Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBA1C/63B214A2C81511E581D20884C4F9AE02/170A8CD689FD11EDA18A396FC4F9AE02.roa
File: 170A8CD689FD11EDA18A396FC4F9AE02.roa (raw, json)
Hash identifier: ZoUfLgyL+TBzYfvqAC7H2TjKQMiipG+5vLpsUpJWVHs=
Subject key identifier: 4A:8B:ED:86:FA:EE:CF:A1:42:B0:F2:FC:2B:A7:FD:01:B2:32:22:6B
Certificate issuer: /CN=A91EBA1C/serialNumber=51C2611B461DD511835A5141F8AEE502D3A39AEB
Certificate serial: 209D
Authority key identifier: 51:C2:61:1B:46:1D:D5:11:83:5A:51:41:F8:AE:E5:02:D3:A3:9A:EB
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UcJhG0Yd1RGDWlFB-K7lAtOjmus.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EBA1C/63B214A2C81511E581D20884C4F9AE02/170A8CD689FD11EDA18A396FC4F9AE02.roa
Signing time: Tue 06 Jun 2023 16:50:48 +0000
ROA not before: Tue 06 Jun 2023 16:50:48 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 63980
IP address blocks: 59.153.200.0/22 maxlen: 24
103.57.20.0/22 maxlen: 24
2402:5380::/31 maxlen: 37
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8349 (0x209d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EBA1C, serialNumber=51C2611B461DD511835A5141F8AEE502D3A39AEB
Validity
Not Before: Jun 6 16:50:48 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=647f63e7-9e17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:15:b1:78:4e:d2:b8:8d:49:10:a5:b2:af:49:
8c:1f:92:7f:64:b0:2e:55:77:5b:96:30:ab:a8:e8:
ad:58:b2:ec:30:25:86:c7:d2:1c:68:a4:7c:76:cb:
3d:48:d7:e7:02:3f:7b:3a:40:db:47:b6:d8:ee:9c:
af:f9:c1:da:b3:60:88:84:4e:7a:7e:ee:cb:c7:d0:
0d:10:c5:75:c1:5e:e2:60:a0:a3:9a:30:4c:9c:63:
49:99:e3:e1:00:3d:23:ca:ef:66:2d:4f:3f:6c:a9:
07:d0:b2:f4:82:41:18:4d:83:ec:ad:be:9c:e5:04:
72:2f:d9:48:d1:fc:99:b2:40:c3:17:44:c9:50:52:
e8:28:a6:43:a5:7b:7b:1f:82:34:47:bc:5d:ef:54:
98:a0:fa:4c:e0:23:e8:98:4a:b8:c0:1b:a5:9f:4a:
ec:b9:c8:85:47:2c:f9:36:52:83:95:f7:4c:5e:a0:
9a:c6:1e:6b:5a:ad:6e:7e:9f:5c:68:a8:01:bc:7d:
40:de:e2:bc:ab:a3:2d:b8:f9:ed:b8:73:e6:73:af:
f5:00:2b:79:ff:73:07:c2:1b:fb:b3:30:9c:51:ee:
17:7b:fd:88:77:12:12:e2:c0:ed:8b:5a:2f:2d:a8:
07:41:25:54:c3:dc:52:1e:a9:f6:74:ac:d0:26:6d:
77:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:8B:ED:86:FA:EE:CF:A1:42:B0:F2:FC:2B:A7:FD:01:B2:32:22:6B
X509v3 Authority Key Identifier:
keyid:51:C2:61:1B:46:1D:D5:11:83:5A:51:41:F8:AE:E5:02:D3:A3:9A:EB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EBA1C/63B214A2C81511E581D20884C4F9AE02/UcJhG0Yd1RGDWlFB-K7lAtOjmus.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UcJhG0Yd1RGDWlFB-K7lAtOjmus.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBA1C/63B214A2C81511E581D20884C4F9AE02/170A8CD689FD11EDA18A396FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
