Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/8086EAE4C61A11ECAE7B8E40C4F9AE02.roa
File: 8086EAE4C61A11ECAE7B8E40C4F9AE02.roa (raw, json)
Hash identifier: JYjeJ+7MbEZo0bZwdo6Gs9l9oz1fIxy4+hcWlPE1NIg=
Subject key identifier: 63:D8:CC:68:5D:17:0E:B5:5D:55:0A:ED:AC:89:EA:3D:47:9D:71:64
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 0714
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/8086EAE4C61A11ECAE7B8E40C4F9AE02.roa
Signing time: Wed 27 Apr 2022 11:09:27 +0000
ROA not before: Wed 27 Apr 2022 11:09:27 +0000
ROA not after: Sat 30 Jul 2022 00:00:00 +0000
asID: 13768
IP address blocks: 115.167.3.0/24 maxlen: 24
115.167.5.0/24 maxlen: 24
115.167.7.0/24 maxlen: 24
115.167.52.0/22 maxlen: 24
115.167.77.0/24 maxlen: 24
175.110.111.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1812 (0x714)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Apr 27 11:09:27 2022 GMT
Not After : Jul 30 00:00:00 2022 GMT
Subject: CN=62692467-0835
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:74:62:26:e2:b7:00:8f:90:6d:d8:24:d1:9f:
46:96:cd:98:10:93:0c:78:06:2a:c4:24:b4:8e:e3:
76:04:33:56:97:21:a0:b8:62:09:7d:8f:2f:32:ad:
17:9d:09:cc:02:21:8a:87:b8:14:35:e5:59:bb:55:
72:31:6f:77:f6:dc:0e:97:f0:30:cf:94:24:92:e7:
9a:b5:4b:f7:29:99:e7:54:1f:a5:f9:11:91:72:2f:
7f:d9:c2:1b:ee:9d:7f:be:75:71:3e:bb:77:df:cf:
ba:88:35:ba:9d:70:8e:3f:62:b7:be:ee:e2:26:97:
a9:d9:1f:a6:d3:f5:7d:15:5d:14:8d:65:45:f8:51:
a5:ea:4d:a4:5d:83:48:af:1b:bc:7f:ba:50:a5:9c:
37:a1:29:24:52:eb:1a:0d:6c:ac:9d:e9:84:2a:99:
f7:50:9f:7c:f4:68:ec:8a:0d:0d:64:15:78:7b:53:
78:a6:4b:e1:65:59:32:2e:cc:32:18:3d:8b:b5:ce:
f4:8c:f6:07:76:d5:e3:c2:7c:60:93:a9:b4:42:ac:
ba:6a:02:f9:89:cd:e6:d1:ba:ab:2b:3f:2b:d5:05:
cd:c3:a1:79:98:50:ef:93:79:d6:00:e9:f0:f5:44:
5e:76:f0:6b:2f:96:ed:19:30:67:4f:af:b2:ce:a7:
c8:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:D8:CC:68:5D:17:0E:B5:5D:55:0A:ED:AC:89:EA:3D:47:9D:71:64
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/8086EAE4C61A11ECAE7B8E40C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
115.167.3.0/24
115.167.5.0/24
115.167.7.0/24
115.167.52.0/22
115.167.77.0/24
175.110.111.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:f5:84:00:c4:e1:ce:08:40:e2:fa:62:0b:41:1a:b7:c2:85:
40:b0:20:5a:36:ce:e6:19:8c:5e:f8:e9:f3:4d:cc:79:3a:1c:
a1:08:6f:00:98:76:59:83:d4:a1:a8:f2:4b:fa:94:ba:b6:65:
ab:eb:24:5a:3d:86:1e:c1:95:36:c9:ea:74:38:1f:3d:3f:0d:
