Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4268/C78EBCEA219311EC900C5653C4F9AE02/77627B5256F411EDA1BD0022C4F9AE02.roa
File: 77627B5256F411EDA1BD0022C4F9AE02.roa (raw, json)
Hash identifier: qprV07Z4oxbU8Rfi3fmgzJgrSGB6xT3zjquEv0qDNzM=
Subject key identifier: 3A:86:BF:92:0F:5C:BE:27:61:BD:43:7F:70:F2:66:3C:BD:1C:B4:9F
Certificate issuer: /CN=A91F4268/serialNumber=93732F3FC31359BBBF8B379624BF91351CCAD857
Certificate serial: 035E
Authority key identifier: 93:73:2F:3F:C3:13:59:BB:BF:8B:37:96:24:BF:91:35:1C:CA:D8:57
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k3MvP8MTWbu_izeWJL-RNRzK2Fc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F4268/C78EBCEA219311EC900C5653C4F9AE02/77627B5256F411EDA1BD0022C4F9AE02.roa
Signing time: Wed 15 Feb 2023 03:33:31 +0000
ROA not before: Wed 15 Feb 2023 03:33:31 +0000
ROA not after: Sun 31 Mar 2024 00:00:00 +0000
asID: 22822
IP address blocks: 111.119.0.0/22 maxlen: 22
111.119.2.0/23 maxlen: 24
111.119.4.0/22 maxlen: 22
111.119.11.0/24 maxlen: 24
111.119.16.0/23 maxlen: 23
111.119.20.0/23 maxlen: 23
111.119.22.0/23 maxlen: 23
111.119.24.0/21 maxlen: 24
117.121.248.0/21 maxlen: 24
203.9.176.0/21 maxlen: 24
203.77.184.0/22 maxlen: 22
203.77.188.0/22 maxlen: 22
203.77.188.0/23 maxlen: 24
203.77.190.0/24 maxlen: 24
203.77.191.0/24 maxlen: 24
2402:6800::/32 maxlen: 32
2402:6800:730::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 862 (0x35e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F4268/serialNumber=93732F3FC31359BBBF8B379624BF91351CCAD857
Validity
Not Before: Feb 15 03:33:31 2023 GMT
Not After : Mar 31 00:00:00 2024 GMT
Subject: CN=63ec528b-a79f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:7e:22:5e:88:e8:fb:4c:7f:24:3c:e4:b5:3d:
33:cf:f2:bf:88:34:ff:d6:b9:fc:f5:28:ed:c6:c0:
f6:12:d6:17:67:81:77:4e:70:0f:62:b9:8e:17:05:
50:3d:a9:ae:ba:a0:70:56:b9:5c:8b:00:85:4c:7b:
59:8f:c6:7e:66:a3:e5:61:e9:d1:8b:f9:01:c4:f4:
16:92:be:8f:3e:46:2b:6b:0d:07:48:30:50:30:b5:
ea:14:e3:28:32:0e:1c:79:00:d3:fb:2a:ff:e3:b9:
a5:86:3c:01:2b:73:74:a5:a5:0a:93:b4:4d:38:bd:
4f:cd:87:b2:a4:c0:1f:91:c3:98:c1:1a:aa:69:fa:
12:f5:c1:d5:4a:de:56:07:7c:fb:de:aa:0e:dd:4a:
b1:cf:54:e0:3f:f1:52:d7:c3:00:22:50:a2:3e:4b:
ba:18:3e:48:3f:30:ac:ff:72:c9:59:dd:69:9f:f6:
38:ab:58:81:a4:fc:70:a6:54:ee:f4:42:7f:92:7c:
7a:d2:ad:0c:cd:1d:4e:5b:5c:6b:06:ca:be:d3:5f:
a7:67:2e:d5:ac:a7:b9:b3:2e:85:a9:b9:2c:8b:d8:
92:e3:5b:63:47:d9:be:19:00:b7:c9:bc:01:e7:9d:
1d:d6:3d:c7:8f:52:82:a2:2c:6e:31:20:66:cc:2d:
37:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:86:BF:92:0F:5C:BE:27:61:BD:43:7F:70:F2:66:3C:BD:1C:B4:9F
X509v3 Authority Key Identifier:
keyid:93:73:2F:3F:C3:13:59:BB:BF:8B:37:96:24:BF:91:35:1C:CA:D8:57
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F4268/C78EBCEA219311EC900C5653C4F9AE02/k3MvP8MTWbu_izeWJL-RNRzK2Fc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k3MvP8MTWbu_izeWJL-RNRzK2Fc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4268/C78EBCEA219311EC900C5653C4F9AE02/77627B5256F411EDA1BD0022C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
