Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7D3D/233C0B4663BC11EC8B8C832AC4F9AE02/296B861263CC11EC8082F91AC4F9AE02.roa
File: 296B861263CC11EC8082F91AC4F9AE02.roa (raw, json)
Hash identifier: dA/CO8QawJynBMC7fu6oKPtOz57RGEqx/QsMOZknRWA=
Subject key identifier: FE:B7:E6:8F:23:36:55:A4:FC:88:D3:23:0D:19:3E:9D:74:48:05:22
Certificate issuer: /CN=A91B7D3D/serialNumber=8351A0A89458A47426A570A02901F8E6542E82E2
Certificate serial: 05
Authority key identifier: 83:51:A0:A8:94:58:A4:74:26:A5:70:A0:29:01:F8:E6:54:2E:82:E2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1GgqJRYpHQmpXCgKQH45lQuguI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B7D3D/233C0B4663BC11EC8B8C832AC4F9AE02/296B861263CC11EC8082F91AC4F9AE02.roa
Signing time: Thu 23 Dec 2021 08:41:46 +0000
ROA not before: Thu 23 Dec 2021 08:41:46 +0000
ROA not after: Thu 02 Mar 2023 00:00:00 +0000
asID: 141446
IP address blocks: 103.177.169.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5 (0x5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B7D3D/serialNumber=8351A0A89458A47426A570A02901F8E6542E82E2
Validity
Not Before: Dec 23 08:41:46 2021 GMT
Not After : Mar 2 00:00:00 2023 GMT
Subject: CN=61c4364a-c9c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:1e:9f:bf:c0:83:85:e8:72:7d:9e:8d:21:cf:
32:9d:66:e8:90:e3:07:7e:ab:6b:5f:2d:b8:ae:57:
86:4f:e9:12:27:0c:7c:bd:5d:7a:f7:43:3f:6a:a9:
6f:b2:08:90:9a:72:59:eb:a1:d9:a9:fa:d4:fc:11:
14:f1:3d:f3:c9:29:89:99:9f:b1:1b:74:9d:e9:e6:
13:48:15:bd:81:4d:ab:8a:d2:d7:e9:f2:60:b9:84:
47:23:3d:ad:40:94:be:da:22:70:31:54:df:6a:96:
36:3b:bb:5c:8e:68:15:46:1d:6e:af:ee:87:0f:ad:
fd:d1:3b:96:64:d8:5f:eb:56:29:de:c8:bd:31:67:
0a:f5:f8:a3:39:8a:40:55:50:2c:4f:5d:60:08:8b:
40:b5:e8:a6:58:21:bf:8b:95:96:32:7a:bc:0f:31:
bd:cb:ff:f0:91:67:54:a0:4b:a8:16:dd:f4:0b:d0:
20:aa:57:35:20:89:bc:f5:3d:41:cc:18:ac:bd:bb:
d4:fb:b2:42:a9:b6:55:61:0f:32:55:50:46:9d:bf:
98:1e:6e:bd:16:07:60:c7:b9:d5:a4:e3:14:02:4e:
58:ec:52:86:aa:e1:ab:21:c8:64:95:34:3d:a3:b2:
82:39:6a:4b:57:9d:5b:44:06:b9:c3:91:6a:de:87:
9b:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:B7:E6:8F:23:36:55:A4:FC:88:D3:23:0D:19:3E:9D:74:48:05:22
X509v3 Authority Key Identifier:
keyid:83:51:A0:A8:94:58:A4:74:26:A5:70:A0:29:01:F8:E6:54:2E:82:E2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B7D3D/233C0B4663BC11EC8B8C832AC4F9AE02/g1GgqJRYpHQmpXCgKQH45lQuguI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1GgqJRYpHQmpXCgKQH45lQuguI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7D3D/233C0B4663BC11EC8B8C832AC4F9AE02/296B861263CC11EC8082F91AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.177.169.0/24
