Route Origin Authorization

$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF5C2/B37E3CA8E74C11EABF5CAA1EC4F9AE02/9332A95E4AB811EC9FA7F33FC4F9AE02.roa
File:                     9332A95E4AB811EC9FA7F33FC4F9AE02.roa (raw, json)
Hash identifier:          UByonetQj7x3HW+5vvZvf6G1tMLshA/yKwbyet634hs=
Subject key identifier:   07:E5:43:AA:80:0C:6B:C8:BB:A3:9A:F4:13:F1:BC:0E:1D:AF:C0:DD
Certificate issuer:       /CN=A91BF5C2/serialNumber=AB24AF5DBDC3AF0647853DAB199FA49FEB6D0735
Certificate serial:       05FE
Authority key identifier: AB:24:AF:5D:BD:C3:AF:06:47:85:3D:AB:19:9F:A4:9F:EB:6D:07:35
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qySvXb3DrwZHhT2rGZ-kn-ttBzU.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91BF5C2/B37E3CA8E74C11EABF5CAA1EC4F9AE02/9332A95E4AB811EC9FA7F33FC4F9AE02.roa
Signing time:             Mon 12 Sep 2022 11:19:22 +0000
ROA not before:           Mon 12 Sep 2022 11:19:22 +0000
ROA not after:            Sat 30 Dec 2023 00:00:00 +0000
asID:                     35251
IP address blocks:        103.129.197.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1534 (0x5fe)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91BF5C2/serialNumber=AB24AF5DBDC3AF0647853DAB199FA49FEB6D0735
        Validity
            Not Before: Sep 12 11:19:22 2022 GMT
            Not After : Dec 30 00:00:00 2023 GMT
        Subject: CN=631f15b9-5888
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:b1:d9:c5:2f:fd:91:3a:02:36:bf:4f:e4:9d:
                    4e:31:88:eb:51:d6:c9:90:8f:43:cf:d1:f9:72:97:
                    07:6c:8f:44:ca:ab:d1:18:77:45:cf:f3:fd:19:68:
                    5b:dd:4e:c9:fa:6c:17:d6:5a:3d:cd:57:17:57:05:
                    ab:30:75:52:8a:ea:55:91:03:6e:c7:ff:2a:eb:d7:
                    be:86:47:4b:cf:7f:4a:05:c2:5c:50:8b:51:aa:00:
                    cc:c1:2c:18:fd:8f:ed:2b:16:c0:ae:00:02:0e:7f:
                    90:96:f3:7c:46:a7:81:3e:97:01:a9:d1:e3:8a:87:
                    18:a8:46:9e:74:5e:ac:7f:8c:bf:fd:86:27:8a:a0:
                    2b:30:11:2e:1d:94:80:0f:63:f0:bc:af:e0:20:fc:
                    96:40:c3:e6:a2:ec:f7:df:0f:bc:ae:5e:4a:d3:62:
                    87:ff:06:f5:a9:66:19:91:8f:7e:33:19:0a:db:cd:
                    86:ad:a0:42:94:55:c8:c5:b3:79:04:83:f0:5d:d3:
                    0c:b2:c3:ea:2d:bc:d0:43:b7:99:9e:aa:37:5e:79:
                    a9:71:56:84:cc:8a:34:eb:a8:2a:b4:f2:ce:45:fc:
                    a0:8c:40:5e:a5:94:ae:41:93:f9:24:41:a7:8a:61:
                    f8:a7:6c:3f:cf:5b:cc:d8:a9:f9:59:5d:62:ca:f4:
                    f2:b1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                07:E5:43:AA:80:0C:6B:C8:BB:A3:9A:F4:13:F1:BC:0E:1D:AF:C0:DD
            X509v3 Authority Key Identifier:
                keyid:AB:24:AF:5D:BD:C3:AF:06:47:85:3D:AB:19:9F:A4:9F:EB:6D:07:35

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91BF5C2/B37E3CA8E74C11EABF5CAA1EC4F9AE02/qySvXb3DrwZHhT2rGZ-kn-ttBzU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qySvXb3DrwZHhT2rGZ-kn-ttBzU.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF5C2/B37E3CA8E74C11EABF5CAA1EC4F9AE02/9332A95E4AB811EC9FA7F33FC4F9AE02.roa
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.129.197.0/24

    Signature Algorithm: sha256WithRSAEncryption
         8a:2d:3d:4e:85:3c:9a:f1:bb:77:f4:d9:9a:8e:fa:65:e6:4f:
         87:34:e9:7f:90:6b:4f:bf:66:b2:1a:55:27:43:dd:e5:d8:bd:
         15:42:ac:26:e6:e7:26:30:dd:28:96:d6:50:c9:ab:47:27:57:
         12:1f:16:8c:96:e2:e3:7d:7d:bc:9e:f1:8f:07:34:c1:c2:58:
         a6:54:eb:27:8f:11:83:08:89:1e:0b:c1:66:d0:15:a5:f6:b9:
         ef:ca:01:ae:14:53:fc:83:a1:fa:10:2a:bb:ee:8e:45:c2:87:
         2a:e8:60:11:d3:79:75:f3:66:8c:dd:fe:6b:0d:dd:99:9f:61:
         80:30:f0:a6:e1:29:c8:17:41:31:43:98:1c:36:c3:f1:35:ce:
         db:02:2c:a5:48:8e:99:19:30:9c:02:35:6f:a0:6b:77:88:be:
         84:15:c8:80:5b:a1:5a:eb:58:58:3f:95:64:99:22:3e:b7:d3:
         3f:86:84:8b:dc:33:5c:a5:01:48:63:62:5c:bf:96:79:26:2a:
         6c:65:7a:21:5b:31:40:e4:2e:66:4b:b6:89:2b:fd:65:cb:97:
         0f:c9:65:23:84:50:b3:fc:aa:03:83:db:3e:ef:f0:ef:de:02:
         2f:2e:1b:8b:28:dc:4e:89:2a:2d:6d:09:04:03:cb:66:47:31:
         16:fb:ca:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:39 2024 by rpki-client on console-fra.rpki-client.org