Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/9E10B8885F1311ECBED92D34C4F9AE02.roa
File: 9E10B8885F1311ECBED92D34C4F9AE02.roa (raw, json)
Hash identifier: VCZhlmcKJgz53Tj4OF+uSDYi/iMLS0MgQ5tJzbZxMjY=
Subject key identifier: C3:07:31:15:02:C1:F1:32:40:37:73:A5:2E:E3:B2:3B:0C:C2:8D:38
Certificate issuer: /CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F
Certificate serial: 30CE
Authority key identifier: 58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/9E10B8885F1311ECBED92D34C4F9AE02.roa
Signing time: Fri 17 Dec 2021 08:30:40 +0000
ROA not before: Fri 17 Dec 2021 08:30:40 +0000
ROA not after: Thu 01 Dec 2022 00:00:00 +0000
asID: 141390
IP address blocks: 103.230.68.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12494 (0x30ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F
Validity
Not Before: Dec 17 08:30:40 2021 GMT
Not After : Dec 1 00:00:00 2022 GMT
Subject: CN=61bc4ab0-2351
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:81:06:2c:aa:d1:ee:3e:fb:99:0f:19:d9:8b:
29:26:76:84:ba:bf:c3:10:17:db:b2:78:5c:e3:d5:
e5:f7:10:33:33:91:ba:a5:55:78:1a:f3:d1:fe:46:
3c:4d:1c:ba:69:91:e3:fe:94:67:28:73:29:21:f1:
bd:8d:2d:d9:3a:c2:97:60:9b:ca:a8:e3:58:91:7c:
e5:8b:a3:4a:52:1c:9b:1c:79:96:8f:4d:2c:05:50:
77:83:58:01:1c:86:72:24:50:ff:73:2b:a9:f1:50:
ad:da:da:12:18:80:f1:76:25:07:c9:94:bb:1d:7f:
49:1f:ab:d1:73:8a:27:50:1a:2c:b1:fe:5f:8c:7f:
d4:e5:57:d4:31:8a:0b:2d:1f:4a:a9:56:64:b9:98:
96:7f:35:68:11:07:3f:3e:92:fe:09:5b:ed:dd:34:
d7:53:03:c4:a9:41:ab:7d:4f:43:b7:bc:65:2a:ed:
98:d1:7d:66:eb:9b:e9:08:9e:a1:fc:90:f1:74:8b:
b6:1d:44:58:d4:1f:39:ea:4d:ac:77:a6:e2:82:08:
4d:8c:4d:65:90:2a:80:87:8a:ab:8b:f6:af:0e:0b:
f0:6d:7c:84:54:25:1b:b5:93:69:1d:2d:b8:7d:b1:
a5:5a:c7:23:36:ec:3d:62:ab:da:44:3b:c2:bc:b4:
c0:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:07:31:15:02:C1:F1:32:40:37:73:A5:2E:E3:B2:3B:0C:C2:8D:38
X509v3 Authority Key Identifier:
keyid:58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/9E10B8885F1311ECBED92D34C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.230.68.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:b7:e9:a9:7c:36:5d:fa:57:cd:a0:b2:42:b6:d5:19:7b:bf:
e2:e5:88:0f:bf:f2:ad:e2:be:fe:01:16:3e:29:15:7e:c5:33:
4e:60:7e:83:91:5e:79:44:8c:a2:fd:8e:67:d9:d5:c1:e9:35:
f5:7c:4b:dd:27:e9:6c:74:60:a0:61:4e:a0:01:4d:c0:bb:a8:
fc:f8:60:b7:a3:de:58:87:e9:6c:84:fb:8e:cc:62:a9:7a:b7:
b1:a0:d6:99:8f:9d:38:f0:0e:3a:0a:0d:1d:ea:29:78:c2:2d:
48:36:9d:99:1c:05:49:1d:65:27:d4:80:90:cf:f2:a8:7f:cc:
23:ff:36:0b:cd:0c:a0:78:4b:31:3c:ee:9c:9e:fe:0a:44:e6:
32:19:b6:07:1f:6a:25:f0:49:96:fa:3c:e1:26:94:a2:aa:4e:
d6:df:4f:6b:05:89:45:ed:cc:ac:cc:01:fe:3c:65:41:e9:a3:
a4:ce:a6:cc:22:ac:8a:4a:20:b9:e0:41:67:4f:ff:5d:d9:88:
bf:b6:3b:40:b3:3f:3f:66:4c:1b:04:7c:04:fa:13:2e:c1:5e:
c7:9a:df:66:08:2c:f8:32:20:2d:a9:27:25:d7:36:80:8b:21:
b1:a7:82:a5:5e:ee:62:c0:33:37:c8:89:a6:2a:06:7b:85:08:
ce:2d:9d:42
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICMM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RThDOTAxMTAvBgNVBAUTKDU4QTE5NkE3QkYwNkYyRTE2RTkwOUQyNzcxNDFCQTQ0
OTExRjFGNEYwHhcNMjExMjE3MDgzMDQwWhcNMjIxMjAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02MWJjNGFiMC0yMzUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAt4EGLKrR7j77mQ8Z2YspJnaEur/DEBfbsnhc49Xl9xAzM5G6pVV4GvPR/kY8
TRy6aZHj/pRnKHMpIfG9jS3ZOsKXYJvKqONYkXzli6NKUhybHHmWj00sBVB3g1gB
HIZyJFD/cyup8VCt2toSGIDxdiUHyZS7HX9JH6vRc4onUBossf5fjH/U5VfUMYoL
LR9KqVZkuZiWfzVoEQc/PpL+CVvt3TTXUwPEqUGrfU9Dt7xlKu2Y0X1m65vpCJ6h
/JDxdIu2HURY1B856k2sd6bigghNjE1lkCqAh4qri/avDgvwbXyEVCUbtZNpHS24
fbGlWscjNuw9YqvaRDvCvLTAbQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMMHMRUC
wfEyQDdzpS7jsjsMwo04MB8GA1UdIwQYMBaAFFihlqe/BvLhbpCdJ3FBukSRHx9P
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEM5MC8yRDFCRUJFNDFE
OTUxMUUyODhFNkIzRkEwOEIwMkNEMi9XS0dXcDc4Rzh1RnVrSjBuY1VHNlJKRWZI
MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1dLR1dwNzhHOHVGdWtKMG5jVUc2UkpFZkgwOC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RThDOTAvMkQxQkVCRTQxRDk1MTFFMjg4RTZCM0ZBMDhCMDJDRDIvOUUxMEI4ODg1
RjEzMTFFQ0JFRDkyRDM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBABn5kQwDQYJKoZIhvcNAQELBQADggEBAA+36al8Nl36V82g
skK21Rl7v+LliA+/8q3ivv4BFj4pFX7FM05gfoORXnlEjKL9jmfZ1cHpNfV8S90n
6Wx0YKBhTqABTcC7qPz4YLej3liH6WyE+47MYql6t7Gg1pmPnTjwDjoKDR3qKXjC
LUg2nZkcBUkdZSfUgJDP8qh/zCP/NgvNDKB4SzE87pye/gpE5jIZtgcfaiXwSZb6
POEmlKKqTtbfT2sFiUXtzKzMAf48ZUHpo6TOpswirIpKILngQWdP/13ZiL+2O0Cz
Pz9mTBsEfAT6Ey7BXsea32YILPgyIC2pJyXXNoCLIbGngqVe7mLAMzfIiaYqBnuF
CM4tnUI=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:36 2024 by rpki-client on console-ams.rpki-client.org