Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1A3C037276E211ED9891AA79C4F9AE02.roa
File: 1A3C037276E211ED9891AA79C4F9AE02.roa (raw, json)
Hash identifier: 5f+21mte8mJpAOPTO6NGVZ/Yw/cg1t13MWdpDaEzsMU=
Subject key identifier: 93:C6:53:BB:5C:DD:B0:4F:1B:4E:D5:BF:D6:C5:3C:9C:3E:6E:74:6D
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 6145
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1A3C037276E211ED9891AA79C4F9AE02.roa
Signing time: Thu 08 Dec 2022 10:21:39 +0000
ROA not before: Thu 08 Dec 2022 10:21:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 150066
IP address blocks: 103.191.180.0/25 maxlen: 25
103.191.180.128/25 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24901 (0x6145)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Dec 8 10:21:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6391bab3-400b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:e6:b2:4a:04:48:f6:e8:06:f4:80:a3:31:af:
0d:fb:a9:b1:b4:56:c5:04:be:82:f0:bf:16:80:3e:
3c:c7:5a:60:42:df:2c:67:c9:b1:9e:8b:c9:61:da:
15:2d:7f:84:18:b6:a9:cb:5d:68:42:00:85:00:48:
35:54:f1:3b:aa:03:87:d6:36:30:5a:7c:3d:34:69:
9a:91:46:b7:f1:4c:97:5d:55:20:31:1c:36:74:a5:
da:f3:67:3e:d1:2b:a9:49:c4:26:3d:25:3c:1f:3c:
c5:e7:74:91:8a:e9:b1:08:6a:6e:07:62:0e:ae:af:
fe:8f:0b:e9:13:cb:e2:23:67:60:3b:39:96:29:23:
3a:10:a1:a9:41:4c:d1:8d:91:0c:94:fe:30:92:88:
7c:40:e4:cb:d2:06:0b:72:23:10:50:54:bb:71:56:
fe:7e:ef:b3:e3:90:91:3d:34:9c:eb:4c:0d:ce:b3:
cc:35:6b:e8:94:7c:78:8d:80:6a:04:ae:ed:a7:ad:
13:30:7b:10:3e:c7:3b:4a:85:6a:08:99:b4:6a:ff:
39:7b:90:82:61:9a:41:92:d1:9b:8e:17:aa:b7:64:
d8:8f:53:73:7b:8f:6a:fd:3c:76:84:3f:d2:db:d6:
31:d2:27:86:1b:4a:7e:2d:34:d8:23:c0:d3:0f:74:
d5:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:C6:53:BB:5C:DD:B0:4F:1B:4E:D5:BF:D6:C5:3C:9C:3E:6E:74:6D
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1A3C037276E211ED9891AA79C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.191.180.0/24
Signature Algorithm: sha256WithRSAEncryption
18:b3:5c:c8:49:d5:9c:75:80:2f:e0:db:07:a1:d0:f1:46:8a:
5e:fd:45:67:80:ff:10:ba:46:6f:05:07:75:ad:b5:c9:ea:9a:
e3:a2:98:97:2a:34:9a:97:76:1a:eb:26:96:a3:5a:91:35:0d:
4e:b1:22:41:4f:0a:68:2c:65:86:7e:4d:94:82:5b:ff:34:c9:
0f:a8:71:c1:da:26:79:ec:79:6e:89:fe:5c:ca:b0:e8:49:91:
40:32:92:b6:5f:e0:9d:c2:51:03:69:21:07:29:ac:cd:4d:c8:
b1:10:6a:3e:bd:9f:2f:eb:d5:46:b1:15:3a:45:90:a5:b3:73:
f9:4f:b6:8a:b1:04:78:98:d4:07:b2:eb:2e:64:9b:10:90:b7:
ae:48:cf:eb:0e:8a:e7:58:97:ac:36:3b:5f:4b:d5:e9:e9:ea:
f0:c1:04:ea:c2:71:5e:bd:3d:7a:54:2a:32:1d:24:55:e9:8f:
5a:01:43:54:8b:fb:f7:15:27:53:01:e7:4c:f7:20:12:92:64:
a0:99:9d:bc:d6:7f:1a:8b:fc:92:78:8c:9c:fb:7b:f6:d6:92:
73:9c:9e:5d:d1:5f:f3:49:43:92:85:ec:60:ab:0f:e4:c3:47:
b0:8b:32:05:5c:b3:4f:3b:fd:e4:5f:2d:35:45:d7:50:0b:a7:
e4:f9:da:56
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICYUUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz
RTNBQkM4MjMwHhcNMjIxMjA4MTAyMTM5WhcNMjMwNzAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02MzkxYmFiMy00MDBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA4+aySgRI9ugG9ICjMa8N+6mxtFbFBL6C8L8WgD48x1pgQt8sZ8mxnovJYdoV
LX+EGLapy11oQgCFAEg1VPE7qgOH1jYwWnw9NGmakUa38UyXXVUgMRw2dKXa82c+
0SupScQmPSU8HzzF53SRiumxCGpuB2IOrq/+jwvpE8viI2dgOzmWKSM6EKGpQUzR
jZEMlP4wkoh8QOTL0gYLciMQUFS7cVb+fu+z45CRPTSc60wNzrPMNWvolHx4jYBq
BK7tp60TMHsQPsc7SoVqCJm0av85e5CCYZpBktGbjheqt2TYj1Nze49q/Tx2hD/S
29Yx0ieGG0p+LTTYI8DTD3TV1wIDAQABo4IClTCCApEwHQYDVR0OBBYEFJPGU7tc
3bBPG07Vv9bFPJw+bnRtMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw
RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5
Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMUEzQzAzNzI3
NkUyMTFFRDk4OTFBQTc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBABnv7QwDQYJKoZIhvcNAQELBQADggEBABizXMhJ1Zx1gC/g
2weh0PFGil79RWeA/xC6Rm8FB3WttcnqmuOimJcqNJqXdhrrJpajWpE1DU6xIkFP
CmgsZYZ+TZSCW/80yQ+occHaJnnseW6J/lzKsOhJkUAykrZf4J3CUQNpIQcprM1N
yLEQaj69ny/r1UaxFTpFkKWzc/lPtoqxBHiY1Aey6y5kmxCQt65Iz+sOiudYl6w2
O19L1enp6vDBBOrCcV69PXpUKjIdJFXpj1oBQ1SL+/cVJ1MB50z3IBKSZKCZnbzW
fxqL/JJ4jJz7e/bWknOcnl3RX/NJQ5KF7GCrD+TDR7CLMgVcs087/eRfLTVF11AL
p+T52lY=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:51 2023 by rpki-client on console-fra.rpki-client.org