Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/0CC9F470BA5C11EDA3768857C4F9AE02.roa
File: 0CC9F470BA5C11EDA3768857C4F9AE02.roa (raw, json)
Hash identifier: pfxgICZtb8VEXkyw9nBXLZ26mOfv28PQy1cucsZds68=
Subject key identifier: 87:1C:5C:B8:D6:81:E3:60:D9:09:0D:84:A9:E9:C5:FA:62:4F:54:89
Certificate issuer: /CN=A91F605B/serialNumber=91338690DEBA578CE738218A9E220854D1B5275F
Certificate serial: 0290
Authority key identifier: 91:33:86:90:DE:BA:57:8C:E7:38:21:8A:9E:22:08:54:D1:B5:27:5F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/0CC9F470BA5C11EDA3768857C4F9AE02.roa
Signing time: Sat 04 Mar 2023 07:13:24 +0000
ROA not before: Sat 04 Mar 2023 07:13:24 +0000
ROA not after: Fri 01 Mar 2024 00:00:00 +0000
asID: 58945
IP address blocks: 103.178.67.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 656 (0x290)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F605B/serialNumber=91338690DEBA578CE738218A9E220854D1B5275F
Validity
Not Before: Mar 4 07:13:24 2023 GMT
Not After : Mar 1 00:00:00 2024 GMT
Subject: CN=6402ef93-5a7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f6:d6:a8:55:8b:33:f8:18:9d:55:7e:a0:1a:
7c:c6:06:b6:06:16:ba:d8:35:dc:d1:72:50:b4:b3:
a1:c9:2f:1f:fd:13:b7:b0:85:7e:64:01:04:6c:ee:
05:f9:11:b9:a9:21:eb:dd:74:fc:47:fa:05:a2:33:
95:1c:49:1a:43:d0:48:19:03:5b:1a:67:45:7e:5b:
fc:b8:62:50:85:f8:bb:45:1d:ea:dd:bd:c9:60:cd:
38:e5:f1:d9:27:d3:03:83:82:72:f7:6c:91:ff:4b:
f7:c1:40:40:1a:b0:e0:1b:71:14:f7:ff:b7:d9:7d:
d9:bb:52:5d:be:6e:d9:44:f8:7e:f6:ae:09:c1:ad:
f0:17:cc:dc:a8:54:81:f1:6f:59:14:ab:7b:35:97:
f3:f1:7e:8b:7b:e9:c4:6c:ec:10:a2:2a:05:3d:94:
1e:8e:2e:c8:35:17:61:d6:92:7b:a9:dd:88:c5:6e:
a2:cc:85:67:06:68:1d:03:4e:6c:53:b1:e1:22:29:
d0:9c:71:95:a0:cf:c1:60:75:77:8e:c8:2a:51:da:
79:95:4b:07:84:58:d8:73:54:f0:95:d7:ec:0b:34:
45:ea:7e:1e:d6:1c:e4:59:51:b6:73:c5:5d:f4:61:
f8:49:4b:05:4c:bd:fc:e8:f3:76:0c:1c:af:46:a0:
07:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:1C:5C:B8:D6:81:E3:60:D9:09:0D:84:A9:E9:C5:FA:62:4F:54:89
X509v3 Authority Key Identifier:
keyid:91:33:86:90:DE:BA:57:8C:E7:38:21:8A:9E:22:08:54:D1:B5:27:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/0CC9F470BA5C11EDA3768857C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.178.67.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:d0:a1:cf:13:09:fd:ab:af:8e:d1:63:61:14:f8:73:e4:e7:
d1:52:6f:44:45:6d:96:7a:9e:6b:3d:bc:3f:a9:a0:a3:33:0a:
50:15:7d:25:69:33:f1:01:3c:3d:68:11:b7:2a:fa:dc:a7:38:
db:7a:1e:95:c0:a7:b0:8e:a7:9e:44:c0:8e:38:e0:6c:8e:0a:
a9:cb:c7:81:2a:be:ef:64:61:3d:bd:11:f0:00:0f:e9:e7:a7:
c4:28:65:88:f1:4f:d0:d7:f1:18:bf:20:3a:92:85:fd:27:cf:
31:32:1d:54:5a:2a:ca:68:1d:e0:2a:6b:4a:f4:5e:b4:2a:94:
5e:13:8e:84:5f:a3:e0:98:5c:97:d3:0d:73:ba:df:ae:b6:3f:
ef:35:90:19:a6:df:4c:66:2d:4d:c9:88:9a:52:d8:31:81:51:
60:5b:9b:8f:89:4e:a1:d2:9c:33:3e:e5:da:a6:44:9a:6f:de:
27:c8:ac:af:a3:a6:ec:fd:d1:87:b9:09:e8:02:8f:4b:61:b0:
7f:73:14:69:70:95:96:a7:ba:75:9a:4f:b6:39:12:53:44:fa:
d7:66:fc:dd:58:79:49:fd:dd:6a:21:c9:36:42:d0:62:83:1a:
93:aa:64:80:2f:e1:13:f2:ae:c3:2b:3f:14:1d:1e:2a:39:25:
74:73:fe:1d
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICApAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RjYwNUIxMTAvBgNVBAUTKDkxMzM4NjkwREVCQTU3OENFNzM4MjE4QTlFMjIwODU0
RDFCNTI3NUYwHhcNMjMwMzA0MDcxMzI0WhcNMjQwMzAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NDAyZWY5My01YTdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAxPbWqFWLM/gYnVV+oBp8xga2Bha62DXc0XJQtLOhyS8f/RO3sIV+ZAEEbO4F
+RG5qSHr3XT8R/oFojOVHEkaQ9BIGQNbGmdFflv8uGJQhfi7RR3q3b3JYM045fHZ
J9MDg4Jy92yR/0v3wUBAGrDgG3EU9/+32X3Zu1Jdvm7ZRPh+9q4Jwa3wF8zcqFSB
8W9ZFKt7NZfz8X6Le+nEbOwQoioFPZQeji7INRdh1pJ7qd2IxW6izIVnBmgdA05s
U7HhIinQnHGVoM/BYHV3jsgqUdp5lUsHhFjYc1TwldfsCzRF6n4e1hzkWVG2c8Vd
9GH4SUsFTL386PN2DByvRqAHdwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIccXLjW
geNg2QkNhKnpxfpiT1SJMB8GA1UdIwQYMBaAFJEzhpDeuleM5zghip4iCFTRtSdf
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjA1Qi85ODE3RDI3MjY0
Q0MxMUVDOTZENEE1NThDNEY5QUUwMi9rVE9Ha042NlY0em5PQ0dLbmlJSVZORzFK
MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2tUT0drTjY2VjR6bk9DR0tuaUlJVk5HMUoxOC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RjYwNUIvOTgxN0QyNzI2NENDMTFFQzk2RDRBNTU4QzRGOUFFMDIvMENDOUY0NzBC
QTVDMTFFREEzNzY4ODU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBABnskMwDQYJKoZIhvcNAQELBQADggEBAKbQoc8TCf2rr47R
Y2EU+HPk59FSb0RFbZZ6nms9vD+poKMzClAVfSVpM/EBPD1oEbcq+tynONt6HpXA
p7COp55EwI444GyOCqnLx4Eqvu9kYT29EfAAD+nnp8QoZYjxT9DX8Ri/IDqShf0n
zzEyHVRaKspoHeAqa0r0XrQqlF4TjoRfo+CYXJfTDXO63662P+81kBmm30xmLU3J
iJpS2DGBUWBbm4+JTqHSnDM+5dqmRJpv3ifIrK+jpuz90Ye5CegCj0thsH9zFGlw
lZanunWaT7Y5ElNE+tdm/N1YeUn93WohyTZC0GKDGpOqZIAv4RPyrsMrPxQdHio5
JXRz/h0=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:51 2024 by rpki-client on console-fra.rpki-client.org