Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC269/BA676E30CFE511EC94BBC75AC4F9AE02/31C7B62CD0A611ECB58A1C77C4F9AE02.roa
File: 31C7B62CD0A611ECB58A1C77C4F9AE02.roa (raw, json)
Hash identifier: MshXhcfmWLTd6Dh2pQcKcI/qHIMM0RKKm0AwbLQWjnM=
Subject key identifier: 2D:75:04:CF:7A:A7:E1:04:52:25:4A:31:F4:51:52:CD:22:A0:F7:14
Certificate issuer: /CN=A91BC269/serialNumber=30E2061F7C20BD843BEE5372C1321C35FBB1D3EF
Certificate serial: 01EB
Authority key identifier: 30:E2:06:1F:7C:20:BD:84:3B:EE:53:72:C1:32:1C:35:FB:B1:D3:EF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOIGH3wgvYQ77lNywTIcNfux0-8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91BC269/BA676E30CFE511EC94BBC75AC4F9AE02/31C7B62CD0A611ECB58A1C77C4F9AE02.roa
Signing time: Mon 07 Aug 2023 21:38:17 +0000
ROA not before: Mon 07 Aug 2023 21:38:17 +0000
ROA not after: Sat 30 Dec 2023 00:00:00 +0000
asID: 55850
IP address blocks: 14.137.0.0/19 maxlen: 19
101.53.192.0/19 maxlen: 19
101.53.220.0/22 maxlen: 22
103.26.202.0/24 maxlen: 24
103.173.250.0/23 maxlen: 23
103.241.56.0/22 maxlen: 22
115.69.160.0/19 maxlen: 19
116.251.128.0/18 maxlen: 18
116.251.192.0/21 maxlen: 21
116.251.200.0/22 maxlen: 22
124.155.224.0/20 maxlen: 20
150.107.172.0/22 maxlen: 22
180.148.96.0/19 maxlen: 19
202.74.33.0/24 maxlen: 24
203.94.32.0/19 maxlen: 19
203.124.16.0/21 maxlen: 21
2406:5a00::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 491 (0x1eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BC269/serialNumber=30E2061F7C20BD843BEE5372C1321C35FBB1D3EF
Validity
Not Before: Aug 7 21:38:17 2023 GMT
Not After : Dec 30 00:00:00 2023 GMT
Subject: CN=64d16448-8064
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:f2:d0:6b:9c:c9:08:ba:43:2a:8d:f0:26:7c:
3d:e2:ba:50:af:ce:04:8d:af:53:94:4a:99:5b:90:
51:c6:7c:73:dc:bc:4f:75:94:d2:eb:2d:93:b6:f1:
52:a0:60:ad:61:24:cb:fb:5e:3f:96:9c:0e:56:9a:
94:1a:2d:07:bb:21:11:97:ae:81:80:10:79:6b:90:
e4:62:9d:23:16:19:54:fe:ae:6f:ec:ef:7d:49:40:
71:be:45:52:35:13:77:d2:23:2b:b7:db:c5:ab:9b:
59:c1:a5:10:20:0a:b1:f5:54:b1:73:3b:d3:84:dc:
ac:70:f6:e8:d4:33:5f:b2:d5:92:a8:34:37:fa:56:
52:b1:7a:18:c1:36:d3:88:7b:ec:53:ae:70:1e:0c:
0a:4f:73:4e:f8:82:56:7d:35:c8:e7:10:3e:7c:34:
16:a2:26:1a:6e:19:3a:f8:b8:39:99:3e:21:4a:2b:
e4:6d:73:e8:f5:80:89:be:d4:7d:97:c5:50:26:f4:
87:63:49:c4:95:8a:23:7f:26:36:94:bf:87:f0:c3:
6e:ea:35:0b:23:f8:d3:5f:2b:71:dd:5c:3f:46:a4:
44:6d:26:bd:0b:93:de:29:e5:00:e3:22:1c:9c:85:
29:66:7b:ab:32:ca:f6:50:2d:e1:42:e5:08:22:9a:
03:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:75:04:CF:7A:A7:E1:04:52:25:4A:31:F4:51:52:CD:22:A0:F7:14
X509v3 Authority Key Identifier:
keyid:30:E2:06:1F:7C:20:BD:84:3B:EE:53:72:C1:32:1C:35:FB:B1:D3:EF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91BC269/BA676E30CFE511EC94BBC75AC4F9AE02/MOIGH3wgvYQ77lNywTIcNfux0-8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOIGH3wgvYQ77lNywTIcNfux0-8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC269/BA676E30CFE511EC94BBC75AC4F9AE02/31C7B62CD0A611ECB58A1C77C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
