Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/197355D6BB4D11EC8827D729C4F9AE02.roa
File: 197355D6BB4D11EC8827D729C4F9AE02.roa (raw, json)
Hash identifier: KReNDidnvgD6rvv7He+UkMtyiFKl2Opu8oN0+WydHuk=
Subject key identifier: 46:2D:26:6F:F4:AE:7E:9A:38:67:2B:43:FB:02:8C:97:C9:FE:22:07
Certificate issuer: /CN=A91F605B/serialNumber=91338690DEBA578CE738218A9E220854D1B5275F
Certificate serial: E1
Authority key identifier: 91:33:86:90:DE:BA:57:8C:E7:38:21:8A:9E:22:08:54:D1:B5:27:5F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/197355D6BB4D11EC8827D729C4F9AE02.roa
Signing time: Wed 13 Apr 2022 17:13:56 +0000
ROA not before: Wed 13 Apr 2022 17:13:56 +0000
ROA not after: Thu 02 Mar 2023 00:00:00 +0000
asID: 142600
IP address blocks: 103.178.66.0/23 maxlen: 24
2001:df0:3540::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 225 (0xe1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F605B/serialNumber=91338690DEBA578CE738218A9E220854D1B5275F
Validity
Not Before: Apr 13 17:13:56 2022 GMT
Not After : Mar 2 00:00:00 2023 GMT
Subject: CN=625704d3-e4fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:6a:e6:f9:0b:b1:0a:15:34:f9:a4:2f:36:d2:
e7:51:fa:3b:dd:6a:1a:75:d1:ed:00:2a:f1:24:22:
cd:ff:71:c5:b1:9f:df:6e:b3:86:7f:e6:60:f4:e6:
da:87:03:1f:dc:ff:cc:db:4a:78:30:b5:b6:bf:a5:
72:3e:7e:c1:c0:42:b0:85:d1:50:d1:6c:cc:f3:30:
04:92:19:6e:e4:d5:ee:af:86:65:59:31:06:5d:d4:
3f:8f:73:d4:15:13:e8:0c:b9:85:f6:4a:aa:5d:00:
d9:6d:a0:83:88:4a:94:d3:f5:90:56:b3:9e:e6:72:
e1:c4:e8:6f:02:a7:2c:df:bf:2c:5e:9f:56:8e:22:
e0:7c:47:a2:e6:bc:7d:73:74:33:d9:02:08:c2:ac:
0e:dd:7a:77:37:d8:a6:28:01:88:b5:ef:1a:d9:bb:
de:d1:83:61:c7:c0:f2:ea:bd:0e:2b:96:91:42:fc:
d0:cd:e3:a1:ff:52:1d:b4:ac:1a:d3:ed:3e:18:d7:
80:a6:f9:d3:cb:73:5c:67:7c:72:9d:41:4c:6b:73:
61:b5:9e:ca:6a:69:75:c0:21:d8:33:d8:7b:5f:f5:
b9:73:26:cf:af:9a:f6:6c:28:6f:a1:1f:95:ca:7f:
bd:01:e4:12:25:7f:e3:33:a9:b8:d7:0d:7a:b5:5e:
cd:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:2D:26:6F:F4:AE:7E:9A:38:67:2B:43:FB:02:8C:97:C9:FE:22:07
X509v3 Authority Key Identifier:
keyid:91:33:86:90:DE:BA:57:8C:E7:38:21:8A:9E:22:08:54:D1:B5:27:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/197355D6BB4D11EC8827D729C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.178.66.0/23
IPv6:
2001:df0:3540::/48
Signature Algorithm: sha256WithRSAEncryption
2e:f6:67:56:5c:e6:e8:cc:f7:0b:08:ea:3b:a2:4f:ab:e8:ac:
fc:28:57:fe:86:15:54:b1:33:78:d9:c5:32:c7:64:be:82:91:
d6:a4:38:e9:0f:27:c0:a5:e9:cb:8a:86:54:45:f0:65:92:5f:
6f:94:3b:cb:c6:45:5b:1f:47:db:4f:8c:55:d3:35:23:d4:75:
2a:8b:24:c7:d7:4c:af:51:1d:ed:6a:a9:12:df:10:7f:03:2f:
cf:1b:8c:dc:ea:b2:f9:c0:33:fb:13:d0:64:cf:48:4b:70:19:
85:0c:a7:a6:32:1d:2f:68:65:60:43:4f:b2:b9:38:18:93:29:
6d:53:24:77:a0:88:0e:79:13:fb:dd:ee:f1:05:2a:75:cc:48:
43:d2:cb:19:a3:14:a8:ed:48:32:75:9b:b3:25:8e:e4:e2:d0:
6e:6b:c6:1a:bd:f7:9a:c2:e5:ac:0a:f2:55:2c:5f:f4:d9:5c:
56:e1:97:74:7b:30:94:fa:8a:4e:a2:62:13:a9:d2:57:a8:f9:
35:20:41:59:c2:b5:9d:90:a9:eb:15:10:d2:42:7a:2f:b4:f7:
89:b7:a2:e1:a1:15:ba:c3:da:39:69:af:30:5e:1a:64:11:66:
1c:3e:bd:7a:61:ea:0d:0c:8e:08:14:45:98:ab:08:54:f7:58:
5f:76:be:c2
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgICAOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RjYwNUIxMTAvBgNVBAUTKDkxMzM4NjkwREVCQTU3OENFNzM4MjE4QTlFMjIwODU0
RDFCNTI3NUYwHhcNMjIwNDEzMTcxMzU2WhcNMjMwMzAyMDAwMDAwWjAYMRYwFAYD
VQQDEw02MjU3MDRkMy1lNGZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAtmrm+QuxChU0+aQvNtLnUfo73WoaddHtACrxJCLN/3HFsZ/fbrOGf+Zg9Oba
hwMf3P/M20p4MLW2v6VyPn7BwEKwhdFQ0WzM8zAEkhlu5NXur4ZlWTEGXdQ/j3PU
FRPoDLmF9kqqXQDZbaCDiEqU0/WQVrOe5nLhxOhvAqcs378sXp9WjiLgfEei5rx9
c3Qz2QIIwqwO3Xp3N9imKAGIte8a2bve0YNhx8Dy6r0OK5aRQvzQzeOh/1IdtKwa
0+0+GNeApvnTy3NcZ3xynUFMa3NhtZ7Kaml1wCHYM9h7X/W5cybPr5r2bChvoR+V
yn+9AeQSJX/jM6m41w16tV7NZwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFEYtJm/0
rn6aOGcrQ/sCjJfJ/iIHMB8GA1UdIwQYMBaAFJEzhpDeuleM5zghip4iCFTRtSdf
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjA1Qi85ODE3RDI3MjY0
Q0MxMUVDOTZENEE1NThDNEY5QUUwMi9rVE9Ha042NlY0em5PQ0dLbmlJSVZORzFK
MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2tUT0drTjY2VjR6bk9DR0tuaUlJVk5HMUoxOC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RjYwNUIvOTgxN0QyNzI2NENDMTFFQzk2RDRBNTU4QzRGOUFFMDIvMTk3MzU1RDZC
QjREMTFFQzg4MjdENzI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E
ITAfMAwEAgABMAYDBAFnskIwDwQCAAIwCQMHACABDfA1QDANBgkqhkiG9w0BAQsF
AAOCAQEALvZnVlzm6Mz3CwjqO6JPq+is/ChX/oYVVLEzeNnFMsdkvoKR1qQ46Q8n
wKXpy4qGVEXwZZJfb5Q7y8ZFWx9H20+MVdM1I9R1Koskx9dMr1Ed7WqpEt8QfwMv
zxuM3Oqy+cAz+xPQZM9IS3AZhQynpjIdL2hlYENPsrk4GJMpbVMkd6CIDnkT+93u
8QUqdcxIQ9LLGaMUqO1IMnWbsyWO5OLQbmvGGr33msLlrAryVSxf9NlcVuGXdHsw
lPqKTqJiE6nSV6j5NSBBWcK1nZCp6xUQ0kJ6L7T3ibei4aEVusPaOWmvMF4aZBFm
HD69emHqDQyOCBRFmKsIVPdYX3a+wg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:51 2024 by rpki-client on console-fra.rpki-client.org