Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EEE06/0559EEAE5CBE11ECB273DC7CC4F9AE02/1926D79A5CC211ECA783B985C4F9AE02.roa
File: 1926D79A5CC211ECA783B985C4F9AE02.roa (raw, json)
Hash identifier: 8lJProPOtnCMH/MKROz9r6QR2Sl5Rt/Da6DC6ys24VI=
Subject key identifier: CA:0A:19:BB:19:24:19:62:C1:0C:7B:03:2E:F7:64:04:9E:21:F5:0E
Certificate issuer: /CN=A91EEE06/serialNumber=5073951E5C1582693A87072EE548C65485B05A2C
Certificate serial: 0314
Authority key identifier: 50:73:95:1E:5C:15:82:69:3A:87:07:2E:E5:48:C6:54:85:B0:5A:2C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UHOVHlwVgmk6hwcu5UjGVIWwWiw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EEE06/0559EEAE5CBE11ECB273DC7CC4F9AE02/1926D79A5CC211ECA783B985C4F9AE02.roa
Signing time: Tue 17 Oct 2023 01:53:44 +0000
ROA not before: Tue 17 Oct 2023 01:53:44 +0000
ROA not after: Mon 30 Sep 2024 00:00:00 +0000
asID: 136969
IP address blocks: 103.152.116.0/23 maxlen: 23
103.152.116.0/24 maxlen: 24
103.152.117.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 788 (0x314)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EEE06
Validity
Not Before: Oct 17 01:53:44 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=652de928-bcfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:98:85:70:c0:fd:24:d2:1a:e2:4d:6b:c7:93:
c8:45:2b:b4:88:67:08:1a:a5:82:df:ee:4d:90:fb:
28:a3:a3:da:23:dc:cd:b1:3f:55:48:34:fc:9f:5e:
71:d4:85:40:11:66:c1:de:36:15:86:aa:c3:75:94:
f9:95:0d:1f:6b:57:5e:1d:c7:83:07:42:0e:b6:55:
38:be:81:3f:a6:c2:2b:b7:42:28:75:16:f5:1c:ce:
b3:f4:0c:15:67:71:e2:50:fb:7a:94:50:06:a0:76:
cc:2e:ef:7a:e7:6a:b7:d5:19:64:3d:b0:11:48:57:
52:b3:4f:24:21:df:34:6d:c8:25:9f:1b:14:c4:aa:
cc:1e:b7:40:ce:8a:47:82:d3:93:78:eb:61:17:1c:
97:a3:86:c6:2d:53:85:1c:8d:a5:10:a0:49:e3:41:
8e:d4:f1:77:08:25:f4:4c:82:a9:d3:48:a8:26:65:
0f:07:8e:2f:51:ec:74:1b:0a:ed:97:d7:48:3d:71:
10:c8:d5:02:54:d9:75:22:7f:22:15:64:56:59:3c:
7c:09:40:ad:e0:e7:8f:55:19:9a:ae:7f:c1:0b:64:
74:fd:47:e2:67:c2:af:da:43:da:ba:d3:04:16:19:
45:ba:51:66:1b:43:94:3f:10:b1:00:15:ad:04:84:
76:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:0A:19:BB:19:24:19:62:C1:0C:7B:03:2E:F7:64:04:9E:21:F5:0E
X509v3 Authority Key Identifier:
keyid:50:73:95:1E:5C:15:82:69:3A:87:07:2E:E5:48:C6:54:85:B0:5A:2C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EEE06/0559EEAE5CBE11ECB273DC7CC4F9AE02/UHOVHlwVgmk6hwcu5UjGVIWwWiw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UHOVHlwVgmk6hwcu5UjGVIWwWiw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EEE06/0559EEAE5CBE11ECB273DC7CC4F9AE02/1926D79A5CC211ECA783B985C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.152.116.0/23
