Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918B443/92426F86420A11EC94C4F15AC4F9AE02/4D7F5508101C11EEBC38BF1AC4F9AE02.roa
File: 4D7F5508101C11EEBC38BF1AC4F9AE02.roa (raw, json)
Hash identifier: NKtVB6o97Jn/by5n2sgq8COttOU6flgA0nvbu0O/2Uw=
Subject key identifier: D3:B7:D1:2B:4D:D9:76:97:D6:B0:78:45:48:A3:34:40:82:F5:BF:89
Certificate issuer: /CN=A918B443/serialNumber=07AA73A7ED67411891BD8F727261951C41C716DE
Certificate serial: 0340
Authority key identifier: 07:AA:73:A7:ED:67:41:18:91:BD:8F:72:72:61:95:1C:41:C7:16:DE
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B6pzp-1nQRiRvY9ycmGVHEHHFt4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918B443/92426F86420A11EC94C4F15AC4F9AE02/4D7F5508101C11EEBC38BF1AC4F9AE02.roa
Signing time: Wed 21 Jun 2023 10:13:44 +0000
ROA not before: Wed 21 Jun 2023 10:13:44 +0000
ROA not after: Wed 31 Jan 2024 00:00:00 +0000
asID: 150671
IP address blocks: 103.174.195.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 832 (0x340)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918B443/serialNumber=07AA73A7ED67411891BD8F727261951C41C716DE
Validity
Not Before: Jun 21 10:13:44 2023 GMT
Not After : Jan 31 00:00:00 2024 GMT
Subject: CN=6492cd58-e7d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:3b:d6:a9:57:d6:95:a9:2e:bc:c1:9a:d5:88:
02:41:8f:ba:fa:ff:89:7e:ba:1a:af:0d:68:64:ef:
d1:6c:c4:34:1b:76:af:75:38:cf:fa:fe:22:c0:2d:
1b:8d:3d:18:61:a8:8c:45:f2:d2:59:55:ff:79:6e:
3d:ea:c1:bc:34:e5:1d:ec:84:60:bc:54:84:cb:73:
36:00:c9:6d:be:23:c6:c4:49:c5:31:9f:13:17:92:
7f:41:b0:d5:71:76:fe:cd:be:ec:9a:50:29:60:e4:
46:cb:bd:ba:7a:13:8f:b5:8e:8d:dd:49:ab:4a:09:
b0:0d:d9:97:1e:b5:c5:7d:87:88:e5:09:fd:b6:da:
3a:26:4c:d0:0b:4c:a2:b0:82:a6:e0:e9:6f:d3:db:
5a:1f:46:9a:f1:9f:cb:99:f3:23:91:ee:96:b0:08:
5a:0a:97:94:74:5d:73:60:ad:05:ee:f2:40:0b:88:
c1:45:1d:b9:e2:ed:23:48:18:fc:7d:0c:68:61:fa:
54:66:27:89:84:a8:53:c9:f2:c5:d6:78:54:e7:6f:
47:f6:98:af:d4:45:df:f7:75:35:32:81:5a:4a:3c:
c6:e6:ab:3c:fc:25:2b:5a:ad:b9:1a:24:d1:9c:c3:
21:7a:35:45:bd:a0:11:b3:93:f3:0e:75:bd:4f:b6:
ca:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:B7:D1:2B:4D:D9:76:97:D6:B0:78:45:48:A3:34:40:82:F5:BF:89
X509v3 Authority Key Identifier:
keyid:07:AA:73:A7:ED:67:41:18:91:BD:8F:72:72:61:95:1C:41:C7:16:DE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918B443/92426F86420A11EC94C4F15AC4F9AE02/B6pzp-1nQRiRvY9ycmGVHEHHFt4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B6pzp-1nQRiRvY9ycmGVHEHHFt4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B443/92426F86420A11EC94C4F15AC4F9AE02/4D7F5508101C11EEBC38BF1AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.174.195.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:68:76:82:af:fd:89:b1:6f:8e:7c:16:fa:97:51:70:e2:79:
