Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F3F723E8FC1E11EBB2AD4F6EC4F9AE02.roa
File: F3F723E8FC1E11EBB2AD4F6EC4F9AE02.roa (raw, json)
Hash identifier: W9gaBzda5AWHpa5/c8GF8nZUwQoS4xtwBScbBys0h5o=
Subject key identifier: 55:8A:EC:56:AA:B0:6E:1B:91:97:85:02:49:9E:EE:2A:A4:B5:67:B7
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 53CC
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F3F723E8FC1E11EBB2AD4F6EC4F9AE02.roa
Signing time: Mon 16 May 2022 04:26:57 +0000
ROA not before: Mon 16 May 2022 04:26:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 142519
IP address blocks: 103.170.58.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21452 (0x53cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: May 16 04:26:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6281d290-dd93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:21:94:01:10:1c:5c:c2:a1:81:8c:ce:ea:6d:
a2:88:89:93:93:61:50:1e:6d:52:39:c9:4b:aa:ac:
04:a4:49:e5:56:64:59:ca:57:21:6c:2a:3f:ea:fb:
d5:fe:5c:95:04:ee:b4:e0:97:d0:e0:4e:21:a8:80:
98:b4:5c:d2:66:82:61:e1:b7:61:51:24:3a:04:83:
24:57:67:e4:82:80:5d:de:3d:cf:35:b5:ac:02:f4:
d9:9f:77:04:b6:34:c9:6d:af:1e:5a:76:72:80:44:
85:4e:88:e7:23:d0:cc:e0:d6:7e:db:99:cc:c6:4c:
b0:b2:bd:52:a6:2b:bd:cb:71:a6:d3:82:4e:47:d1:
17:24:b2:65:4d:dc:a3:a3:10:b5:4e:3e:0d:70:12:
24:e5:44:00:60:13:1e:03:e4:29:6d:f7:c1:60:8d:
7e:2d:53:e5:79:60:b1:1d:f5:24:ad:63:30:ed:82:
18:84:17:08:0c:38:e1:ac:f8:fe:25:de:0b:76:8b:
a7:ca:b6:da:de:40:c7:c7:a5:ed:fe:1a:8f:ce:fe:
27:b6:75:59:a7:5c:79:33:80:80:32:3f:fe:d9:76:
c5:13:af:ed:09:74:e3:be:92:ce:a4:63:75:91:4e:
10:39:b6:c6:c3:32:2e:24:95:7f:39:c4:fd:f3:0e:
ff:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:8A:EC:56:AA:B0:6E:1B:91:97:85:02:49:9E:EE:2A:A4:B5:67:B7
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F3F723E8FC1E11EBB2AD4F6EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.170.58.0/23
Signature Algorithm: sha256WithRSAEncryption
4f:ae:7d:3a:2c:b5:2c:d1:d4:87:18:2a:ac:cb:4f:2d:3e:97:
a1:2c:a5:9d:d3:b7:64:4c:97:40:60:65:da:59:2e:5a:0c:ea:
d6:dd:8a:da:a7:34:35:9b:4a:c9:f6:2f:79:05:80:97:ca:5a:
1a:be:14:b6:60:12:69:9c:a5:22:e6:1a:38:e6:9a:3a:6b:09:
38:ba:2c:9f:87:28:64:33:5d:cf:f9:aa:b4:f5:37:0b:4b:2a:
cc:d5:00:c6:64:14:f4:06:3e:7d:d1:7b:50:37:36:5f:a2:7a:
fe:b6:c5:31:9c:a5:be:1a:be:bb:26:33:63:6c:99:b8:9c:c6:
3a:ac:d2:da:b6:c4:07:d2:de:18:9d:1f:c2:02:20:05:9f:65:
96:90:82:33:56:23:f8:2a:93:a5:41:d7:97:50:4b:09:13:e8:
22:c3:c7:5b:20:a6:e9:ab:9d:2a:dc:92:00:08:cf:cc:18:96:
20:61:d7:8b:f8:84:9a:a7:e9:dc:f6:6d:e4:27:66:fe:8e:83:
f4:c4:2a:71:a5:aa:b5:fa:de:87:a4:57:4e:0a:1a:1c:bc:ae:
61:aa:ac:60:72:2a:e7:42:e0:0f:3b:cc:26:64:80:c4:02:93:
c7:40:f7:10:00:f3:6a:b8:bf:9d:87:24:71:c7:5c:7f:c5:d7:
4d:59:60:d6
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICU8wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz
RTNBQkM4MjMwHhcNMjIwNTE2MDQyNjU2WhcNMjMwNzAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02MjgxZDI5MC1kZDkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAwyGUARAcXMKhgYzO6m2iiImTk2FQHm1SOclLqqwEpEnlVmRZylchbCo/6vvV
/lyVBO604JfQ4E4hqICYtFzSZoJh4bdhUSQ6BIMkV2fkgoBd3j3PNbWsAvTZn3cE
tjTJba8eWnZygESFTojnI9DM4NZ+25nMxkywsr1Spiu9y3Gm04JOR9EXJLJlTdyj
oxC1Tj4NcBIk5UQAYBMeA+QpbffBYI1+LVPleWCxHfUkrWMw7YIYhBcIDDjhrPj+
Jd4Ldounyrba3kDHx6Xt/hqPzv4ntnVZp1x5M4CAMj/+2XbFE6/tCXTjvpLOpGN1
kU4QObbGwzIuJJV/OcT98w7/bwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFWK7Faq
sG4bkZeFAkme7iqktWe3MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw
RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5
Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRjNGNzIzRThG
QzFFMTFFQkIyQUQ0RjZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBAFnqjowDQYJKoZIhvcNAQELBQADggEBAE+ufTostSzR1IcY
KqzLTy0+l6EspZ3Tt2RMl0BgZdpZLloM6tbditqnNDWbSsn2L3kFgJfKWhq+FLZg
EmmcpSLmGjjmmjprCTi6LJ+HKGQzXc/5qrT1NwtLKszVAMZkFPQGPn3Re1A3Nl+i
ev62xTGcpb4avrsmM2Nsmbicxjqs0tq2xAfS3hidH8ICIAWfZZaQgjNWI/gqk6VB
15dQSwkT6CLDx1sgpumrnSrckgAIz8wYliBh14v4hJqn6dz2beQnZv6Og/TEKnGl
qrX63oekV04KGhy8rmGqrGByKudC4A87zCZkgMQCk8dA9xAA82q4v52HJHHHXH/F
101ZYNY=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:58 2023 by rpki-client on console-fra.rpki-client.org