59.153.200.0/22
103.57.20.0/22
IPv6:
2402:5380::/31
Signature Algorithm: sha256WithRSAEncryption
df:ea:39:41:dd:06:29:3a:98:6a:bf:aa:12:ec:5d:c8:95:b5:
1f:28:17:f8:86:16:18:97:e7:1c:75:e4:38:b6:a6:7d:29:73:
e6:f4:83:12:31:a6:45:5d:ee:17:29:ce:fa:3b:cb:30:ac:61:
38:7a:ef:6d:ab:53:ba:38:0c:5a:7c:3f:47:d4:72:34:26:13:
fa:33:12:df:32:af:be:4a:ff:93:01:94:59:9c:ba:d5:46:d6:
ff:73:dd:dc:e9:2f:34:cb:03:30:01:c5:c4:ed:fe:bc:48:a4:
47:1e:ad:9a:f0:83:12:cb:69:05:3f:b0:12:90:1d:57:83:04:
03:87:64:ed:fe:fb:af:f3:28:a4:ba:ed:0a:c5:e5:ab:24:dd:
fb:4d:95:9b:fc:15:14:f1:1c:fc:b0:f8:06:8f:6c:2b:26:28:
c1:f7:1f:8a:ab:7c:ff:81:47:7c:38:b2:e2:5e:e8:dd:a6:b8:
0e:00:7a:d5:27:e3:54:7d:6d:95:f6:30:66:34:ba:96:ce:dc:
ba:95:7c:02:c3:e2:10:91:f4:bc:0f:7b:8d:85:03:3f:a2:2f:
7a:59:d0:d7:d7:39:a5:75:3a:f0:25:59:58:81:31:b7:2d:e7:
06:09:16:cc:16:a7:07:7c:c0:ea:b8:50:10:79:08:5f:a5:c7:
30:2e:27:29
-----BEGIN CERTIFICATE-----
MIIFhjCCBG6gAwIBAgICIJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RUJBMUMxMTAvBgNVBAUTKDUxQzI2MTFCNDYxREQ1MTE4MzVBNTE0MUY4QUVFNTAy
RDNBMzlBRUIwHhcNMjMwNjA2MTY1MDQ4WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NDdmNjNlNy05ZTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEArBWxeE7SuI1JEKWyr0mMH5J/ZLAuVXdbljCrqOitWLLsMCWGx9IcaKR8dss9
SNfnAj97OkDbR7bY7pyv+cHas2CIhE56fu7Lx9ANEMV1wV7iYKCjmjBMnGNJmePh
AD0jyu9mLU8/bKkH0LL0gkEYTYPsrb6c5QRyL9lI0fyZskDDF0TJUFLoKKZDpXt7
H4I0R7xd71SYoPpM4CPomEq4wBuln0rsuciFRyz5NlKDlfdMXqCaxh5rWq1ufp9c
aKgBvH1A3uK8q6MtuPntuHPmc6/1ACt5/3MHwhv7szCcUe4Xe/2IdxIS4sDti1ov
LagHQSVUw9xSHqn2dKzQJm13UQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFEqL7Yb6
7s+hQrDy/Cun/QGyMiJrMB8GA1UdIwQYMBaAFFHCYRtGHdURg1pRQfiu5QLTo5rr
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkExQy82M0IyMTRBMkM4
MTUxMUU1ODFEMjA4ODRDNEY5QUUwMi9VY0poRzBZZDFSR0RXbEZCLUs3bEF0T2pt
dXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1VjSmhHMFlkMVJHRFdsRkItSzdsQXRPam11cy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RUJBMUMvNjNCMjE0QTJDODE1MTFFNTgxRDIwODg0QzRGOUFFMDIvMTcwQThDRDY4
OUZEMTFFREExOEEzOTZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E
JTAjMBIEAgABMAwDBAI7mcgDBAJnORQwDQQCAAIwBwMFASQCU4AwDQYJKoZIhvcN
AQELBQADggEBAN/qOUHdBik6mGq/qhLsXciVtR8oF/iGFhiX5xx15Di2pn0pc+b0
gxIxpkVd7hcpzvo7yzCsYTh6722rU7o4DFp8P0fUcjQmE/ozEt8yr75K/5MBlFmc
utVG1v9z3dzpLzTLAzABxcTt/rxIpEcerZrwgxLLaQU/sBKQHVeDBAOHZO3++6/z
KKS67QrF5ask3ftNlZv8FRTxHPyw+AaPbCsmKMH3H4qrfP+BR3w4suJe6N2muA4A
etUn41R9bZX2MGY0upbO3LqVfALD4hCR9LwPe42FAz+iL3pZ0NfXOaV1OvAlWViB
Mbct5wYJFswWpwd8wOq4UBB5CF+lxzAuJyk=
-----END CERTIFICATE-----
Generated at Sun Jun 8 23:12:14 2025 by rpki-client