37:cd:14:66:44:eb:1f:75:af:70:5d:22:6a:6e:91:4a:ef:9f:
dc:9a:27:34:2d:fe:6e:25:34:4a:8f:7e:2c:e7:50:f0:39:21:
7e:8e:bb:cd:ca:8e:f0:a0:ab:5c:59:db:e7:7b:e0:c5:3e:38:
e0:b5:dc:12:0c:1c:9a:9c:5c:f5:2d:cf:c2:48:5f:e4:1e:e7:
e3:12:70:3e:fd:90:9d:37:fd:d4:49:b2:cc:95:f5:7b:c1:7a:
29:2d:5a:88:36:1d:13:0c:f5:d4:02:6f:99:33:79:93:f6:9f:
da:12:86:8c:53:b8:f3:66:7a:ca:b0:67:ff:c9:ff:7e:44:1e:
f6:92:65:6e:5e:ee:2b:a5:09:d4:90:61:2d:4f:df:9c:57:98:
50:1f:06:1f:df:a0:06:98:11:31:89:84:a2:c5:1b:22:f3:ce:
ab:e0:23:21:e6:d1:29:e1:64:a8:3a:fe:e4:fb:9c:5c:9e:0c:
11:23:db:e3:d2:af:f6:fa:ba:dd:21:f0:6d:a4:a4:61:16:65:
7e:8b:df:7d:f0:d9:13:5c:99:01:c4:78:e4:50:01:fc:54:05:
df:78:38:3a:ae:af:5f:2f:47:89:07:4c:77:d6:9b:ab:4c:90:
e8:fb:13:1a
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICA0AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OEI0NDMxMTAvBgNVBAUTKDA3QUE3M0E3RUQ2NzQxMTg5MUJEOEY3MjcyNjE5NTFD
NDFDNzE2REUwHhcNMjMwNjIxMTAxMzQ0WhcNMjQwMTMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NDkyY2Q1OC1lN2QxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAwjvWqVfWlakuvMGa1YgCQY+6+v+Jfroarw1oZO/RbMQ0G3avdTjP+v4iwC0b
jT0YYaiMRfLSWVX/eW496sG8NOUd7IRgvFSEy3M2AMltviPGxEnFMZ8TF5J/QbDV
cXb+zb7smlApYORGy726ehOPtY6N3UmrSgmwDdmXHrXFfYeI5Qn9tto6JkzQC0yi
sIKm4Olv09taH0aa8Z/LmfMjke6WsAhaCpeUdF1zYK0F7vJAC4jBRR254u0jSBj8
fQxoYfpUZieJhKhTyfLF1nhU529H9piv1EXf93U1MoFaSjzG5qs8/CUrWq25GiTR
nMMhejVFvaARs5PzDnW9T7bKIwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNO30StN
2XaX1rB4RUijNECC9b+JMB8GA1UdIwQYMBaAFAeqc6ftZ0EYkb2PcnJhlRxBxxbe
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjQ0My85MjQyNkY4NjQy
MEExMUVDOTRDNEYxNUFDNEY5QUUwMi9CNnB6cC0xblFSaVJ2WTl5Y21HVkhFSEhG
dDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0I2cHpwLTFuUVJpUnZZOXljbUdWSEVISEZ0NC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OEI0NDMvOTI0MjZGODY0MjBBMTFFQzk0QzRGMTVBQzRGOUFFMDIvNEQ3RjU1MDgx
MDFDMTFFRUJDMzhCRjFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBABnrsMwDQYJKoZIhvcNAQELBQADggEBAGxodoKv/Ymxb458
FvqXUXDieTfNFGZE6x91r3BdImpukUrvn9yaJzQt/m4lNEqPfiznUPA5IX6Ou83K
jvCgq1xZ2+d74MU+OOC13BIMHJqcXPUtz8JIX+Qe5+MScD79kJ03/dRJssyV9XvB
eiktWog2HRMM9dQCb5kzeZP2n9oShoxTuPNmesqwZ//J/35EHvaSZW5e7iulCdSQ
YS1P35xXmFAfBh/foAaYETGJhKLFGyLzzqvgIyHm0SnhZKg6/uT7nFyeDBEj2+PS
r/b6ut0h8G2kpGEWZX6L333w2RNcmQHEeORQAfxUBd94ODqur18vR4kHTHfWm6tM
kOj7Exo=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:15 2024 by rpki-client on console-fra.rpki-client.org