111.119.0.0/21
111.119.11.0/24
111.119.16.0/23
111.119.20.0-111.119.31.255
117.121.248.0/21
203.9.176.0/21
203.77.184.0/21
IPv6:
2402:6800::/32
Signature Algorithm: sha256WithRSAEncryption
df:1e:25:40:a6:f9:30:ba:9b:93:4d:09:a7:3b:8b:29:66:e4:
89:2b:70:d4:2d:fe:27:b8:3c:f5:c8:50:69:e4:a6:cf:2a:77:
e9:1a:45:4a:fa:ca:5d:7c:01:1c:4c:64:66:88:bf:aa:a5:90:
74:c8:1d:7d:82:d4:24:f0:52:0f:43:5d:0d:5e:93:9f:6c:b7:
17:9d:99:9d:0c:d7:10:20:06:ee:02:58:36:80:2a:db:b8:79:
fb:39:9c:84:1b:b2:dc:18:71:f1:d9:37:69:17:a9:03:aa:4e:
14:63:f5:47:81:d4:fa:8d:b5:86:f4:4b:e6:e6:4e:8a:6b:05:
5c:6e:cf:4b:f3:7e:b5:fd:ad:c1:4f:68:01:ff:62:ff:68:c4:
c7:d6:ae:6b:e5:2d:1b:dc:12:02:fa:7a:9f:37:a0:97:87:bc:
42:8f:b9:ea:9f:ea:9a:18:be:b2:96:10:d2:68:3e:92:97:10:
23:ac:3f:97:c7:6e:30:a9:f3:cf:72:d0:d1:a9:27:05:5f:a0:
23:8f:4b:6b:34:2e:0f:5f:9b:30:38:2b:85:7e:98:92:ec:11:
bb:ba:01:ae:2d:9a:d5:ed:74:07:62:f6:48:c6:67:ec:8e:41:
43:2a:62:04:98:ea:66:d5:3d:8f:c2:62:40:e0:04:48:6f:22:
ca:92:1d:94
-----BEGIN CERTIFICATE-----
MIIFrDCCBJSgAwIBAgICA14wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RjQyNjgxMTAvBgNVBAUTKDkzNzMyRjNGQzMxMzU5QkJCRjhCMzc5NjI0QkY5MTM1
MUNDQUQ4NTcwHhcNMjMwMjE1MDMzMzMxWhcNMjQwMzMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02M2VjNTI4Yi1hNzlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA0H4iXojo+0x/JDzktT0zz/K/iDT/1rn89SjtxsD2EtYXZ4F3TnAPYrmOFwVQ
PamuuqBwVrlciwCFTHtZj8Z+ZqPlYenRi/kBxPQWkr6PPkYraw0HSDBQMLXqFOMo
Mg4ceQDT+yr/47mlhjwBK3N0paUKk7RNOL1PzYeypMAfkcOYwRqqafoS9cHVSt5W
B3z73qoO3Uqxz1TgP/FS18MAIlCiPku6GD5IPzCs/3LJWd1pn/Y4q1iBpPxwplTu
9EJ/knx60q0MzR1OW1xrBsq+01+nZy7VrKe5sy6Fqbksi9iS41tjR9m+GQC3ybwB
550d1j3Hj1KCoixuMSBmzC03swIDAQABo4IC0DCCAswwHQYDVR0OBBYEFDqGv5IP
XL4nYb1Df3DyZjy9HLSfMB8GA1UdIwQYMBaAFJNzLz/DE1m7v4s3liS/kTUcythX
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDI2OC9DNzhFQkNFQTIx
OTMxMUVDOTAwQzU2NTNDNEY5QUUwMi9rM012UDhNVFdidV9pemVXSkwtUk5Seksy
RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2szTXZQOE1UV2J1X2l6ZVdKTC1STlJ6SzJGYy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RjQyNjgvQzc4RUJDRUEyMTkzMTFFQzkwMEM1NjUzQzRGOUFFMDIvNzc2MjdCNTI1
NkY0MTFFREExQkQwMDIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwWgYIKwYBBQUHAQcBAf8E
SzBJMDgEAgABMDIDBANvdwADBABvdwsDBAFvdxAwDAMEAm93FAMEBW93AAMEA3V5
+AMEA8sJsAMEA8tNuDANBAIAAjAHAwUAJAJoADANBgkqhkiG9w0BAQsFAAOCAQEA
3x4lQKb5MLqbk00JpzuLKWbkiStw1C3+J7g89chQaeSmzyp36RpFSvrKXXwBHExk
Zoi/qqWQdMgdfYLUJPBSD0NdDV6Tn2y3F52ZnQzXECAG7gJYNoAq27h5+zmchBuy
3Bhx8dk3aRepA6pOFGP1R4HU+o21hvRL5uZOimsFXG7PS/N+tf2twU9oAf9i/2jE
x9aua+UtG9wSAvp6nzegl4e8Qo+56p/qmhi+spYQ0mg+kpcQI6w/l8duMKnzz3LQ
0aknBV+gI49LazQuD1+bMDgrhX6YkuwRu7oBri2a1e10B2L2SMZn7I5BQypiBJjq
ZtU9j8JiQOAESG8iypIdlA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:48 2024 by rpki-client on console-fra.rpki-client.org