Signature Algorithm: sha256WithRSAEncryption
21:cf:bd:6d:70:e1:80:5d:84:8d:cc:c1:c2:46:3f:fa:5d:45:
a5:23:d0:f6:7a:8c:29:fc:b3:fc:5a:89:8e:b7:15:50:ec:b2:
94:86:c6:47:b9:cf:35:59:2f:1c:d7:34:6c:c3:62:15:45:6a:
e9:f4:95:38:3a:ba:ac:d8:5d:03:90:fa:8a:37:86:2e:f7:31:
31:06:ce:1a:fe:70:e2:8e:43:d3:31:a2:a0:19:7c:e1:d9:4d:
06:91:c3:47:4a:81:81:5d:59:90:df:79:6e:ba:81:d2:33:8d:
0d:9a:ce:44:52:f3:36:24:d7:5b:53:7a:7a:f5:55:00:21:a6:
08:f3:c7:d6:7c:da:f8:b4:13:0f:11:3a:95:3a:e3:f4:b3:bf:
81:43:e0:12:dc:87:5a:48:60:a0:77:a5:cb:9c:52:38:40:f0:
f0:65:cd:0e:56:33:09:37:0d:07:12:15:78:33:0d:ab:2b:9d:
62:21:18:f2:73:78:a8:3d:2c:85:99:bc:6b:64:1f:5b:f3:36:
06:ce:67:3b:d4:66:04:a3:ca:a9:75:f2:68:f6:02:c5:55:90:
fc:68:b9:65:1f:ad:55:b1:a8:b8:a8:b3:6b:49:ac:67:09:21:
e3:19:1a:62:01:ad:ae:78:79:c1:bc:b4:cc:13:75:89:70:93:
61:b8:d5:77
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICAxQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RUVFMDYxMTAvBgNVBAUTKDUwNzM5NTFFNUMxNTgyNjkzQTg3MDcyRUU1NDhDNjU0
ODVCMDVBMkMwHhcNMjMxMDE3MDE1MzQ0WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NTJkZTkyOC1iY2ZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAtZiFcMD9JNIa4k1rx5PIRSu0iGcIGqWC3+5NkPsoo6PaI9zNsT9VSDT8n15x
1IVAEWbB3jYVhqrDdZT5lQ0fa1deHceDB0IOtlU4voE/psIrt0IodRb1HM6z9AwV
Z3HiUPt6lFAGoHbMLu9652q31RlkPbARSFdSs08kId80bcglnxsUxKrMHrdAzopH
gtOTeOthFxyXo4bGLVOFHI2lEKBJ40GO1PF3CCX0TIKp00ioJmUPB44vUex0Gwrt
l9dIPXEQyNUCVNl1In8iFWRWWTx8CUCt4OePVRmarn/BC2R0/UfiZ8Kv2kPautME
FhlFulFmG0OUPxCxABWtBIR2FQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMoKGbsZ
JBliwQx7Ay73ZASeIfUOMB8GA1UdIwQYMBaAFFBzlR5cFYJpOocHLuVIxlSFsFos
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUUwNi8wNTU5RUVBRTVD
QkUxMUVDQjI3M0RDN0NDNEY5QUUwMi9VSE9WSGx3VmdtazZod2N1NVVqR1ZJV3dX
aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1VIT1ZIbHdWZ21rNmh3Y3U1VWpHVklXd1dpdy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RUVFMDYvMDU1OUVFQUU1Q0JFMTFFQ0IyNzNEQzdDQzRGOUFFMDIvMTkyNkQ3OUE1
Q0MyMTFFQ0E3ODNCOTg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBAFnmHQwDQYJKoZIhvcNAQELBQADggEBACHPvW1w4YBdhI3M
wcJGP/pdRaUj0PZ6jCn8s/xaiY63FVDsspSGxke5zzVZLxzXNGzDYhVFaun0lTg6
uqzYXQOQ+oo3hi73MTEGzhr+cOKOQ9MxoqAZfOHZTQaRw0dKgYFdWZDfeW66gdIz
jQ2azkRS8zYk11tTenr1VQAhpgjzx9Z82vi0Ew8ROpU64/Szv4FD4BLch1pIYKB3
pcucUjhA8PBlzQ5WMwk3DQcSFXgzDasrnWIhGPJzeKg9LIWZvGtkH1vzNgbOZzvU
ZgSjyql18mj2AsVVkPxouWUfrVWxqLios2tJrGcJIeMZGmIBra54ecG8tMwTdYlw
k2G41Xc=
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:36:15 2025 by rpki-client