14.137.0.0/19
101.53.192.0/19
103.26.202.0/24
103.173.250.0/23
103.241.56.0/22
115.69.160.0/19
116.251.128.0-116.251.203.255
124.155.224.0/20
150.107.172.0/22
180.148.96.0/19
202.74.33.0/24
203.94.32.0/19
203.124.16.0/21
IPv6:
2406:5a00::/32
Signature Algorithm: sha256WithRSAEncryption
3a:84:21:15:8d:a1:fb:2c:73:26:86:26:c4:7b:7e:14:a7:88:
e6:d5:43:3c:0f:1e:e3:67:02:f4:50:34:f6:c4:aa:1e:06:80:
20:09:eb:13:7b:62:52:6c:43:2c:05:c6:33:04:40:e3:c4:e6:
8f:14:4c:77:e4:3f:69:a0:13:76:01:19:dd:cb:56:fd:3c:9d:
b8:bc:86:1d:f0:c0:b3:68:b0:a6:4f:8a:41:41:15:a7:fe:ca:
66:95:05:51:0c:b1:fa:ee:30:b2:df:aa:e5:8e:da:bb:7c:15:
74:6b:c4:86:f3:3d:be:ca:55:65:a0:36:6c:b3:75:0f:cd:99:
c8:23:ff:2f:f1:06:42:af:82:78:d3:bc:a0:fe:b0:a1:91:29:
01:dd:f9:5a:18:07:a3:75:d1:09:f4:5e:5f:ce:5d:f5:45:96:
81:81:19:be:7e:64:0e:68:a0:7e:94:67:fb:28:9d:e8:1b:d2:
23:d5:59:27:57:be:77:6c:d8:de:6d:91:44:01:d5:24:95:ff:
b5:74:48:f4:d9:88:3a:44:5f:5b:3a:37:2a:ff:b5:0f:29:a2:
12:2d:cd:cb:c5:f4:70:be:08:0d:53:ff:93:2d:c3:04:56:74:
6d:4a:79:32:89:c5:97:a1:d8:ae:af:cd:64:37:24:e4:2a:1c:
14:de:ee:e7
-----BEGIN CERTIFICATE-----
MIIF0DCCBLigAwIBAgICAeswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QkMyNjkxMTAvBgNVBAUTKDMwRTIwNjFGN0MyMEJEODQzQkVFNTM3MkMxMzIxQzM1
RkJCMUQzRUYwHhcNMjMwODA3MjEzODE3WhcNMjMxMjMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NGQxNjQ0OC04MDY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAq/LQa5zJCLpDKo3wJnw94rpQr84Eja9TlEqZW5BRxnxz3LxPdZTS6y2TtvFS
oGCtYSTL+14/lpwOVpqUGi0HuyERl66BgBB5a5DkYp0jFhlU/q5v7O99SUBxvkVS
NRN30iMrt9vFq5tZwaUQIAqx9VSxczvThNyscPbo1DNfstWSqDQ3+lZSsXoYwTbT
iHvsU65wHgwKT3NO+IJWfTXI5xA+fDQWoiYabhk6+Lg5mT4hSivkbXPo9YCJvtR9
l8VQJvSHY0nElYojfyY2lL+H8MNu6jULI/jTXytx3Vw/RqREbSa9C5PeKeUA4yIc
nIUpZnurMsr2UC3hQuUIIpoDUQIDAQABo4IC9DCCAvAwHQYDVR0OBBYEFC11BM96
p+EEUiVKMfRRUs0ioPcUMB8GA1UdIwQYMBaAFDDiBh98IL2EO+5TcsEyHDX7sdPv
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzI2OS9CQTY3NkUzMENG
RTUxMUVDOTRCQkM3NUFDNEY5QUUwMi9NT0lHSDN3Z3ZZUTc3bE55d1RJY05mdXgw
LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL01PSUdIM3dndllRNzdsTnl3VEljTmZ1eDAtOC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QkMyNjkvQkE2NzZFMzBDRkU1MTFFQzk0QkJDNzVBQzRGOUFFMDIvMzFDN0I2MkNE
MEE2MTFFQ0I1OEExQzc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwfgYIKwYBBQUHAQcBAf8E
bzBtMFwEAgABMFYDBAUOiQADBAVlNcADBABnGsoDBAFnrfoDBAJn8TgDBAVzRaAw
DAMEB3T7gAMEAnT7yAMEBHyb4AMEApZrrAMEBbSUYAMEAMpKIQMEBcteIAMEA8t8
EDANBAIAAjAHAwUAJAZaADANBgkqhkiG9w0BAQsFAAOCAQEAOoQhFY2h+yxzJoYm
xHt+FKeI5tVDPA8e42cC9FA09sSqHgaAIAnrE3tiUmxDLAXGMwRA48TmjxRMd+Q/
aaATdgEZ3ctW/TyduLyGHfDAs2iwpk+KQUEVp/7KZpUFUQyx+u4wst+q5Y7au3wV
dGvEhvM9vspVZaA2bLN1D82ZyCP/L/EGQq+CeNO8oP6woZEpAd35WhgHo3XRCfRe
X85d9UWWgYEZvn5kDmigfpRn+yid6BvSI9VZJ1e+d2zY3m2RRAHVJJX/tXRI9NmI
OkRfWzo3Kv+1DymiEi3Ny8X0cL4IDVP/ky3DBFZ0bUp5MonFl6HYrq/NZDck5Coc
FN7u5w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:39 2024 by rpki-client on console-fra.rpki-client.org