Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7B68/53A7B92CB0A511EA8F92ED17C4F9AE02/16569C301BA911ECBA146258C4F9AE02.roa
File: 16569C301BA911ECBA146258C4F9AE02.roa (raw, json)
Hash identifier: Pq3eZ97UszVMSeoq/buy4CnbQzsVuYsXUxhIPZOAvFI=
Subject key identifier: A8:5D:AB:44:71:68:5D:C6:2A:DA:CE:15:EE:52:5E:7A:9A:B2:A5:A4
Certificate issuer: /CN=A91C7B68/serialNumber=C284BA8A88A02116BEE43410E039E909E3029D0D
Certificate serial: 0404
Authority key identifier: C2:84:BA:8A:88:A0:21:16:BE:E4:34:10:E0:39:E9:09:E3:02:9D:0D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/woS6ioigIRa-5DQQ4DnpCeMCnQ0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C7B68/53A7B92CB0A511EA8F92ED17C4F9AE02/16569C301BA911ECBA146258C4F9AE02.roa
Signing time: Wed 22 Sep 2021 13:48:34 +0000
ROA not before: Wed 22 Sep 2021 13:48:34 +0000
ROA not after: Sat 30 Jul 2022 00:00:00 +0000
asID: 138549
IP address blocks: 103.214.159.0/24 maxlen: 24
144.48.112.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1028 (0x404)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C7B68/serialNumber=C284BA8A88A02116BEE43410E039E909E3029D0D
Validity
Not Before: Sep 22 13:48:34 2021 GMT
Not After : Jul 30 00:00:00 2022 GMT
Subject: CN=614b3431-0f04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:57:22:e3:9b:9a:6d:34:05:6f:c9:7b:dd:0a:
aa:39:7e:1f:b7:0f:b2:82:6c:ba:e2:31:60:39:64:
3d:29:16:86:6e:9e:0b:41:21:e9:0c:21:84:39:da:
27:62:29:a1:2a:5b:c0:21:a7:12:d6:e1:31:c7:2b:
a4:87:63:a4:ef:c7:2a:06:e7:57:30:9a:d8:f7:61:
46:1d:9f:f0:c6:23:cc:7f:1f:2d:31:be:4f:7f:ca:
e8:df:0c:55:d5:4c:0b:50:91:7d:f5:4e:8f:63:af:
d1:6c:56:f3:22:fa:7a:a4:5d:79:16:e4:0f:47:1d:
e5:ea:c9:36:ac:9c:3b:76:8c:7c:8b:c8:1b:65:fc:
70:56:99:d9:e4:a7:a3:90:f3:c0:5e:25:7e:80:bf:
bd:cb:4e:d6:1a:28:b6:97:91:3d:4a:80:50:2b:0e:
87:99:2f:d9:a1:b9:2a:69:5c:25:9f:62:72:a3:fd:
35:7c:f0:87:1f:68:b5:b9:18:bf:3e:8b:e0:db:2d:
cc:70:64:f0:64:7c:0f:15:d1:20:66:2a:27:1b:46:
83:de:1b:50:b8:85:0b:23:28:7d:9d:de:22:57:ef:
d4:f0:ec:c3:50:81:0b:51:f7:cb:14:18:32:5e:57:
a7:a7:c5:0b:05:be:15:ce:d2:bb:50:4d:81:6c:da:
c3:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:5D:AB:44:71:68:5D:C6:2A:DA:CE:15:EE:52:5E:7A:9A:B2:A5:A4
X509v3 Authority Key Identifier:
keyid:C2:84:BA:8A:88:A0:21:16:BE:E4:34:10:E0:39:E9:09:E3:02:9D:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C7B68/53A7B92CB0A511EA8F92ED17C4F9AE02/woS6ioigIRa-5DQQ4DnpCeMCnQ0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/woS6ioigIRa-5DQQ4DnpCeMCnQ0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7B68/53A7B92CB0A511EA8F92ED17C4F9AE02/16569C301BA911ECBA146258C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.214.159.0/24
