Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/CEBE6BD486B411EBBDA03285C4F9AE02.roa
File: CEBE6BD486B411EBBDA03285C4F9AE02.roa (raw, json)
Hash identifier: KEqpueJyxy90nK4EULZbbByzWxhmmwM3O2sa1SjADCg=
Subject key identifier: 6E:53:06:E8:C9:26:40:07:E4:C0:BC:65:4F:60:0B:74:E5:90:BD:C5
Certificate issuer: /CN=A91E7BD4/serialNumber=5DC0303331898AEFDB85E4D914006B89376BEFE1
Certificate serial: 01AF
Authority key identifier: 5D:C0:30:33:31:89:8A:EF:DB:85:E4:D9:14:00:6B:89:37:6B:EF:E1
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcAwMzGJiu_bheTZFABriTdr7-E.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/CEBE6BD486B411EBBDA03285C4F9AE02.roa
Signing time: Mon 18 Oct 2021 14:31:14 +0000
ROA not before: Mon 18 Oct 2021 14:31:14 +0000
ROA not after: Thu 01 Dec 2022 00:00:00 +0000
asID: 31898
IP address blocks: 103.164.6.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 431 (0x1af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E7BD4/serialNumber=5DC0303331898AEFDB85E4D914006B89376BEFE1
Validity
Not Before: Oct 18 14:31:14 2021 GMT
Not After : Dec 1 00:00:00 2022 GMT
Subject: CN=616d8531-2ad9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ae:82:82:1b:17:b3:29:0c:d7:9d:1a:b7:2c:
bc:c1:01:31:25:2d:d7:6d:ca:ea:a8:eb:94:57:7b:
89:ac:a3:ad:cb:2d:51:60:7b:fd:f5:21:8b:05:c2:
9a:0f:f2:cc:3d:32:f2:2e:0d:52:a4:68:f5:4b:2b:
5b:ec:4c:03:2e:84:5d:c6:c8:2b:5d:7c:d7:ac:25:
ba:4f:36:57:83:2b:92:ed:3a:a0:6e:ef:19:75:57:
2d:e6:71:61:79:d1:c1:ec:80:e5:53:25:4a:40:88:
88:73:92:3f:39:c7:d8:d6:99:89:23:ac:44:a3:12:
af:3d:a5:12:8c:4c:8d:b4:b9:66:e1:53:c8:6d:61:
86:ff:44:94:2a:d8:3d:df:4b:09:62:9d:ee:02:45:
69:68:1b:14:5f:13:4b:a8:65:bd:bb:f2:e8:e2:64:
b9:93:67:bd:52:21:bd:46:df:86:7f:f8:b0:06:cd:
93:07:0f:15:7d:07:72:d6:3f:25:cf:68:95:54:e3:
55:23:9b:95:01:c4:29:cf:eb:23:4d:cb:e4:df:77:
fc:75:3a:33:e6:82:5e:c4:70:f6:71:3a:97:e5:c4:
24:21:40:13:41:3c:cc:9e:3c:9d:0b:37:46:ef:21:
c8:38:2b:29:e3:dc:31:ad:cd:7a:7e:85:e4:a7:51:
4d:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:53:06:E8:C9:26:40:07:E4:C0:BC:65:4F:60:0B:74:E5:90:BD:C5
X509v3 Authority Key Identifier:
keyid:5D:C0:30:33:31:89:8A:EF:DB:85:E4:D9:14:00:6B:89:37:6B:EF:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcAwMzGJiu_bheTZFABriTdr7-E.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/CEBE6BD486B411EBBDA03285C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.164.6.0/24
Signature Algorithm: sha256WithRSAEncryption
