:AE:EC:FB:1F:20:26:61:E6:DF:5D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOUWOGcQb85FUq7s-x8gJmHm310.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916F9F6/F655F7F67A6711EBBCF76C6FC4F9AE02/B30E1A98C3C911ED8118F36BC4F9AE02.roa
Signing time: Thu 16 Mar 2023 07:10:58 +0000
ROA not before: Thu 16 Mar 2023 07:10:58 +0000
ROA not after: Sat 30 Sep 2023 00:00:00 +0000
asID: 9318
IP address blocks: 103.151.228.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1254 (0x4e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916F9F6
Validity
Not Before: Mar 16 07:10:58 2023 GMT
Not After : Sep 30 00:00:00 2023 GMT
Subject: CN=6412c102-58e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:b2:77:4a:5a:b8:54:a5:ec:48:4d:7b:22:c4:
f1:05:11:2b:62:a1:f8:06:ba:90:b9:69:bb:f5:2b:
c4:10:b4:0e:04:0f:69:de:ae:59:48:1c:21:e7:2f:
fb:55:8e:fd:5e:31:67:29:6f:0b:78:d0:ba:c2:15:
6b:9e:ea:f0:24:f9:57:2d:fe:37:65:28:05:a5:eb:
8e:18:02:8b:37:e3:55:9b:81:04:60:e3:dc:87:0e:
34:40:0c:72:b6:d3:64:8b:86:c9:94:d7:89:a4:cf:
b8:9c:1c:d1:e8:53:76:00:48:24:46:5b:8b:32:af:
0d:f2:56:33:dd:f7:4e:89:34:bd:f4:70:ab:24:0e:
91:ff:da:e6:15:da:e9:4e:55:e4:93:b2:7a:b9:ad:
67:ed:34:87:2c:f8:2e:fc:a7:fb:4a:e9:41:a5:bb:
8d:4d:c0:d7:c1:f9:79:b1:87:ef:ee:c5:5f:37:d3:
56:79:90:14:03:90:d7:6f:22:e5:8e:02:ed:3e:8e:
ce:b1:96:97:fb:d5:e5:b1:79:f3:6b:b9:e0:24:37:
32:d1:fd:18:f4:c0:e7:c4:96:0f:2c:13:32:77:6e:
1c:d8:0a:dc:08:ae:64:15:bb:7b:55:a1:db:6d:0e:
65:0f:1d:c6:40:72:df:e6:39:4d:75:b9:c0:cd:a3:
40:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:1A:4C:2B:5B:18:83:F6:FB:42:7A:2C:49:7D:47:C4:54:F4:3D:73
X509v3 Authority Key Identifier:
keyid:14:E5:16:38:67:10:6F:CE:45:52:AE:EC:FB:1F:20:26:61:E6:DF:5D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916F9F6/F655F7F67A6711EBBCF76C6FC4F9AE02/FOUWOGcQb85FUq7s-x8gJmHm310.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOUWOGcQb85FUq7s-x8gJmHm310.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916F9F6/F655F7F67A6711EBBCF76C6FC4F9AE02/B30E1A98C3C911ED8118F36BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.151.228.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:64:3e:48:a1:46:3e:f5:3d:c6:13:8d:fd:60:fc:fd:e7:9e:
13:06:05:37:22:8a:ef:13:20:19:bf:cc:3a:cf:71:97:40:43:
42:44:a4:59:90:b2:1c:e5:f0:55:4c:eb:4c:96:10:84:95:f2:
4e:b5:3c:29:c4:6b:d3:2a:7b:c1:fc:23:d3:96:88:4d:89:40:
68:e8:39:e8:5c:11:f3:30:15:7d:6f:be:40:3f:58:24:97:fb:
62:75:57:62:d6:f3:60:90:cf:71:97:70:ee:32:9d:b4:a1:78:
49:91:13:9a:0d:3e:8b:2e:0a:5f:0e:a4:0a:01:09:97:c6:82:
2d:ad:1f:0d:55:c8:46:ca:d5:05:d2:8e:69:6f:7b:b5:a8:91:
cc:92:38:bf:21:9e:fa:0f:c1:82:f3:21:48:2e:6e:37:75:18:
7e:42:4b:db:ad:db:4d:63:2b:98:e1:7a:db:22:14:aa:80:17:
93:c3:f1:22:d1:4f:30:46:98:b7:a4:99:11:ee:f2:6c:67:a4:
e8:f0:98:4e:93:40:61:eb:b0:2c:44:13:ad:33:d0:f6:27:27:
dd:d6:4c:76:bf:88:93:66:7b:63:a8:79:31:b7:85:25:6e:0f:
04:c9:ff:3c:b9:dd:1e:14:c7:f1:e0:f5:65:13:19:3b:7b:f6:
b5:2d:2f:4f
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICBOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NkY5RjYxMTAvBgNVBAUTKDE0RTUxNjM4NjcxMDZGQ0U0NTUyQUVFQ0ZCMUYyMDI2
NjFFNkRGNUQwHhcNMjMwMzE2MDcxMDU4WhcNMjMwOTMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NDEyYzEwMi01OGU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA0rJ3Slq4VKXsSE17IsTxBRErYqH4BrqQuWm79SvEELQOBA9p3q5ZSBwh5y/7
VY79XjFnKW8LeNC6whVrnurwJPlXLf43ZSgFpeuOGAKLN+NVm4EEYOPchw40QAxy
ttNki4bJlNeJpM+4nBzR6FN2AEgkRluLMq8N8lYz3fdOiTS99HCrJA6R/9rmFdrp
TlXkk7J6ua1n7TSHLPgu/Kf7SulBpbuNTcDXwfl5sYfv7sVfN9NWeZAUA5DXbyLl
jgLtPo7OsZaX+9XlsXnza7ngJDcy0f0Y9MDnxJYPLBMyd24c2ArcCK5kFbt7VaHb
bQ5lDx3GQHLf5jlNdbnAzaNA9wIDAQABo4IClTCCApEwHQYDVR0OBBYEFBAaTCtb
GIP2+0J6LEl9R8RU9D1zMB8GA1UdIwQYMBaAFBTlFjhnEG/ORVKu7PsfICZh5t9d
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RjlGNi9GNjU1RjdGNjdB
NjcxMUVCQkNGNzZDNkZDNEY5QUUwMi9GT1VXT0djUWI4NUZVcTdzLXg4Z0ptSG0z
MTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0ZPVVdPR2NRYjg1RlVxN3MteDhnSm1IbTMxMC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NkY5RjYvRjY1NUY3RjY3QTY3MTFFQkJDRjc2QzZGQzRGOUFFMDIvQjMwRTFBOThD
M0M5MTFFRDgxMThGMzZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBABnl+QwDQYJKoZIhvcNAQELBQADggEBAD5kPkihRj71PcYT
jf1g/P3nnhMGBTciiu8TIBm/zDrPcZdAQ0JEpFmQshzl8FVM60yWEISV8k61PCnE
a9Mqe8H8I9OWiE2JQGjoOehcEfMwFX1vvkA/WCSX+2J1V2LW82CQz3GXcO4ynbSh
eEmRE5oNPosuCl8OpAoBCZfGgi2tHw1VyEbK1QXSjmlve7WokcySOL8hnvoPwYLz
IUgubjd1GH5CS9ut201jK5jhetsiFKqAF5PD8SLRTzBGmLekmRHu8mxnpOjwmE6T
QGHrsCxEE60z0PYnJ93WTHa/iJNme2OoeTG3hSVuDwTJ/zy53R4Ux/Hg9WUTGTt7
9rUtL08=
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:20:56 2025 by rpki-client