Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9194D56/E5D407FE86B311E598F37F1AC4F9AE02/844764861E6E11EDB79D680DC4F9AE02.roa
File: 844764861E6E11EDB79D680DC4F9AE02.roa (raw, json)
Hash identifier: DhsIxAFKMl5n+YTNpakco0yz6xcMcup20iyqSbzXrxs=
Subject key identifier: 57:A8:38:8A:4B:01:C7:2C:6B:EF:06:AE:4A:FE:0F:A6:F6:A2:CC:48
Certificate issuer: /CN=A9194D56/serialNumber=7C5B7414E3CC804059BCA86CC5163A0743E41C85
Certificate serial: 2111
Authority key identifier: 7C:5B:74:14:E3:CC:80:40:59:BC:A8:6C:C5:16:3A:07:43:E4:1C:85
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fFt0FOPMgEBZvKhsxRY6B0PkHIU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9194D56/E5D407FE86B311E598F37F1AC4F9AE02/844764861E6E11EDB79D680DC4F9AE02.roa
Signing time: Wed 17 Aug 2022 20:52:33 +0000
ROA not before: Wed 17 Aug 2022 20:52:33 +0000
ROA not after: Fri 30 Dec 2022 00:00:00 +0000
asID: 24016
IP address blocks: 103.197.164.0/22 maxlen: 24
115.84.128.0/19 maxlen: 24
202.21.176.0/20 maxlen: 24
220.158.220.0/22 maxlen: 24
2401:8300::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8465 (0x2111)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9194D56/serialNumber=7C5B7414E3CC804059BCA86CC5163A0743E41C85
Validity
Not Before: Aug 17 20:52:33 2022 GMT
Not After : Dec 30 00:00:00 2022 GMT
Subject: CN=62fd5511-4052
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:0e:7a:fc:63:6d:55:49:11:ba:da:eb:6f:f9:
d5:af:22:89:4d:1b:ab:2e:eb:6c:85:3e:89:6f:80:
c3:2b:44:0b:35:54:e0:9d:07:41:64:84:60:dc:09:
e8:6f:15:eb:58:ee:41:1e:78:14:62:26:ae:2e:fe:
10:81:a2:8f:cd:1e:ac:d8:53:81:b0:65:cb:9d:27:
70:b6:84:b7:92:d6:59:d9:6e:45:18:7f:f2:56:5b:
44:7f:d0:6d:53:d2:7b:9b:56:3a:ed:af:85:4c:b0:
77:65:9c:87:ca:ea:34:11:3a:bb:7b:ad:d8:54:2c:
03:37:22:fb:01:61:46:17:7c:d4:8e:52:3e:b2:51:
ca:83:d6:21:b4:f4:e5:23:81:ea:08:13:2c:c7:79:
46:22:24:e2:04:37:27:e0:0a:35:fb:4a:8a:3d:c4:
54:a0:36:56:4e:21:c1:4e:80:62:93:c7:96:f8:3d:
07:f7:bd:83:40:2e:2e:f6:71:af:84:dd:db:5b:e7:
24:43:c8:3c:76:0a:ee:ae:be:e6:4a:fa:5d:eb:45:
ef:bb:f4:10:2f:81:22:26:5f:b8:5e:76:8f:ee:d0:
f9:ee:81:63:9f:73:55:69:4b:61:6f:38:63:8f:44:
32:50:ce:c0:d6:65:f3:d7:ef:91:ce:31:ea:7b:b4:
26:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:A8:38:8A:4B:01:C7:2C:6B:EF:06:AE:4A:FE:0F:A6:F6:A2:CC:48
X509v3 Authority Key Identifier:
keyid:7C:5B:74:14:E3:CC:80:40:59:BC:A8:6C:C5:16:3A:07:43:E4:1C:85
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9194D56/E5D407FE86B311E598F37F1AC4F9AE02/fFt0FOPMgEBZvKhsxRY6B0PkHIU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fFt0FOPMgEBZvKhsxRY6B0PkHIU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194D56/E5D407FE86B311E598F37F1AC4F9AE02/844764861E6E11EDB79D680DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.197.164.0/22
