Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/84F3D632F15811ECAF20A34AC4F9AE02.roa
File: 84F3D632F15811ECAF20A34AC4F9AE02.roa (raw, json)
Hash identifier: rizHnWRcFfoQTVmbsrXIezw7izAHq8Xw5e1c++OPRQU=
Subject key identifier: 09:05:CC:39:8C:82:81:4F:55:AA:0F:9B:FE:F6:93:D6:4A:8A:32:F4
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 57C5
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/84F3D632F15811ECAF20A34AC4F9AE02.roa
Signing time: Tue 21 Jun 2022 11:51:44 +0000
ROA not before: Tue 21 Jun 2022 11:51:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 140545
IP address blocks: 103.189.214.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22469 (0x57c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Jun 21 11:51:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=62b1b0cf-dff3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:1f:b1:0e:c6:b2:36:94:2d:2b:26:ce:68:2b:
ff:48:11:d2:3f:0c:b5:fd:88:86:61:58:ae:f4:5d:
a0:a9:f9:56:34:e2:d7:c4:63:1d:9d:82:44:e2:24:
a9:b8:79:06:01:02:6a:82:cf:26:6c:25:ee:70:13:
39:b1:34:36:ec:61:ad:fa:a5:30:42:16:a7:cf:8b:
b6:30:bb:e5:e0:34:20:0b:bb:22:f5:24:09:34:97:
92:09:9c:81:e9:1f:3a:6f:17:52:fd:69:19:89:8d:
ed:71:8c:3c:8d:ae:8b:ea:b8:c8:ba:55:9a:7a:08:
b0:36:45:6f:86:e4:ad:da:99:ed:67:97:6b:55:e7:
f9:cf:7f:b4:fb:88:5b:42:a0:b6:e8:f4:43:37:2a:
f4:42:00:a3:9b:c5:10:3a:e1:4d:a4:68:05:fc:df:
8a:a2:c8:9d:a8:03:71:53:ff:9e:f5:d7:4f:f2:c4:
67:08:3d:33:61:8a:2e:b7:9d:02:4c:df:6a:fc:ee:
bd:ae:7a:be:3f:95:33:9a:8b:a7:2a:7e:6d:63:60:
d3:45:d0:2c:11:99:0f:f2:50:5f:1e:a4:08:85:d7:
c1:08:86:1b:48:d7:3e:de:93:aa:16:43:ee:44:4e:
51:3e:ea:b1:48:a3:ad:a9:b5:a7:2b:a1:04:9c:f9:
0b:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:05:CC:39:8C:82:81:4F:55:AA:0F:9B:FE:F6:93:D6:4A:8A:32:F4
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/84F3D632F15811ECAF20A34AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.189.214.0/23
Signature Algorithm: sha256WithRSAEncryption
40:4b:13:fe:87:85:7b:3f:58:7f:2e:ed:19:e2:a5:f0:14:0f:
87:27:fe:b4:67:04:c8:96:4a:78:47:a9:45:c0:c7:b1:a0:38:
7a:2f:4a:11:92:5c:f6:e6:90:9a:5b:c1:04:cb:60:42:fd:0c:
26:0f:84:46:96:8f:50:18:f9:a1:d8:bf:5c:33:b5:30:2f:a4:
d5:58:a9:37:c6:9e:14:a5:65:ed:3b:60:ab:a6:43:3f:b0:5e:
e7:9f:18:e2:58:33:81:af:14:35:69:13:46:c4:d9:ff:dc:22:
d4:18:35:c9:17:23:67:e1:f1:9e:b6:22:74:33:13:ea:8e:28:
a8:66:d2:26:c5:42:63:25:59:4d:3b:b0:a6:fe:b8:ac:3a:17:
79:e0:df:87:a5:13:f2:ce:c7:50:17:5e:30:cb:ba:ec:5f:82:
47:ce:a6:52:38:93:c7:41:01:08:f1:12:99:e0:f7:91:ba:9f:
e4:31:d9:21:c8:1a:c3:fc:2c:00:7a:00:43:43:d3:a3:17:90:
f2:c8:1b:df:13:8c:3d:6e:a5:d9:8e:d1:d1:3d:e2:70:ed:b2:
20:36:75:11:54:fb:f6:10:29:c9:f2:01:fe:7a:2e:72:4f:09:
48:2d:31:3f:7b:3b:39:26:7a:a2:d6:b6:96:25:3b:86:a6:c8:
af:38:49:4e
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICV8UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz
RTNBQkM4MjMwHhcNMjIwNjIxMTE1MTQ0WhcNMjMwNzAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02MmIxYjBjZi1kZmYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEArh+xDsayNpQtKybOaCv/SBHSPwy1/YiGYViu9F2gqflWNOLXxGMdnYJE4iSp
uHkGAQJqgs8mbCXucBM5sTQ27GGt+qUwQhanz4u2MLvl4DQgC7si9SQJNJeSCZyB
6R86bxdS/WkZiY3tcYw8ja6L6rjIulWaegiwNkVvhuSt2pntZ5drVef5z3+0+4hb
QqC26PRDNyr0QgCjm8UQOuFNpGgF/N+KosidqANxU/+e9ddP8sRnCD0zYYout50C
TN9q/O69rnq+P5UzmounKn5tY2DTRdAsEZkP8lBfHqQIhdfBCIYbSNc+3pOqFkPu
RE5RPuqxSKOtqbWnK6EEnPkLkQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAkFzDmM
goFPVaoPm/72k9ZKijL0MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw
RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5
Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvODRGM0Q2MzJG
MTU4MTFFQ0FGMjBBMzRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBAFnvdYwDQYJKoZIhvcNAQELBQADggEBAEBLE/6HhXs/WH8u
7RnipfAUD4cn/rRnBMiWSnhHqUXAx7GgOHovShGSXPbmkJpbwQTLYEL9DCYPhEaW
j1AY+aHYv1wztTAvpNVYqTfGnhSlZe07YKumQz+wXuefGOJYM4GvFDVpE0bE2f/c
ItQYNckXI2fh8Z62InQzE+qOKKhm0ibFQmMlWU07sKb+uKw6F3ng34elE/LOx1AX
XjDLuuxfgkfOplI4k8dBAQjxEpng95G6n+Qx2SHIGsP8LAB6AEND06MXkPLIG98T
jD1updmO0dE94nDtsiA2dRFU+/YQKcnyAf56LnJPCUgtMT97OzkmeqLWtpYlO4am
yK84SU4=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:56 2023 by rpki-client on console-fra.rpki-client.org