Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/92A7655A04AA11ECA103E472C4F9AE02.roa
File: 92A7655A04AA11ECA103E472C4F9AE02.roa (raw, json)
Hash identifier: xqnFtzktAXsT+6ht+TnjXd8/f0doL2qzb78aWYO17xE=
Subject key identifier: 91:03:52:F5:39:16:1A:C7:9F:B8:C7:30:76:F0:98:82:EF:E1:4D:89
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 5863
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/92A7655A04AA11ECA103E472C4F9AE02.roa
Signing time: Fri 01 Jul 2022 11:01:49 +0000
ROA not before: Fri 01 Jul 2022 11:01:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 140171
IP address blocks: 103.80.152.0/24 maxlen: 24
103.80.153.0/24 maxlen: 24
103.80.154.0/23 maxlen: 24
103.144.192.0/24 maxlen: 24
103.156.200.0/23 maxlen: 24
103.159.162.0/24 maxlen: 24
103.161.32.0/24 maxlen: 24
103.161.33.0/24 maxlen: 24
103.163.158.0/24 maxlen: 24
103.176.142.0/24 maxlen: 24
103.187.166.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22627 (0x5863)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Jul 1 11:01:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=62bed41c-3a87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:d9:68:a7:02:e4:d6:e0:eb:90:f2:11:c4:a3:
25:6d:7d:af:67:37:8b:f6:e2:7b:23:4c:f5:27:f8:
5f:d1:7d:82:b3:a8:b3:5f:a7:9a:60:9f:b3:6d:94:
3e:8b:42:85:d9:c5:3b:fe:3c:8b:7a:eb:4b:51:cf:
3b:e5:75:e6:b5:13:2a:e0:33:4d:62:65:36:bf:98:
db:6b:a0:6a:56:21:a2:17:70:08:d4:da:5d:c7:e3:
cf:a1:c8:7c:6f:44:d8:51:23:b0:82:d2:a0:59:68:
ec:1a:c2:7f:5b:7b:f5:fd:33:b4:98:4c:bc:18:73:
57:51:f0:09:18:40:61:4a:7f:37:8b:9e:fa:00:9d:
c6:9e:21:d2:64:83:23:a3:49:32:f6:ea:cf:a0:85:
48:a2:5e:f9:8f:3a:14:64:d4:1c:3d:03:9f:16:b2:
f2:0b:e5:3d:16:93:ec:03:59:db:21:86:98:f3:7d:
bf:3f:9e:90:36:c9:11:05:09:ea:5e:03:41:42:52:
0a:02:ef:0a:d4:33:d3:8d:62:9d:03:4c:c6:23:ab:
e0:73:a1:d9:58:ae:0f:9d:ef:0d:19:f2:f6:81:78:
ab:36:0e:4f:fd:dd:a4:9a:4a:4c:4b:36:3a:c3:51:
76:77:96:a2:9f:46:dc:2e:39:57:14:f8:20:c4:67:
d0:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:03:52:F5:39:16:1A:C7:9F:B8:C7:30:76:F0:98:82:EF:E1:4D:89
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/92A7655A04AA11ECA103E472C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.80.152.0/22
103.144.192.0/24
103.156.200.0/23
103.159.162.0/24
103.161.32.0/23
103.163.158.0/24
103.176.142.0/24
103.187.166.0/23
Signature Algorithm: sha256WithRSAEncryption
0b:c7:9c:e1:4b:72:99:1a:1b:9d:fd:52:bc:d6:b9:d8:d9:3f:
c3:25:11:33:67:f0:d2:ca:83:1d:39:21:19:e8:35:1a:a0:0e:
3b:4d:cb:1e:f0:75:4f:22:44:39:10:6e:9e:5b:e7:99:1d:af:
12:2e:ec:ca:eb:b2:0f:2b:7f:28:c9:ac:b3:bd:b4:5a:df:5e:
4a:b6:4b:56:4e:78:d5:60:bf:95:80:2a:e2:c5:1b:32:30:ea:
36:27:2e:91:ef:41:d4:97:5c:80:a2:c3:bf:80:d7:30:97:c5:
54:fa:95:3b:27:2b:8f:6d:b3:30:bd:be:42:94:37:c0:3e:ce:
7b:4b:d8:0f:6f:97:e0:b7:1c:80:ad:ad:55:ef:7d:b5:4e:34:
0e:6d:71:b7:4d:d0:5b:ca:45:8d:1d:21:7b:ab:bf:60:7f:18:
5b:4d:1a:67:24:ac:3f:2b:f7:89:84:32:0e:ed:44:1c:33:8a:
bc:0e:66:a3:67:41:4f:77:2a:60:14:93:af:81:08:a8:1f:72:
aa:87:ab:9e:5a:6f:45:59:33:0d:1e:32:47:ee:58:22:1b:cb:
43:b1:36:b3:05:3b:40:06:73:84:57:96:1d:66:e0:7f:3d:4e:
f8:10:e0:2c:2c:ce:e5:67:8f:68:90:e0:10:ae:85:82:27:19:
d9:0f:69:5a
-----BEGIN CERTIFICATE-----
MIIFmzCCBIOgAwIBAgICWGMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz
RTNBQkM4MjMwHhcNMjIwNzAxMTEwMTQ5WhcNMjMwNzAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02MmJlZDQxYy0zYTg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA1dlopwLk1uDrkPIRxKMlbX2vZzeL9uJ7I0z1J/hf0X2Cs6izX6eaYJ+zbZQ+
i0KF2cU7/jyLeutLUc875XXmtRMq4DNNYmU2v5jba6BqViGiF3AI1Npdx+PPoch8
b0TYUSOwgtKgWWjsGsJ/W3v1/TO0mEy8GHNXUfAJGEBhSn83i576AJ3GniHSZIMj
o0ky9urPoIVIol75jzoUZNQcPQOfFrLyC+U9FpPsA1nbIYaY832/P56QNskRBQnq
XgNBQlIKAu8K1DPTjWKdA0zGI6vgc6HZWK4Pne8NGfL2gXirNg5P/d2kmkpMSzY6
w1F2d5ain0bcLjlXFPggxGfQaQIDAQABo4ICvzCCArswHQYDVR0OBBYEFJEDUvU5
FhrHn7jHMHbwmILv4U2JMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw
RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5
Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvOTJBNzY1NUEw
NEFBMTFFQ0ExMDNFNDcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSQYIKwYBBQUHAQcBAf8E
OjA4MDYEAgABMDADBAJnUJgDBABnkMADBAFnnMgDBABnn6IDBAFnoSADBABno54D
BABnsI4DBAFnu6YwDQYJKoZIhvcNAQELBQADggEBAAvHnOFLcpkaG539UrzWudjZ
P8MlETNn8NLKgx05IRnoNRqgDjtNyx7wdU8iRDkQbp5b55kdrxIu7Mrrsg8rfyjJ
rLO9tFrfXkq2S1ZOeNVgv5WAKuLFGzIw6jYnLpHvQdSXXICiw7+A1zCXxVT6lTsn
K49tszC9vkKUN8A+zntL2A9vl+C3HICtrVXvfbVONA5tcbdN0FvKRY0dIXurv2B/
GFtNGmckrD8r94mEMg7tRBwzirwOZqNnQU93KmAUk6+BCKgfcqqHq55ab0VZMw0e
MkfuWCIby0OxNrMFO0AGc4RXlh1m4H89TvgQ4CwszuVnj2iQ4BCuhYInGdkPaVo=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:56 2023 by rpki-client on console-fra.rpki-client.org