Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918B443/92426F86420A11EC94C4F15AC4F9AE02/61BE41900C3511EEA5774672C4F9AE02.roa
File: 61BE41900C3511EEA5774672C4F9AE02.roa (raw, json)
Hash identifier: OGkMnFLHtFI3kP7a0J1gk1UBK7g83JNx6EnPOla50hY=
Subject key identifier: F7:AF:7A:32:5E:29:A2:F2:91:D4:4A:11:CC:5B:D8:B4:AA:EE:0A:D4
Certificate issuer: /CN=A918B443/serialNumber=07AA73A7ED67411891BD8F727261951C41C716DE
Certificate serial: 033B
Authority key identifier: 07:AA:73:A7:ED:67:41:18:91:BD:8F:72:72:61:95:1C:41:C7:16:DE
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B6pzp-1nQRiRvY9ycmGVHEHHFt4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918B443/92426F86420A11EC94C4F15AC4F9AE02/61BE41900C3511EEA5774672C4F9AE02.roa
Signing time: Fri 16 Jun 2023 11:03:11 +0000
ROA not before: Fri 16 Jun 2023 11:03:11 +0000
ROA not after: Wed 31 Jan 2024 00:00:00 +0000
asID: 38264
IP address blocks: 103.174.194.0/24 maxlen: 24
2001:df7:d380::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 827 (0x33b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918B443/serialNumber=07AA73A7ED67411891BD8F727261951C41C716DE
Validity
Not Before: Jun 16 11:03:11 2023 GMT
Not After : Jan 31 00:00:00 2024 GMT
Subject: CN=648c416f-4fb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d1:49:d5:cc:ee:f7:69:47:20:fd:cc:a3:f1:
24:1e:3e:a1:9e:c4:2b:25:8e:17:b0:09:ef:2a:ad:
df:54:db:bc:44:ed:36:7e:75:32:99:8e:a0:fd:ba:
14:78:bc:f8:3d:64:e2:9d:57:29:22:ae:47:36:9c:
b6:92:03:70:41:8d:6a:2d:9a:41:03:ed:f5:6f:64:
df:65:9a:b2:2a:6d:c1:f4:4b:aa:90:87:fa:1b:05:
d2:d5:3e:a7:6c:c9:22:46:da:8f:12:de:ba:25:18:
db:19:4c:fc:1b:0a:34:fa:65:df:35:11:7c:57:43:
7f:b4:b2:19:03:b8:28:e6:01:2b:c5:ba:27:37:e7:
0a:50:c4:c6:28:8f:0d:70:65:67:02:3d:65:13:6d:
7e:d0:1c:14:33:81:74:e1:74:e6:3a:61:e4:20:65:
85:a8:a8:b1:f0:48:0b:d7:9f:d5:fc:ed:90:ef:87:
49:b6:fa:f2:79:16:f8:f8:c1:f8:63:1a:57:10:0d:
3a:f8:32:fa:f9:29:47:4c:e1:42:78:b8:cd:2e:76:
9d:f5:5f:1b:33:8d:50:6a:ea:67:2a:f7:ee:4d:db:
3f:99:84:82:2a:6e:65:42:80:00:1c:ba:95:bb:d0:
58:fd:c8:72:48:60:47:a0:35:58:0d:29:9d:61:25:
9a:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:AF:7A:32:5E:29:A2:F2:91:D4:4A:11:CC:5B:D8:B4:AA:EE:0A:D4
X509v3 Authority Key Identifier:
keyid:07:AA:73:A7:ED:67:41:18:91:BD:8F:72:72:61:95:1C:41:C7:16:DE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918B443/92426F86420A11EC94C4F15AC4F9AE02/B6pzp-1nQRiRvY9ycmGVHEHHFt4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B6pzp-1nQRiRvY9ycmGVHEHHFt4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B443/92426F86420A11EC94C4F15AC4F9AE02/61BE41900C3511EEA5774672C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.174.194.0/24
