Route Origin Authorization

$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0741/77C9168EBD1211E990F4BF2CC4F9AE02/2723D0A4198C11EEA06C1429C4F9AE02.roa
File:                     2723D0A4198C11EEA06C1429C4F9AE02.roa (raw, json)
Hash identifier:          oDWUQNEL6gOVajn3psRWOe6clukoKu/TtJ5bEFR7J94=
Subject key identifier:   64:C2:8C:A2:37:E6:F8:81:31:B6:B1:23:54:94:32:F5:5B:7E:47:AB
Certificate issuer:       /CN=A91C0741/serialNumber=37EAEDA4242D50962B87B4A207AC4C344B33060C
Certificate serial:       0C93
Authority key identifier: 37:EA:ED:A4:24:2D:50:96:2B:87:B4:A2:07:AC:4C:34:4B:33:06:0C
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N-rtpCQtUJYrh7SiB6xMNEszBgw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91C0741/77C9168EBD1211E990F4BF2CC4F9AE02/2723D0A4198C11EEA06C1429C4F9AE02.roa
Signing time:             Mon 03 Jul 2023 10:27:04 +0000
ROA not before:           Mon 03 Jul 2023 10:27:04 +0000
ROA not after:            Wed 01 May 2024 00:00:00 +0000
asID:                     8100
IP address blocks:        103.83.192.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3219 (0xc93)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91C0741/serialNumber=37EAEDA4242D50962B87B4A207AC4C344B33060C
        Validity
            Not Before: Jul  3 10:27:04 2023 GMT
            Not After : May  1 00:00:00 2024 GMT
        Subject: CN=64a2a278-fa46
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:44:70:ee:c1:37:1f:f3:1a:45:b2:e2:8c:cf:
                    e3:f6:36:73:21:90:18:63:6c:ed:a0:c5:7f:a1:82:
                    3e:bb:e8:ad:92:8a:93:81:dd:13:dc:2a:0a:58:22:
                    7e:a7:44:f8:e3:98:e4:6d:88:79:78:48:a1:be:b5:
                    d4:d0:f5:7c:e2:02:d4:2c:ed:78:01:6d:a2:74:c6:
                    84:82:17:cc:1f:ae:de:96:39:00:8a:32:2e:0b:42:
                    6c:86:21:8a:4b:be:c4:88:f6:37:cb:53:c7:0f:3b:
                    84:24:38:ad:d0:76:09:ca:8b:eb:8c:eb:d5:9d:7e:
                    90:ac:b2:19:a1:db:00:7e:83:3e:de:ed:f7:d7:b7:
                    38:d0:f6:1a:2d:bf:3f:a2:50:99:35:e0:5d:f3:eb:
                    ee:e7:c6:87:ad:88:21:f7:aa:00:72:35:9e:26:05:
                    6a:20:2b:83:dc:ec:53:82:c8:d6:84:0e:2c:2e:85:
                    20:cc:2f:55:8d:dc:7f:4f:5c:60:07:e3:6d:f7:b7:
                    a0:8c:6b:47:73:24:82:7c:97:00:21:7f:34:e7:da:
                    59:54:dc:7f:77:82:48:ee:46:ff:f7:5a:fd:a4:91:
                    00:87:bd:fd:5f:f1:d1:63:5c:ca:e8:15:de:72:5e:
                    68:3f:17:a0:93:ff:1e:c5:d2:5e:43:30:40:96:d5:
                    1a:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                64:C2:8C:A2:37:E6:F8:81:31:B6:B1:23:54:94:32:F5:5B:7E:47:AB
            X509v3 Authority Key Identifier:
                keyid:37:EA:ED:A4:24:2D:50:96:2B:87:B4:A2:07:AC:4C:34:4B:33:06:0C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91C0741/77C9168EBD1211E990F4BF2CC4F9AE02/N-rtpCQtUJYrh7SiB6xMNEszBgw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N-rtpCQtUJYrh7SiB6xMNEszBgw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0741/77C9168EBD1211E990F4BF2CC4F9AE02/2723D0A4198C11EEA06C1429C4F9AE02.roa
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.83.192.0/24

    Signature Algorithm: sha256WithRSAEncryption
         c9:58:10:a6:e8:21:87:bc:a2:99:9a:a1:8d:97:cd:16:6a:a6:
         2b:64:16:3c:6b:64:7a:90:91:ef:c3:2c:97:c3:cc:f9:91:0d:
         19:0e:1a:64:15:e7:ea:a3:1d:5a:9f:a3:91:0b:cc:b1:70:3c:
         c0:d5:91:c4:bb:07:c0:bc:3e:f2:33:aa:a6:9a:3a:1a:5f:94:
         63:2d:bf:8e:8e:95:3b:2a:f3:af:4f:13:9f:88:67:dc:8b:e4:
         92:f6:d8:0b:63:c4:6b:69:80:9e:4a:09:b9:50:c9:23:f5:23:
         e4:84:af:28:35:54:95:f4:55:2b:8d:68:65:4f:98:fd:d2:03:
         3b:80:26:46:05:6e:d0:21:ae:60:c8:89:24:96:5e:aa:ac:59:
         f9:b6:ec:b4:74:d7:05:02:d6:ea:15:41:db:f6:6f:b5:2a:49:
         ba:89:1a:1c:0f:7e:f2:68:e7:c1:7b:23:57:0a:22:ff:12:c5:
         14:28:0d:96:df:f9:e3:83:e2:ab:b0:59:18:07:15:b9:52:41:
         12:3f:bd:50:69:30:6d:b8:c3:e5:78:a9:68:6e:63:a9:2d:9f:
         8a:c7:0f:fc:73:60:93:15:ef:48:77:78:b7:d4:b1:0c:62:dc:
         d8:7e:d0:c0:c6:97:f1:55:9f:4f:c3:3f:d2:2a:7f:ab:1d:fd:
         d6:6a:41:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:39 2024 by rpki-client on console-fra.rpki-client.org