115.84.128.0/19
202.21.176.0/20
220.158.220.0/22
IPv6:
2401:8300::/32
Signature Algorithm: sha256WithRSAEncryption
66:cc:9a:3b:ca:fd:46:5e:0f:f1:e2:a9:06:4d:87:c0:2d:36:
6d:ed:08:17:61:c6:09:04:22:67:4c:9e:e4:bb:55:43:74:a6:
a0:b1:5b:30:36:23:99:3d:8f:f1:9d:c0:e4:04:3f:2d:ab:99:
fd:f6:c0:e5:b6:b5:f0:58:75:67:f2:a5:93:b2:1f:ef:04:00:
d8:b0:00:59:38:aa:82:67:c0:80:f3:81:f7:8c:5b:64:29:a8:
38:6a:a8:c8:b4:c9:3d:01:7c:16:7c:d3:5b:f8:bc:c1:d5:30:
e3:17:ad:2b:4a:79:ef:75:18:94:80:5e:13:05:c2:bf:52:b5:
72:27:4c:53:31:4f:fd:59:b6:72:4b:5d:ba:18:67:04:9e:35:
11:92:c8:d4:37:b9:f2:3e:b7:d7:e7:19:9e:78:4e:44:72:f2:
9e:05:c9:14:21:2e:27:7c:19:79:82:dc:f2:19:cf:ba:99:1a:
18:22:6c:0a:ed:48:1e:fe:b2:fb:87:5a:bb:51:91:e7:96:e1:
f0:32:d9:bd:4a:cb:9b:a4:d4:94:f5:c5:70:88:a3:8a:4e:3d:
f5:e5:47:99:ae:31:b2:bf:79:f4:00:4b:63:e5:f2:ee:f1:77:
9c:50:68:92:cf:54:9a:36:f1:fe:d8:3a:2a:07:32:27:41:85:
d9:6c:eb:1a
-----BEGIN CERTIFICATE-----
MIIFkjCCBHqgAwIBAgICIREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OTRENTYxMTAvBgNVBAUTKDdDNUI3NDE0RTNDQzgwNDA1OUJDQTg2Q0M1MTYzQTA3
NDNFNDFDODUwHhcNMjIwODE3MjA1MjMzWhcNMjIxMjMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02MmZkNTUxMS00MDUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA7Q56/GNtVUkRutrrb/nVryKJTRurLutshT6Jb4DDK0QLNVTgnQdBZIRg3Ano
bxXrWO5BHngUYiauLv4QgaKPzR6s2FOBsGXLnSdwtoS3ktZZ2W5FGH/yVltEf9Bt
U9J7m1Y67a+FTLB3ZZyHyuo0ETq7e63YVCwDNyL7AWFGF3zUjlI+slHKg9YhtPTl
I4HqCBMsx3lGIiTiBDcn4Ao1+0qKPcRUoDZWTiHBToBik8eW+D0H972DQC4u9nGv
hN3bW+ckQ8g8dgrurr7mSvpd60Xvu/QQL4EiJl+4XnaP7tD57oFjn3NVaUthbzhj
j0QyUM7A1mXz1++RzjHqe7QmAwIDAQABo4ICtjCCArIwHQYDVR0OBBYEFFeoOIpL
Accsa+8Grkr+D6b2osxIMB8GA1UdIwQYMBaAFHxbdBTjzIBAWbyobMUWOgdD5ByF
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEQ1Ni9FNUQ0MDdGRTg2
QjMxMUU1OThGMzdGMUFDNEY5QUUwMi9mRnQwRk9QTWdFQlp2S2hzeFJZNkIwUGtI
SVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2ZGdDBGT1BNZ0VCWnZLaHN4Ulk2QjBQa0hJVS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OTRENTYvRTVENDA3RkU4NkIzMTFFNTk4RjM3RjFBQzRGOUFFMDIvODQ0NzY0ODYx
RTZFMTFFREI3OUQ2ODBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E
MTAvMB4EAgABMBgDBAJnxaQDBAVzVIADBATKFbADBALcntwwDQQCAAIwBwMFACQB
gwAwDQYJKoZIhvcNAQELBQADggEBAGbMmjvK/UZeD/HiqQZNh8AtNm3tCBdhxgkE
ImdMnuS7VUN0pqCxWzA2I5k9j/GdwOQEPy2rmf32wOW2tfBYdWfypZOyH+8EANiw
AFk4qoJnwIDzgfeMW2QpqDhqqMi0yT0BfBZ801v4vMHVMOMXrStKee91GJSAXhMF
wr9StXInTFMxT/1ZtnJLXboYZwSeNRGSyNQ3ufI+t9fnGZ54TkRy8p4FyRQhLid8
GXmC3PIZz7qZGhgibArtSB7+svuHWrtRkeeW4fAy2b1Ky5uk1JT1xXCIo4pOPfXl
R5muMbK/efQAS2Pl8u7xd5xQaJLPVJo28f7YOioHMidBhdls6xo=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:59 2023 by rpki-client on console-fra.rpki-client.org