Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE75F/AB9EB8CAA9F511EB8A492254C4F9AE02/BCF2624815FB11EDAB9C9D51C4F9AE02.roa
File: BCF2624815FB11EDAB9C9D51C4F9AE02.roa (raw, json)
Hash identifier: Faqt+j9lG4OQW2fCJK7wVXPsfKVfkzhWB9xilH/8gfY=
Subject key identifier: 93:18:99:44:53:2D:D8:68:72:A0:6C:5F:B3:DD:16:FC:CB:76:5C:33
Certificate issuer: /CN=A91FE75F/serialNumber=4D14E1AF22F53B22F56DEF02EB72EA5DD6BE77E2
Certificate serial: 28
Authority key identifier: 4D:14:E1:AF:22:F5:3B:22:F5:6D:EF:02:EB:72:EA:5D:D6:BE:77:E2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TRThryL1OyL1be8C63LqXda-d-I.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91FE75F/AB9EB8CAA9F511EB8A492254C4F9AE02/BCF2624815FB11EDAB9C9D51C4F9AE02.roa
Signing time: Sun 07 Aug 2022 02:50:47 +0000
ROA not before: Sun 07 Aug 2022 02:50:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 142000
IP address blocks: 103.163.254.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40 (0x28)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91FE75F/serialNumber=4D14E1AF22F53B22F56DEF02EB72EA5DD6BE77E2
Validity
Not Before: Aug 7 02:50:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=62ef2887-34de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:0d:50:5e:da:3f:f9:cd:45:00:0e:1e:58:20:
ba:08:01:62:da:c7:4d:8e:06:81:68:df:d8:a3:e3:
71:7e:23:af:57:b7:61:a0:d2:2a:bc:0f:e3:0d:fb:
70:f0:68:41:6d:5b:8e:1d:b0:74:7c:b0:f8:bc:a1:
fb:b5:d4:94:49:7c:10:0e:70:bc:e8:5e:13:7f:21:
63:1d:af:e2:4d:bd:7a:73:4a:a6:1d:67:bb:f0:80:
57:c9:1d:ca:fa:15:b5:2f:69:d3:cf:4a:ac:f6:b2:
37:93:1f:3b:93:a8:a2:64:ed:86:5f:d2:19:66:7a:
03:c6:8c:39:ac:ea:47:0e:51:54:4c:60:45:36:d6:
73:e9:2f:59:20:62:cb:f0:aa:db:39:7a:b0:69:e9:
8e:56:31:91:b8:cf:fe:5c:23:7b:0e:75:54:53:c5:
ee:f9:e9:2d:c9:d4:39:98:48:9a:8f:e2:42:58:a7:
6b:b1:ff:67:fe:e5:51:fc:84:49:58:c1:94:6c:96:
1c:e9:64:57:c9:64:fe:ce:f9:61:dc:02:e6:07:9a:
43:03:e3:cb:65:aa:cf:ad:19:00:9b:dc:33:69:1f:
e8:29:23:20:01:c4:3c:22:f9:23:bd:08:80:4c:3e:
38:55:09:9d:2c:a6:e8:5f:38:66:f2:3e:84:a7:ba:
30:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:18:99:44:53:2D:D8:68:72:A0:6C:5F:B3:DD:16:FC:CB:76:5C:33
X509v3 Authority Key Identifier:
keyid:4D:14:E1:AF:22:F5:3B:22:F5:6D:EF:02:EB:72:EA:5D:D6:BE:77:E2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91FE75F/AB9EB8CAA9F511EB8A492254C4F9AE02/TRThryL1OyL1be8C63LqXda-d-I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TRThryL1OyL1be8C63LqXda-d-I.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE75F/AB9EB8CAA9F511EB8A492254C4F9AE02/BCF2624815FB11EDAB9C9D51C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.163.254.0/24
