Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/F333D1B294BB11EE9076636BC4F9AE02.roa
File: F333D1B294BB11EE9076636BC4F9AE02.roa (raw, json)
Hash identifier: XO1YEaa68w1S0f/J3vmJKlyPfJ1GrYLiZeXqZRM+2qk=
Subject key identifier: FB:CB:B0:68:5A:F2:4A:E3:D9:D7:5E:34:02:3C:66:76:0E:1B:A8:7B
Certificate issuer: /CN=A91FAA91/serialNumber=A0C80CEE063C9CC82CDCB0BC745C4FE46DD02657
Certificate serial: 74
Authority key identifier: A0:C8:0C:EE:06:3C:9C:C8:2C:DC:B0:BC:74:5C:4F:E4:6D:D0:26:57
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/F333D1B294BB11EE9076636BC4F9AE02.roa
Signing time: Thu 07 Dec 2023 04:49:06 +0000
ROA not before: Thu 07 Dec 2023 04:49:06 +0000
ROA not after: Wed 01 May 2024 00:00:00 +0000
asID: 395839
IP address blocks: 103.83.41.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116 (0x74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91FAA91/serialNumber=A0C80CEE063C9CC82CDCB0BC745C4FE46DD02657
Validity
Not Before: Dec 7 04:49:06 2023 GMT
Not After : May 1 00:00:00 2024 GMT
Subject: CN=65714ec1-a94b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:6d:01:c8:f9:03:19:d3:8b:7b:28:c0:f7:dc:
af:b8:1d:7c:c9:a9:06:80:b7:b8:6f:24:a1:09:b1:
65:8e:9f:01:3e:3d:77:0a:d6:f3:9b:1b:02:73:37:
59:27:1d:61:1d:23:d9:d4:81:d2:d8:e7:15:2f:90:
c8:56:18:f6:2c:ec:fd:63:04:b4:63:3c:a7:76:f5:
53:c6:60:73:e1:12:6f:d7:92:00:91:a3:b3:4f:a0:
5f:66:3a:97:c1:53:8d:1e:87:14:f1:cd:5a:a5:c3:
bd:db:b7:bd:0f:80:16:c4:9d:8e:58:69:bf:b9:9f:
a7:80:5b:6b:00:d1:63:b1:01:b4:f6:98:8e:d2:cb:
9d:fa:09:f2:cc:fb:85:4a:fd:b0:d9:a7:8d:78:01:
80:8d:45:34:45:5f:66:41:a4:1d:d4:bd:6d:85:66:
8e:a7:9d:8d:36:1d:3c:5a:22:62:4b:8b:07:8f:d0:
ac:0e:4a:aa:ba:d9:f5:c3:ef:de:81:b0:58:44:ca:
5a:c2:56:86:41:67:83:f0:d6:aa:e8:59:26:8b:47:
98:28:bd:d8:35:79:29:2a:46:81:c9:89:97:4e:22:
91:8e:a0:ae:72:82:69:16:7a:a4:d6:b6:c8:2b:80:
70:d2:03:dd:8e:a7:37:5d:f7:bd:ed:f0:e6:4c:a6:
a8:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:CB:B0:68:5A:F2:4A:E3:D9:D7:5E:34:02:3C:66:76:0E:1B:A8:7B
X509v3 Authority Key Identifier:
keyid:A0:C8:0C:EE:06:3C:9C:C8:2C:DC:B0:BC:74:5C:4F:E4:6D:D0:26:57
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/F333D1B294BB11EE9076636BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.83.41.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:bd:01:86:8f:27:16:dc:b1:b3:e2:1b:8a:28:65:79:79:85:
6f:51:16:e4:19:fe:3f:63:d4:c0:26:bd:17:90:35:e8:a1:11:
f4:b4:8d:bc:ef:49:8c:bc:09:03:bf:45:f3:99:13:ca:d4:2d:
3b:ae:1f:a6:df:1a:d3:76:5a:07:c1:96:ec:7e:4a:d1:99:d9:
94:0e:38:c0:60:2a:21:6a:c2:b7:a4:03:5c:99:bd:45:2c:b6:
36:e6:1b:1d:ab:28:03:95:55:fd:43:3c:21:4a:73:c8:23:19:
4c:92:56:18:f5:79:d4:5d:2f:ff:6b:14:36:5e:df:d9:25:3e:
e9:d9:d3:54:a3:93:a7:3e:dd:ee:97:0d:7d:5f:8c:3c:9e:78:
60:7b:fe:c2:c9:ae:91:23:10:eb:0c:29:4b:c9:13:c0:53:27:
4c:73:44:97:cb:ad:ac:dc:51:9c:2c:56:8d:ba:d6:41:be:39:
ed:06:18:93:f7:2a:32:eb:f6:8b:b0:d5:4d:c3:65:0f:69:ac:
85:0c:5d:34:0c:f8:46:40:a1:30:bf:56:83:3d:43:cc:23:e0:
1a:7d:78:b9:19:23:6a:d4:a9:ab:35:ab:37:a0:79:af:98:5d:
97:30:e8:05:68:66:82:59:70:16:ce:34:a9:7e:2b:ed:ce:69:
62:a9:37:0c
-----BEGIN CERTIFICATE-----
MIIFcDCCBFigAwIBAgIBdDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG
QUE5MTExMC8GA1UEBRMoQTBDODBDRUUwNjNDOUNDODJDRENCMEJDNzQ1QzRGRTQ2
REQwMjY1NzAeFw0yMzEyMDcwNDQ5MDZaFw0yNDA1MDEwMDAwMDBaMBgxFjAUBgNV
BAMTDTY1NzE0ZWMxLWE5NGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC+bQHI+QMZ04t7KMD33K+4HXzJqQaAt7hvJKEJsWWOnwE+PXcK1vObGwJzN1kn
HWEdI9nUgdLY5xUvkMhWGPYs7P1jBLRjPKd29VPGYHPhEm/XkgCRo7NPoF9mOpfB
U40ehxTxzVqlw73bt70PgBbEnY5Yab+5n6eAW2sA0WOxAbT2mI7Sy536CfLM+4VK
/bDZp414AYCNRTRFX2ZBpB3UvW2FZo6nnY02HTxaImJLiweP0KwOSqq62fXD796B
sFhEylrCVoZBZ4Pw1qroWSaLR5govdg1eSkqRoHJiZdOIpGOoK5ygmkWeqTWtsgr
gHDSA92Opzdd973t8OZMpqgjAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU+8uwaFry
SuPZ1140Ajxmdg4bqHswHwYDVR0jBBgwFoAUoMgM7gY8nMgs3LC8dFxP5G3QJlcw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZBQTkxLzk0MjBEMjEwMEE1
QTExRUVBM0Y1QjQ0MUM0RjlBRTAyL29NZ003Z1k4bk1nczNMQzhkRnhQNUczUUps
Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvb01nTTdnWThuTWdzM0xDOGRGeFA1RzNRSmxjLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw
C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG
QUE5MS85NDIwRDIxMDBBNUExMUVFQTNGNUI0NDFDNEY5QUUwMi9GMzMzRDFCMjk0
QkIxMUVFOTA3NjYzNkJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v
cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEAGdTKTANBgkqhkiG9w0BAQsFAAOCAQEAXr0Bho8nFtyxs+Ib
iihleXmFb1EW5Bn+P2PUwCa9F5A16KER9LSNvO9JjLwJA79F85kTytQtO64fpt8a
03ZaB8GW7H5K0ZnZlA44wGAqIWrCt6QDXJm9RSy2NuYbHasoA5VV/UM8IUpzyCMZ
TJJWGPV51F0v/2sUNl7f2SU+6dnTVKOTpz7d7pcNfV+MPJ54YHv+wsmukSMQ6wwp
S8kTwFMnTHNEl8utrNxRnCxWjbrWQb457QYYk/cqMuv2i7DVTcNlD2mshQxdNAz4
RkChML9Wgz1DzCPgGn14uRkjatSpqzWrN6B5r5hdlzDoBWhmgllwFs40qX4r7c5p
Yqk3DA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:52 2024 by rpki-client on console-fra.rpki-client.org