Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/BFF3DC5E2E7611EDB7EC6C6AC4F9AE02.roa
File: BFF3DC5E2E7611EDB7EC6C6AC4F9AE02.roa (raw, json)
Hash identifier: hqD0q92cH2+km2OzqusP1dD4KZhe9Z22HB3U7FfQubo=
Subject key identifier: 4C:17:4D:59:9D:CB:1F:DF:1F:51:91:3C:AF:0A:10:CC:45:87:87:37
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 5CC2
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/BFF3DC5E2E7611EDB7EC6C6AC4F9AE02.roa
Signing time: Wed 07 Sep 2022 06:31:49 +0000
ROA not before: Wed 07 Sep 2022 06:31:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 149541
IP address blocks: 103.181.148.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23746 (0x5cc2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Sep 7 06:31:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=63183ad4-13eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:12:d7:89:70:84:13:f4:71:ef:48:d1:dc:0d:
0b:71:67:19:96:a5:f9:a2:48:19:ab:27:54:e6:74:
25:38:99:b1:bb:d3:65:f3:e2:39:c3:21:43:16:7b:
dc:12:ee:47:c7:1c:7b:65:fc:f1:cd:f0:ae:fc:26:
8a:6c:94:b2:ad:59:70:60:4f:6a:12:83:b1:18:8f:
b2:43:f6:6c:62:f3:33:0e:ce:6c:16:83:32:70:8b:
6e:d5:56:de:83:07:e2:c4:a1:23:e0:33:32:af:87:
8b:55:f8:5f:64:d1:06:9f:e8:54:d9:8d:77:02:69:
2c:e4:3d:84:fc:ff:92:fb:55:74:b8:93:83:08:c8:
c7:ed:ed:64:1a:b8:7b:d4:65:50:85:4e:40:2f:ee:
1a:7d:51:1a:df:35:0e:c9:bb:a0:e2:e9:6d:c1:89:
1d:fa:12:d2:d8:b5:e8:bd:a6:03:fd:5d:42:2d:02:
52:e2:1b:07:1c:05:bc:69:50:49:da:9e:02:69:e7:
cd:1d:74:93:33:e5:6c:e3:78:f2:7d:bd:d2:9e:7e:
ea:c9:ac:68:f5:53:e2:a3:f6:08:23:27:72:82:d6:
d6:6c:82:93:c1:3f:04:2e:8c:ec:82:89:9b:a6:6a:
83:e8:6b:ab:18:52:08:a1:11:8b:08:05:1a:0c:2b:
70:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:17:4D:59:9D:CB:1F:DF:1F:51:91:3C:AF:0A:10:CC:45:87:87:37
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/BFF3DC5E2E7611EDB7EC6C6AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.181.148.0/23
Signature Algorithm: sha256WithRSAEncryption
63:c0:6e:30:b4:65:d5:5a:90:97:18:6c:75:bd:16:fa:a0:90:
bb:68:1a:e5:4e:67:5b:31:b8:6c:23:6a:4b:5c:6f:bb:42:20:
d6:01:25:39:fd:1e:6d:19:41:e4:6b:28:bc:2e:ad:6d:c5:13:
83:b8:30:30:14:83:6e:a6:78:4f:4a:04:52:a0:52:65:81:c9:
0c:4b:12:cf:15:a3:ba:36:e3:c1:df:e0:a2:97:8d:67:67:a5:
9f:60:cf:7d:a9:d7:0e:e5:16:aa:56:d2:ae:57:c3:6b:af:79:
fe:12:ba:c4:77:7e:a2:30:30:4e:12:df:8b:fc:3a:55:a3:79:
d2:06:d1:06:aa:e0:1e:ac:03:9b:d0:5a:19:77:53:d5:19:a9:
84:c2:78:db:b9:ba:e0:ed:13:9a:f0:b6:fb:c5:24:ad:28:04:
cc:25:f3:43:43:f5:74:f6:47:b5:2c:40:81:c9:d9:15:7b:53:
7b:86:5b:b9:58:fd:10:90:59:c6:37:b4:fd:a8:50:27:b8:2d:
09:f1:a7:ca:7f:a8:a0:ed:99:a9:40:33:fb:1e:71:8e:6e:41:
a8:29:d1:75:e7:39:f3:83:96:50:29:72:e3:55:99:b8:9a:f0:
10:f6:d6:4b:cb:97:67:d8:c7:97:fc:9e:b2:4a:c9:b0:c8:61:
2f:da:f8:17
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICXMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz
RTNBQkM4MjMwHhcNMjIwOTA3MDYzMTQ4WhcNMjMwNzAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02MzE4M2FkNC0xM2ViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAwxLXiXCEE/Rx70jR3A0LcWcZlqX5okgZqydU5nQlOJmxu9Nl8+I5wyFDFnvc
Eu5Hxxx7ZfzxzfCu/CaKbJSyrVlwYE9qEoOxGI+yQ/ZsYvMzDs5sFoMycItu1Vbe
gwfixKEj4DMyr4eLVfhfZNEGn+hU2Y13Amks5D2E/P+S+1V0uJODCMjH7e1kGrh7
1GVQhU5AL+4afVEa3zUOybug4ultwYkd+hLS2LXovaYD/V1CLQJS4hsHHAW8aVBJ
2p4CaefNHXSTM+Vs43jyfb3Snn7qyaxo9VPio/YIIydygtbWbIKTwT8ELozsgomb
pmqD6GurGFIIoRGLCAUaDCtwlQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEwXTVmd
yx/fH1GRPK8KEMxFh4c3MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw
RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5
Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQkZGM0RDNUUy
RTc2MTFFREI3RUM2QzZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBAFntZQwDQYJKoZIhvcNAQELBQADggEBAGPAbjC0ZdVakJcY
bHW9FvqgkLtoGuVOZ1sxuGwjaktcb7tCINYBJTn9Hm0ZQeRrKLwurW3FE4O4MDAU
g26meE9KBFKgUmWByQxLEs8Vo7o248Hf4KKXjWdnpZ9gz32p1w7lFqpW0q5Xw2uv
ef4SusR3fqIwME4S34v8OlWjedIG0Qaq4B6sA5vQWhl3U9UZqYTCeNu5uuDtE5rw
tvvFJK0oBMwl80ND9XT2R7UsQIHJ2RV7U3uGW7lY/RCQWcY3tP2oUCe4LQnxp8p/
qKDtmalAM/secY5uQagp0XXnOfODllApcuNVmbia8BD21kvLl2fYx5f8nrJKybDI
YS/a+Bc=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:57 2023 by rpki-client on console-fra.rpki-client.org