IPv6:
2001:df7:d380::/48
Signature Algorithm: sha256WithRSAEncryption
3a:c2:64:06:53:93:ec:a4:f6:fe:6d:f7:12:36:c9:da:5a:89:
9a:86:74:0f:a5:71:c9:67:43:22:8c:41:1f:98:07:4a:4d:05:
e4:67:0e:81:15:52:cd:bb:af:90:80:f0:a2:8a:fe:3c:d8:9d:
fd:88:6f:3f:ee:c4:40:1f:40:f8:ec:6c:cf:b9:57:5f:75:89:
af:df:83:4d:53:24:27:fa:51:5b:c3:d3:37:5f:44:f4:42:f2:
90:01:90:56:14:c1:b2:85:49:e7:b5:56:f7:27:83:6e:de:7f:
74:1d:70:66:67:38:4f:34:a0:8e:e6:59:be:e2:62:06:e6:c1:
24:ed:cc:85:fd:1d:84:df:d7:f2:20:9b:6b:fc:f6:26:d6:2e:
7c:23:38:fc:d3:75:9e:d2:dd:cd:bb:99:ef:7e:9f:1a:71:37:
63:15:bb:8e:83:17:81:89:21:18:45:f5:37:6f:ff:ac:11:0a:
b2:25:50:7b:51:85:82:f0:ad:1b:b9:da:b6:74:62:a4:a2:7c:
f6:f7:bd:02:33:e7:ab:d1:9f:dc:c2:b8:d4:d9:c6:e2:0e:d1:
9d:0a:89:af:9d:20:e3:0c:43:0e:2d:05:23:79:82:8d:e1:02:
fb:70:e7:e1:e8:22:d7:73:cd:ee:05:61:62:ae:71:a9:df:17:
0c:c6:d7:94
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgICAzswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OEI0NDMxMTAvBgNVBAUTKDA3QUE3M0E3RUQ2NzQxMTg5MUJEOEY3MjcyNjE5NTFD
NDFDNzE2REUwHhcNMjMwNjE2MTEwMzExWhcNMjQwMTMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NDhjNDE2Zi00ZmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAs9FJ1czu92lHIP3Mo/EkHj6hnsQrJY4XsAnvKq3fVNu8RO02fnUymY6g/boU
eLz4PWTinVcpIq5HNpy2kgNwQY1qLZpBA+31b2TfZZqyKm3B9EuqkIf6GwXS1T6n
bMkiRtqPEt66JRjbGUz8Gwo0+mXfNRF8V0N/tLIZA7go5gErxbonN+cKUMTGKI8N
cGVnAj1lE21+0BwUM4F04XTmOmHkIGWFqKix8EgL15/V/O2Q74dJtvryeRb4+MH4
YxpXEA06+DL6+SlHTOFCeLjNLnad9V8bM41QaupnKvfuTds/mYSCKm5lQoAAHLqV
u9BY/chySGBHoDVYDSmdYSWaNQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFPevejJe
KaLykdRKEcxb2LSq7grUMB8GA1UdIwQYMBaAFAeqc6ftZ0EYkb2PcnJhlRxBxxbe
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjQ0My85MjQyNkY4NjQy
MEExMUVDOTRDNEYxNUFDNEY5QUUwMi9CNnB6cC0xblFSaVJ2WTl5Y21HVkhFSEhG
dDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0I2cHpwLTFuUVJpUnZZOXljbUdWSEVISEZ0NC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OEI0NDMvOTI0MjZGODY0MjBBMTFFQzk0QzRGMTVBQzRGOUFFMDIvNjFCRTQxOTAw
QzM1MTFFRUE1Nzc0NjcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E
ITAfMAwEAgABMAYDBABnrsIwDwQCAAIwCQMHACABDffTgDANBgkqhkiG9w0BAQsF
AAOCAQEAOsJkBlOT7KT2/m33EjbJ2lqJmoZ0D6VxyWdDIoxBH5gHSk0F5GcOgRVS
zbuvkIDwoor+PNid/YhvP+7EQB9A+Oxsz7lXX3WJr9+DTVMkJ/pRW8PTN19E9ELy
kAGQVhTBsoVJ57VW9yeDbt5/dB1wZmc4TzSgjuZZvuJiBubBJO3Mhf0dhN/X8iCb
a/z2JtYufCM4/NN1ntLdzbuZ736fGnE3YxW7joMXgYkhGEX1N2//rBEKsiVQe1GF
gvCtG7natnRipKJ89ve9AjPnq9Gf3MK41NnG4g7RnQqJr50g4wxDDi0FI3mCjeEC
+3Dn4egi13PN7gVhYq5xqd8XDMbXlA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:15 2024 by rpki-client on console-fra.rpki-client.org