e0:e8:86:68:71:e2:b2:ae:5f:bc:91:96:86:99:d3:9d:15:6e:
4e:b3:19:7d:b9:7b:80:e7:4e:1d:2d:d5:24:56:e8:9a:c4:ae:
c3:83:9d:59:e0:49:0c:17:6f:21:35:64:26:4c:58:fb:f7:f1:
53:79:d2:b0:1a:dd:3c:f1:7a:b4:07:85:73:0d:d2:31:91:f6:
63:40:a1:78:4e:30:48:f6:b5:6f:67:c4:35:4a:17:5e:74:59:
75:60:92:d8:2c:f8:d3:1a:a4:71:c7:51:1a:23:09:22:02:22:
f3:fe:77:30:c1:64:82:ee:86:15:cf:11:2d:4d:5f:0c:5b:b2:
14:e1:ea:0c:a2:92:47:27:df:06:fe:92:d9:db:66:f0:75:fc:
bf:02:77:cf:39:1f:42:d5:db:63:d1:9b:67:d7:7c:95:51:c3:
e9:22:eb:ca:dc:34:d8:bd:0c:36:48:72:2d:e2:93:90:87:95:
1d:eb:3d:5a
-----BEGIN CERTIFICATE-----
MIIFjzCCBHegAwIBAgICBxQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTYxMzQxMTAvBgNVBAUTKDgzMDgwODc5MTFFQTQ5RTIxNURDNDkyNkIwMjI2QTUy
MUU1QjM5QzQwHhcNMjIwNDI3MTEwOTI3WhcNMjIwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02MjY5MjQ2Ny0wODM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA9HRiJuK3AI+Qbdgk0Z9Gls2YEJMMeAYqxCS0juN2BDNWlyGguGIJfY8vMq0X
nQnMAiGKh7gUNeVZu1VyMW939twOl/Awz5QkkueatUv3KZnnVB+l+RGRci9/2cIb
7p1/vnVxPrt338+6iDW6nXCOP2K3vu7iJpep2R+m0/V9FV0UjWVF+FGl6k2kXYNI
rxu8f7pQpZw3oSkkUusaDWysnemEKpn3UJ989Gjsig0NZBV4e1N4pkvhZVkyLswy
GD2Ltc70jPYHdtXjwnxgk6m0Qqy6agL5ic3m0bqrKz8r1QXNw6F5mFDvk3nWAOnw
9URedvBrL5btGTBnT6+yzqfIYwIDAQABo4ICszCCAq8wHQYDVR0OBBYEFGPYzGhd
Fw61XVUK7ayJ6j1HnXFkMB8GA1UdIwQYMBaAFIMICHkR6kniFdxJJrAialIeWznE
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81RjlBQTRCRUMy
QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9nd2dJZVJIcVNlSVYzRWttc0NKcVVoNWJP
Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2d3Z0llUkhxU2VJVjNFa21zQ0pxVWg1Yk9jUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RTYxMzQvNUY5QUE0QkVDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvODA4NkVBRTRD
NjFBMTFFQ0FFN0I4RTQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E
LjAsMCoEAgABMCQDBABzpwMDBABzpwUDBABzpwcDBAJzpzQDBABzp00DBACvbm8w
DQYJKoZIhvcNAQELBQADggEBABr1hADE4c4IQOL6YgtBGrfChUCwIFo2zuYZjF74
6fNNzHk6HKEIbwCYdlmD1KGo8kv6lLq2ZavrJFo9hh7BlTbJ6nQ4Hz0/DeDohmhx
4rKuX7yRloaZ050Vbk6zGX25e4DnTh0t1SRW6JrErsODnVngSQwXbyE1ZCZMWPv3
8VN50rAa3TzxerQHhXMN0jGR9mNAoXhOMEj2tW9nxDVKF150WXVgktgs+NMapHHH
URojCSICIvP+dzDBZILuhhXPES1NXwxbshTh6gyikkcn3wb+ktnbZvB1/L8Cd885
H0LV22PRm2fXfJVRw+ki68rcNNi9DDZIci3ik5CHlR3rPVo=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:12 2023 by rpki-client on console-fra.rpki-client.org