91:5c:9e:fc:05:47:31:b5:88:2b:bf:a9:94:93:15:d9:dd:78:
e1:91:fc:23:29:e4:9e:e5:df:88:f5:e9:da:34:bc:91:9a:9f:
68:70:51:ed:b0:3e:b6:dd:af:ca:8d:e9:1c:4d:96:16:fb:b8:
5b:31:c9:7d:8d:75:28:4f:49:75:bc:b2:1d:8b:e1:eb:bf:47:
a7:28:6e:43:4f:9a:f7:95:9a:4c:0c:15:fd:7a:52:ba:6a:43:
ba:68:a1:33:ca:a8:f9:f8:82:88:14:f4:5d:63:73:c0:69:53:
4e:4d:e4:dd:cf:cd:78:30:fe:d7:cb:18:13:1a:4a:fe:99:50:
b7:69:f5:1c:98:5b:ea:03:3e:b8:e9:bb:f5:6d:08:b2:4c:31:
dd:a1:4e:1c:48:10:5e:e2:e8:18:00:dc:5b:4d:3d:45:e2:18:
a9:0f:cd:16:7d:24:40:3c:e5:a9:21:8e:9e:92:fb:7e:36:5e:
23:9f:57:34:cb:e5:9e:49:b8:79:9a:b7:7d:43:6c:34:b7:0e:
49:df:46:43:cf:d4:71:bc:d4:83:0c:52:61:63:b4:2a:58:2f:
c2:93:81:09:88:cb:85:ec:f5:05:80:26:70:e3:70:44:8d:9e:
ce:b8:3b:42:2c:d7:f6:8d:1b:bc:0e:9b:ad:86:bf:a9:f4:b7:
99:1c:e2:e3
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICAa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTdCRDQxMTAvBgNVBAUTKDVEQzAzMDMzMzE4OThBRUZEQjg1RTREOTE0MDA2Qjg5
Mzc2QkVGRTEwHhcNMjExMDE4MTQzMTE0WhcNMjIxMjAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02MTZkODUzMS0yYWQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAta6CghsXsykM150atyy8wQExJS3XbcrqqOuUV3uJrKOtyy1RYHv99SGLBcKa
D/LMPTLyLg1SpGj1Sytb7EwDLoRdxsgrXXzXrCW6TzZXgyuS7Tqgbu8ZdVct5nFh
edHB7IDlUyVKQIiIc5I/OcfY1pmJI6xEoxKvPaUSjEyNtLlm4VPIbWGG/0SUKtg9
30sJYp3uAkVpaBsUXxNLqGW9u/Lo4mS5k2e9UiG9Rt+Gf/iwBs2TBw8VfQdy1j8l
z2iVVONVI5uVAcQpz+sjTcvk33f8dToz5oJexHD2cTqX5cQkIUATQTzMnjydCzdG
7yHIOCsp49wxrc16foXkp1FN8QIDAQABo4IClTCCApEwHQYDVR0OBBYEFG5TBujJ
JkAH5MC8ZU9gC3TlkL3FMB8GA1UdIwQYMBaAFF3AMDMxiYrv24Xk2RQAa4k3a+/h
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0JENC80RTg3QTQ2QTg2
QjExMUVCQjhCRTIxN0NDNEY5QUUwMi9YY0F3TXpHSml1X2JoZVRaRkFCcmlUZHI3
LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1hjQXdNekdKaXVfYmhlVFpGQUJyaVRkcjctRS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RTdCRDQvNEU4N0E0NkE4NkIxMTFFQkI4QkUyMTdDQzRGOUFFMDIvQ0VCRTZCRDQ4
NkI0MTFFQkJEQTAzMjg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBABnpAYwDQYJKoZIhvcNAQELBQADggEBAJFcnvwFRzG1iCu/
qZSTFdndeOGR/CMp5J7l34j16do0vJGan2hwUe2wPrbdr8qN6RxNlhb7uFsxyX2N
dShPSXW8sh2L4eu/R6cobkNPmveVmkwMFf16UrpqQ7pooTPKqPn4gogU9F1jc8Bp
U05N5N3PzXgw/tfLGBMaSv6ZULdp9RyYW+oDPrjpu/VtCLJMMd2hThxIEF7i6BgA
3FtNPUXiGKkPzRZ9JEA85akhjp6S+342XiOfVzTL5Z5JuHmat31DbDS3DknfRkPP
1HG81IMMUmFjtCpYL8KTgQmIy4Xs9QWAJnDjcESNns64O0Is1/aNG7wOm62Gv6n0
t5kc4uM=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:12 2023 by rpki-client on console-fra.rpki-client.org