Signature Algorithm: sha256WithRSAEncryption
c9:85:32:79:1a:29:a2:ff:72:69:f1:8f:63:98:50:f1:3a:7e:
4a:12:fe:06:f1:54:5a:5d:2a:a2:69:30:15:3f:cb:23:b8:a1:
89:6e:43:36:31:4c:a2:f9:b0:01:b6:42:91:65:0c:5f:cb:58:
fe:ec:d2:bd:fb:7f:fb:63:87:a8:50:0b:46:6a:f0:b8:fd:71:
a5:2d:5c:c9:c6:10:36:17:48:4d:fe:14:de:ae:5c:21:99:98:
52:77:6e:02:78:bb:3e:b8:7a:31:78:14:46:3d:5e:0e:17:b0:
80:8d:db:09:f2:b6:63:b0:48:ef:55:b3:37:c8:ca:e5:ca:22:
60:aa:81:14:fc:88:cc:9c:41:8d:45:7c:4b:6b:84:fa:0a:bc:
c4:e6:be:85:fa:19:79:58:84:8b:1a:09:a9:d0:b9:52:a8:2f:
b2:b6:76:f7:6f:ca:0f:24:d8:c8:c4:16:b7:97:5b:a6:64:ef:
96:1c:01:a8:4c:c0:46:ab:12:60:71:14:07:81:84:f4:0f:2a:
be:fe:ad:9d:78:eb:45:d7:61:ba:69:f7:e8:e2:58:5f:90:09:
11:00:cd:1a:98:81:88:4c:11:9b:e3:7f:3f:d8:8d:af:16:bf:
8e:d4:96:d9:84:c2:e7:df:1d:79:9f:ff:de:f0:56:99:c4:e4:
da:ee:a3:59
-----BEGIN CERTIFICATE-----
MIIFcDCCBFigAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC
N0QzRDExMC8GA1UEBRMoODM1MUEwQTg5NDU4QTQ3NDI2QTU3MEEwMjkwMUY4RTY1
NDJFODJFMjAeFw0yMTEyMjMwODQxNDZaFw0yMzAzMDIwMDAwMDBaMBgxFjAUBgNV
BAMTDTYxYzQzNjRhLWM5YzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC8Hp+/wIOF6HJ9no0hzzKdZuiQ4wd+q2tfLbiuV4ZP6RInDHy9XXr3Qz9qqW+y
CJCaclnrodmp+tT8ERTxPfPJKYmZn7EbdJ3p5hNIFb2BTauK0tfp8mC5hEcjPa1A
lL7aInAxVN9qljY7u1yOaBVGHW6v7ocPrf3RO5Zk2F/rVineyL0xZwr1+KM5ikBV
UCxPXWAIi0C16KZYIb+LlZYyerwPMb3L//CRZ1SgS6gW3fQL0CCqVzUgibz1PUHM
GKy9u9T7skKptlVhDzJVUEadv5gebr0WB2DHudWk4xQCTljsUoaq4ashyGSVND2j
soI5aktXnVtEBrnDkWreh5sfAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU/rfmjyM2
VaT8iNMjDRk+nXRIBSIwHwYDVR0jBBgwFoAUg1GgqJRYpHQmpXCgKQH45lQuguIw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3RDNELzIzM0MwQjQ2NjNC
QzExRUM4QjhDODMyQUM0RjlBRTAyL2cxR2dxSlJZcEhRbXBYQ2dLUUg0NWxRdWd1
SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvZzFHZ3FKUllwSFFtcFhDZ0tRSDQ1bFF1Z3VJLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw
C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC
N0QzRC8yMzNDMEI0NjYzQkMxMUVDOEI4QzgzMkFDNEY5QUUwMi8yOTZCODYxMjYz
Q0MxMUVDODA4MkY5MUFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v
cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEAGexqTANBgkqhkiG9w0BAQsFAAOCAQEAyYUyeRopov9yafGP
Y5hQ8Tp+ShL+BvFUWl0qomkwFT/LI7ihiW5DNjFMovmwAbZCkWUMX8tY/uzSvft/
+2OHqFALRmrwuP1xpS1cycYQNhdITf4U3q5cIZmYUnduAni7Prh6MXgURj1eDhew
gI3bCfK2Y7BI71WzN8jK5coiYKqBFPyIzJxBjUV8S2uE+gq8xOa+hfoZeViEixoJ
qdC5UqgvsrZ292/KDyTYyMQWt5dbpmTvlhwBqEzARqsSYHEUB4GE9A8qvv6tnXjr
Rddhumn36OJYX5AJEQDNGpiBiEwRm+N/P9iNrxa/jtSW2YTC598deZ//3vBWmcTk
2u6jWQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:57 2024 by rpki-client on console-ams.rpki-client.org