Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/EA4BBC92465A11EC8D375985C4F9AE02.roa
File: EA4BBC92465A11EC8D375985C4F9AE02.roa (raw, json)
Hash identifier: Gr11YHqVVj2biiLBtV3LARjT/mMebTKcBVO9i7xGQ2E=
Subject key identifier: ED:2F:48:57:A9:AB:AB:CA:0F:32:62:0A:18:D1:A9:C5:FF:07:6F:92
Certificate issuer: /CN=A91998BE/serialNumber=D0D0D6CD68770C38783BBEB841B112D0560174A2
Certificate serial: 0445
Authority key identifier: D0:D0:D6:CD:68:77:0C:38:78:3B:BE:B8:41:B1:12:D0:56:01:74:A2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/EA4BBC92465A11EC8D375985C4F9AE02.roa
Signing time: Wed 29 Dec 2021 23:18:20 +0000
ROA not before: Wed 29 Dec 2021 23:18:20 +0000
ROA not after: Thu 02 Mar 2023 00:00:00 +0000
asID: 30058
IP address blocks: 103.125.146.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1093 (0x445)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91998BE/serialNumber=D0D0D6CD68770C38783BBEB841B112D0560174A2
Validity
Not Before: Dec 29 23:18:20 2021 GMT
Not After : Mar 2 00:00:00 2023 GMT
Subject: CN=61ccecbc-a08a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:6f:36:c2:85:56:46:3a:db:26:8d:16:b7:28:
ce:36:6b:c5:b3:73:31:83:10:91:92:58:fd:0b:16:
83:59:9d:5c:b2:d1:a9:ea:1b:96:43:d2:7d:eb:51:
8c:e1:f1:68:73:3f:57:9a:5f:19:06:ad:e9:34:99:
b5:a2:41:50:09:90:07:98:65:82:ca:2d:05:c9:49:
14:7f:18:f7:eb:f1:c7:ec:b9:65:77:b9:48:f5:5d:
71:c0:0d:64:9c:72:52:b4:6e:8d:88:0e:bf:ec:a2:
f0:e1:b5:a8:92:48:55:08:5b:e6:f9:c0:95:27:a6:
e6:67:73:e2:4c:36:47:98:a0:cd:54:8e:90:ec:65:
d8:17:ac:64:21:a5:4f:96:41:c0:79:c6:99:4b:15:
57:22:c3:77:16:70:df:3e:0f:1c:2c:ee:30:43:17:
08:3f:5a:4c:b9:bf:63:95:5d:f0:dd:f5:10:50:b4:
62:ba:ea:32:91:69:bf:2a:a8:fa:92:fc:e9:86:b0:
90:87:dc:8b:5f:f2:32:53:d9:0d:37:49:f8:86:6b:
17:d3:8b:38:8a:cf:92:fd:7e:10:a4:db:19:0a:47:
5f:d6:ac:af:97:c5:ed:2b:09:20:2d:56:77:76:4c:
64:8e:89:30:3e:e0:5a:1c:15:85:8f:a6:40:d7:7f:
43:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:2F:48:57:A9:AB:AB:CA:0F:32:62:0A:18:D1:A9:C5:FF:07:6F:92
X509v3 Authority Key Identifier:
keyid:D0:D0:D6:CD:68:77:0C:38:78:3B:BE:B8:41:B1:12:D0:56:01:74:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/EA4BBC92465A11EC8D375985C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.125.146.0/24
Signature Algorithm: sha256WithRSAEncryption
be:08:24:51:f9:a5:8b:a5:4c:45:03:9f:94:3f:81:24:81:fe:
71:a0:09:db:0d:9c:ac:69:75:f4:d9:0b:cc:55:42:6a:a4:98:
