Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/70E7F85E79BB11ECB6D72266C4F9AE02.roa
File: 70E7F85E79BB11ECB6D72266C4F9AE02.roa (raw, json)
Hash identifier: dKEutyrxkCZjt/fmfeIdAd3Bsj1+FQo8q8Qbndzi64o=
Subject key identifier: 27:43:D2:97:AD:EE:94:63:44:9D:6A:C3:00:8F:DC:8E:0F:1C:29:80
Certificate issuer: /CN=A91DF076/serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA
Certificate serial: 09D3
Authority key identifier: 47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/70E7F85E79BB11ECB6D72266C4F9AE02.roa
Signing time: Thu 20 Jan 2022 06:37:31 +0000
ROA not before: Thu 20 Jan 2022 06:37:31 +0000
ROA not after: Thu 01 Dec 2022 00:00:00 +0000
asID: 134548
IP address blocks: 103.141.237.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2515 (0x9d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DF076/serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA
Validity
Not Before: Jan 20 06:37:31 2022 GMT
Not After : Dec 1 00:00:00 2022 GMT
Subject: CN=61e9032a-b8b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:9e:8a:0f:7b:cf:4f:8e:de:89:2e:35:a8:68:
87:c8:01:52:1c:9e:82:dc:62:96:59:a5:03:58:ae:
bc:33:c1:c1:c8:2f:51:6a:88:bf:9c:19:6e:95:e0:
bd:2c:6c:45:3f:82:73:51:b3:03:63:2d:8f:2a:dc:
04:15:18:b7:8c:44:0e:08:c3:c7:e6:5e:52:71:4f:
ea:6a:9c:3a:23:b9:93:96:2e:15:ec:29:7d:2b:7f:
45:8e:df:d2:68:93:c9:70:4a:d5:1e:5b:6b:94:26:
f5:f6:24:17:c4:bb:af:92:76:04:df:4d:b9:a5:ed:
ac:02:88:6d:3a:2f:fe:cd:fb:7e:8c:b2:cb:69:a7:
20:a4:f7:70:52:e1:63:ae:30:58:cb:7a:1c:29:79:
6b:3f:f1:8c:e3:e4:27:3a:a9:d1:88:ae:c6:d2:89:
39:7a:a1:64:a8:9b:e0:dc:02:fa:4c:dd:9c:b8:c5:
40:46:f4:51:41:25:a6:0a:b3:4f:8e:bc:82:a7:6f:
3b:55:53:91:2d:0a:1e:08:46:cb:89:c1:09:7d:20:
eb:f7:e7:fb:3b:d4:db:fe:85:41:b8:c3:c3:e0:e9:
56:b3:34:82:cf:86:d7:22:93:52:26:0b:27:5b:c1:
ed:dd:20:d9:b9:52:1c:bd:56:ad:f8:9a:5b:ba:ee:
a7:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:43:D2:97:AD:EE:94:63:44:9D:6A:C3:00:8F:DC:8E:0F:1C:29:80
X509v3 Authority Key Identifier:
keyid:47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/70E7F85E79BB11ECB6D72266C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.141.237.0/24
Signature Algorithm: sha256WithRSAEncryption
59:2a:e1:d1:38:20:c3:f3:77:08:90:a2:5a:0e:de:85:58:52:
51:29:0c:07:6c:84:54:b2:b9:26:bd:2b:3a:9c:1b:5e:ca:63:
b8:26:35:ca:86:45:05:76:cf:ae:fd:09:28:9e:44:fe:7e:9d:
33:5b:1f:d2:90:b5:0f:79:40:aa:33:4e:51:26:8c:f3:87:e6:
60:d1:50:95:6b:bc:46:9e:f4:8d:89:75:90:85:6c:c5:94:27:
7e:a8:ee:9e:59:2b:51:bc:93:0f:25:ce:26:52:16:a3:9b:31:
ec:05:d0:8f:61:a2:c4:41:3a:48:d4:4e:9f:78:66:f2:3d:87:
9e:52:4b:0d:eb:14:9e:25:f6:f4:16:88:20:a1:5e:b4:21:f5:
a3:d2:5f:a3:58:71:85:98:d9:14:fe:20:7f:c9:1f:b3:2d:84:
69:29:75:03:7a:30:9c:ef:66:dd:82:50:2a:a5:52:91:5d:f8:
c3:f6:e3:fd:1a:f5:f8:36:46:cb:5d:d2:94:45:7c:9d:8a:42:
9d:0b:f4:19:e2:79:92:40:52:5c:0a:9a:2f:58:67:21:b5:1c:
41:33:0f:6c:dd:ac:32:12:58:9f:d1:45:06:95:ba:a9:11:07:
03:be:82:15:55:08:c5:2e:7d:dc:d1:48:fb:cb:fb:ea:15:d7:
f9:72:16:4c
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICCdMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
REYwNzYxMTAvBgNVBAUTKDQ3OEE0QkREMDExMjFEMUM2QjMzM0VDQzNFMjVCQTFB
ODg3MTk5QUEwHhcNMjIwMTIwMDYzNzMxWhcNMjIxMjAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02MWU5MDMyYS1iOGIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAvZ6KD3vPT47eiS41qGiHyAFSHJ6C3GKWWaUDWK68M8HByC9Raoi/nBluleC9
LGxFP4JzUbMDYy2PKtwEFRi3jEQOCMPH5l5ScU/qapw6I7mTli4V7Cl9K39Fjt/S
aJPJcErVHltrlCb19iQXxLuvknYE3025pe2sAohtOi/+zft+jLLLaacgpPdwUuFj
rjBYy3ocKXlrP/GM4+QnOqnRiK7G0ok5eqFkqJvg3AL6TN2cuMVARvRRQSWmCrNP
jryCp287VVORLQoeCEbLicEJfSDr9+f7O9Tb/oVBuMPD4OlWszSCz4bXIpNSJgsn
W8Ht3SDZuVIcvVat+Jpbuu6nBQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCdD0pet
7pRjRJ1qwwCP3I4PHCmAMB8GA1UdIwQYMBaAFEeKS90BEh0cazM+zD4luhqIcZmq
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjA3Ni9BNDA4RjU4MkI5
MDQxMUU5QjFENTBCNDFDNEY5QUUwMi9SNHBMM1FFU0hSeHJNejdNUGlXNkdvaHht
YW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1I0cEwzUUVTSFJ4ck16N01QaVc2R29oeG1hby5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
REYwNzYvQTQwOEY1ODJCOTA0MTFFOUIxRDUwQjQxQzRGOUFFMDIvNzBFN0Y4NUU3
OUJCMTFFQ0I2RDcyMjY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBABnje0wDQYJKoZIhvcNAQELBQADggEBAFkq4dE4IMPzdwiQ
oloO3oVYUlEpDAdshFSyuSa9KzqcG17KY7gmNcqGRQV2z679CSieRP5+nTNbH9KQ
tQ95QKozTlEmjPOH5mDRUJVrvEae9I2JdZCFbMWUJ36o7p5ZK1G8kw8lziZSFqOb
MewF0I9hosRBOkjUTp94ZvI9h55SSw3rFJ4l9vQWiCChXrQh9aPSX6NYcYWY2RT+
IH/JH7MthGkpdQN6MJzvZt2CUCqlUpFd+MP24/0a9fg2Rstd0pRFfJ2KQp0L9Bni
eZJAUlwKmi9YZyG1HEEzD2zdrDISWJ/RRQaVuqkRBwO+ghVVCMUufdzRSPvL++oV
1/lyFkw=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:10 2023 by rpki-client on console-fra.rpki-client.org