Signature Algorithm: sha256WithRSAEncryption
15:54:dd:7f:43:03:5a:18:98:fc:ac:05:37:ce:e3:c8:f9:f5:
af:29:f8:79:7f:d7:92:e3:7a:c3:ff:de:27:a8:f9:45:8b:ff:
3b:96:32:c8:cf:14:b9:40:da:d0:80:52:78:21:71:68:ec:24:
71:5b:8b:24:5f:d0:d5:2d:15:10:fc:70:65:f2:92:80:ec:1b:
e9:1d:14:9e:5e:6e:5e:cb:77:e8:5b:43:59:60:2e:ac:b7:c4:
b0:91:28:e5:d1:6c:35:2e:ed:26:f5:2e:03:76:e8:a2:7d:d8:
e0:50:7f:a5:3d:c7:8f:c3:38:aa:00:06:27:58:57:c9:e9:b0:
58:57:0a:ae:4b:4b:7a:39:56:0b:dc:62:6c:4c:cd:5b:cc:92:
16:00:a7:1a:40:11:ac:3a:2d:3b:a5:e2:fb:3a:04:b0:f0:60:
5c:d8:4b:4b:0b:78:b2:1a:0d:6e:5e:29:0c:2d:ae:07:a9:1c:
12:62:99:92:88:ed:9b:5b:48:88:dd:4c:1f:22:62:49:3d:3f:
75:28:b4:36:95:49:68:8a:7f:dc:db:be:27:fe:ca:ba:c5:11:
82:03:2a:b3:c3:8a:03:4b:ef:a4:b2:28:e9:72:3f:0e:38:fe:
e1:e8:21:8b:22:5b:99:c7:14:45:79:e6:79:f9:2e:ad:41:fe:
04:49:bf:b6
-----BEGIN CERTIFICATE-----
MIIFcDCCBFigAwIBAgIBKDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG
RTc1RjExMC8GA1UEBRMoNEQxNEUxQUYyMkY1M0IyMkY1NkRFRjAyRUI3MkVBNURE
NkJFNzdFMjAeFw0yMjA4MDcwMjUwNDdaFw0yMzA3MDEwMDAwMDBaMBgxFjAUBgNV
BAMTDTYyZWYyODg3LTM0ZGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDRDVBe2j/5zUUADh5YILoIAWLax02OBoFo39ij43F+I69Xt2Gg0iq8D+MN+3Dw
aEFtW44dsHR8sPi8ofu11JRJfBAOcLzoXhN/IWMdr+JNvXpzSqYdZ7vwgFfJHcr6
FbUvadPPSqz2sjeTHzuTqKJk7YZf0hlmegPGjDms6kcOUVRMYEU21nPpL1kgYsvw
qts5erBp6Y5WMZG4z/5cI3sOdVRTxe756S3J1DmYSJqP4kJYp2ux/2f+5VH8hElY
wZRslhzpZFfJZP7O+WHcAuYHmkMD48tlqs+tGQCb3DNpH+gpIyABxDwi+SO9CIBM
PjhVCZ0spuhfOGbyPoSnujB5AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUkxiZRFMt
2GhyoGxfs90W/Mt2XDMwHwYDVR0jBBgwFoAUTRThryL1OyL1be8C63LqXda+d+Iw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZFNzVGL0FCOUVCOENBQTlG
NTExRUI4QTQ5MjI1NEM0RjlBRTAyL1RSVGhyeUwxT3lMMWJlOEM2M0xxWGRhLWQt
SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvVFJUaHJ5TDFPeUwxYmU4QzYzTHFYZGEtZC1JLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw
C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG
RTc1Ri9BQjlFQjhDQUE5RjUxMUVCOEE0OTIyNTRDNEY5QUUwMi9CQ0YyNjI0ODE1
RkIxMUVEQUI5QzlENTFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v
cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEAGej/jANBgkqhkiG9w0BAQsFAAOCAQEAFVTdf0MDWhiY/KwF
N87jyPn1ryn4eX/XkuN6w//eJ6j5RYv/O5YyyM8UuUDa0IBSeCFxaOwkcVuLJF/Q
1S0VEPxwZfKSgOwb6R0Unl5uXst36FtDWWAurLfEsJEo5dFsNS7tJvUuA3boon3Y
4FB/pT3Hj8M4qgAGJ1hXyemwWFcKrktLejlWC9xibEzNW8ySFgCnGkARrDotO6Xi
+zoEsPBgXNhLSwt4shoNbl4pDC2uB6kcEmKZkojtm1tIiN1MHyJiST0/dSi0NpVJ
aIp/3Nu+J/7KusURggMqs8OKA0vvpLIo6XI/Djj+4eghiyJbmccURXnmefkurUH+
BEm/tg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:52 2024 by rpki-client on console-fra.rpki-client.org