ff:ab:35:06:b8:a2:6e:d9:18:0c:06:e4:c2:10:9e:77:64:46:
7e:4f:36:a3:f2:90:31:13:d0:e9:25:5b:4f:64:16:41:0f:5f:
bf:56:82:a7:40:5d:7d:c0:3d:5b:e2:0c:25:a0:2c:5d:0c:e7:
06:7a:aa:bc:79:40:ab:3b:3f:2f:21:5f:68:df:14:b8:0c:c5:
1b:7d:56:b0:a3:57:a8:0f:b6:a2:52:39:c0:30:ce:91:3d:f0:
b3:99:9a:04:ea:56:86:84:81:14:0d:ce:7e:2d:8a:f3:c4:72:
c1:92:89:76:22:0b:f0:33:c4:73:b3:f2:7f:34:85:21:9f:f3:
5e:8d:2f:f7:df:a3:c5:3e:05:78:a8:b0:59:1d:6e:bb:cb:c2:
78:e6:65:69:2c:9b:d6:c7:fc:6a:30:d6:83:5f:1e:90:f8:84:
7d:3f:60:f2:6b:9d:2a:4c:65:57:e6:97:cd:0b:17:81:c2:fa:
3b:1d:e8:98:f2:7a:97:f3:30:5f:bd:75:4a:ec:17:90:5b:c7:
9b:dc:86:77:19:1c:40:fc:c9:32:73:b0:11:3d:d8:bb:de:4a:
c2:69:a2:ca
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICBEUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OTk4QkUxMTAvBgNVBAUTKEQwRDBENkNENjg3NzBDMzg3ODNCQkVCODQxQjExMkQw
NTYwMTc0QTIwHhcNMjExMjI5MjMxODIwWhcNMjMwMzAyMDAwMDAwWjAYMRYwFAYD
VQQDEw02MWNjZWNiYy1hMDhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA2282woVWRjrbJo0WtyjONmvFs3MxgxCRklj9CxaDWZ1cstGp6huWQ9J961GM
4fFocz9Xml8ZBq3pNJm1okFQCZAHmGWCyi0FyUkUfxj36/HH7Llld7lI9V1xwA1k
nHJStG6NiA6/7KLw4bWokkhVCFvm+cCVJ6bmZ3PiTDZHmKDNVI6Q7GXYF6xkIaVP
lkHAecaZSxVXIsN3FnDfPg8cLO4wQxcIP1pMub9jlV3w3fUQULRiuuoykWm/Kqj6
kvzphrCQh9yLX/IyU9kNN0n4hmsX04s4is+S/X4QpNsZCkdf1qyvl8XtKwkgLVZ3
dkxkjokwPuBaHBWFj6ZA139DkwIDAQABo4IClTCCApEwHQYDVR0OBBYEFO0vSFep
q6vKDzJiChjRqcX/B2+SMB8GA1UdIwQYMBaAFNDQ1s1odww4eDu+uEGxEtBWAXSi
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OThCRS8xNTBFNTdDNkNG
NDkxMUVBOUNDOTM1M0VDNEY5QUUwMi8wTkRXeldoM0REaDRPNzY0UWJFUzBGWUJk
S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzBORFd6V2gzRERoNE83NjRRYkVTMEZZQmRLSS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OTk4QkUvMTUwRTU3QzZDRjQ5MTFFQTlDQzkzNTNFQzRGOUFFMDIvRUE0QkJDOTI0
NjVBMTFFQzhEMzc1OTg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBABnfZIwDQYJKoZIhvcNAQELBQADggEBAL4IJFH5pYulTEUD
n5Q/gSSB/nGgCdsNnKxpdfTZC8xVQmqkmP+rNQa4om7ZGAwG5MIQnndkRn5PNqPy
kDET0OklW09kFkEPX79WgqdAXX3APVviDCWgLF0M5wZ6qrx5QKs7Py8hX2jfFLgM
xRt9VrCjV6gPtqJSOcAwzpE98LOZmgTqVoaEgRQNzn4tivPEcsGSiXYiC/AzxHOz
8n80hSGf816NL/ffo8U+BXiosFkdbrvLwnjmZWksm9bH/Gow1oNfHpD4hH0/YPJr
nSpMZVfml80LF4HC+jsd6JjyepfzMF+9dUrsF5Bbx5vchncZHED8yTJzsBE92Lve
SsJposo=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:34 2024 by rpki-client on console-fra.rpki-client.org