144.48.112.0/24
Signature Algorithm: sha256WithRSAEncryption
35:6a:8a:98:45:84:40:20:a7:5b:34:ee:15:c6:d2:5f:db:f9:
9c:94:48:87:19:2a:e3:fa:fd:1c:f7:fd:ae:25:8a:a2:91:7b:
48:ed:20:77:37:e3:52:85:92:80:91:29:c0:41:ce:b8:d7:57:
41:57:0c:af:fa:e0:d2:c2:c1:80:eb:48:7c:3f:a9:8a:d7:67:
91:df:84:37:39:22:d4:fe:0e:4c:03:2f:8f:46:e2:3a:b9:e8:
44:b0:8d:6a:ba:1a:08:1d:b4:00:f8:59:d7:26:0b:30:58:8c:
bf:55:4f:a9:07:7d:aa:e6:02:d4:2e:a7:4b:c0:6a:0b:04:78:
9c:9d:71:33:59:f3:6e:dd:1e:c4:93:a5:ec:cf:10:e6:89:d7:
14:8b:9e:64:6d:e2:34:8f:82:df:16:22:b1:5a:ef:1a:2f:3e:
8c:b7:23:63:61:47:95:e0:6b:67:41:71:ef:21:6b:47:5e:7a:
f0:d3:93:20:8e:5f:89:e5:a2:05:89:db:0e:9c:3c:f7:ef:a3:
5f:1d:77:a4:f4:00:4c:09:82:36:af:8d:e6:b7:ec:02:bd:73:
f1:c7:95:33:e4:a2:70:6c:e1:b2:e0:2f:68:18:1d:f7:5d:87:
b4:b1:80:df:bd:7c:47:e6:2a:16:50:5a:2a:e4:18:c7:42:c6:
fc:8f:ea:1a
-----BEGIN CERTIFICATE-----
MIIFdzCCBF+gAwIBAgICBAQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QzdCNjgxMTAvBgNVBAUTKEMyODRCQThBODhBMDIxMTZCRUU0MzQxMEUwMzlFOTA5
RTMwMjlEMEQwHhcNMjEwOTIyMTM0ODM0WhcNMjIwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02MTRiMzQzMS0wZjA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAy1ci45uabTQFb8l73QqqOX4ftw+ygmy64jFgOWQ9KRaGbp4LQSHpDCGEOdon
YimhKlvAIacS1uExxyukh2Ok78cqBudXMJrY92FGHZ/wxiPMfx8tMb5Pf8ro3wxV
1UwLUJF99U6PY6/RbFbzIvp6pF15FuQPRx3l6sk2rJw7dox8i8gbZfxwVpnZ5Kej
kPPAXiV+gL+9y07WGii2l5E9SoBQKw6HmS/ZobkqaVwln2Jyo/01fPCHH2i1uRi/
Povg2y3McGTwZHwPFdEgZionG0aD3htQuIULIyh9nd4iV+/U8OzDUIELUffLFBgy
Xlenp8ULBb4VztK7UE2BbNrDEwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFKhdq0Rx
aF3GKtrOFe5SXnqasqWkMB8GA1UdIwQYMBaAFMKEuoqIoCEWvuQ0EOA56QnjAp0N
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0I2OC81M0E3QjkyQ0Iw
QTUxMUVBOEY5MkVEMTdDNEY5QUUwMi93b1M2aW9pZ0lSYS01RFFRNERucENlTUNu
UTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3dvUzZpb2lnSVJhLTVEUVE0RG5wQ2VNQ25RMC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QzdCNjgvNTNBN0I5MkNCMEE1MTFFQThGOTJFRDE3QzRGOUFFMDIvMTY1NjlDMzAx
QkE5MTFFQ0JBMTQ2MjU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E
FjAUMBIEAgABMAwDBABn1p8DBACQMHAwDQYJKoZIhvcNAQELBQADggEBADVqiphF
hEAgp1s07hXG0l/b+ZyUSIcZKuP6/Rz3/a4liqKRe0jtIHc341KFkoCRKcBBzrjX
V0FXDK/64NLCwYDrSHw/qYrXZ5HfhDc5ItT+DkwDL49G4jq56ESwjWq6GggdtAD4
WdcmCzBYjL9VT6kHfarmAtQup0vAagsEeJydcTNZ827dHsSTpezPEOaJ1xSLnmRt
4jSPgt8WIrFa7xovPoy3I2NhR5Xga2dBce8ha0deevDTkyCOX4nlogWJ2w6cPPfv
o18dd6T0AEwJgjavjea37AK9c/HHlTPkonBs4bLgL2gYHfddh7SxgN+9fEfmKhZQ
WirkGMdCxvyP6ho=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:07 2023 by rpki-client on console-fra.rpki-client.org