Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9114CE7/5B2B131C60CD11ED84F75F4CC4F9AE02/AB4235F460CF11EDA1D2164DC4F9AE02.roa
File: AB4235F460CF11EDA1D2164DC4F9AE02.roa (raw, json)
Hash identifier: bBvsLYnl8qxaS9aa3OwYE+mWYXMYvhCkPl0H0D3472c=
Subject key identifier: E0:8E:53:74:26:4F:B4:87:30:13:C9:C1:E4:22:3F:4A:57:B0:CB:65
Certificate issuer: /CN=A9114CE7/serialNumber=F28D6D11C3C5546E4241818A73B470EECA6D7283
Certificate serial: 02
Authority key identifier: F2:8D:6D:11:C3:C5:54:6E:42:41:81:8A:73:B4:70:EE:CA:6D:72:83
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8o1tEcPFVG5CQYGKc7Rw7sptcoM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9114CE7/5B2B131C60CD11ED84F75F4CC4F9AE02/AB4235F460CF11EDA1D2164DC4F9AE02.roa
Signing time: Thu 10 Nov 2022 08:14:17 +0000
ROA not before: Thu 10 Nov 2022 08:14:17 +0000
ROA not after: Thu 31 Aug 2023 00:00:00 +0000
asID: 5666
IP address blocks: 203.171.253.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9114CE7/serialNumber=F28D6D11C3C5546E4241818A73B470EECA6D7283
Validity
Not Before: Nov 10 08:14:17 2022 GMT
Not After : Aug 31 00:00:00 2023 GMT
Subject: CN=636cb2d8-c904
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:16:d3:b9:9b:08:ae:fc:8f:a6:44:9e:56:9e:
01:ec:65:d2:bf:44:d4:63:15:6c:82:c5:82:52:41:
fc:b5:c0:06:d8:9b:f7:c6:7e:33:b5:99:7f:b0:17:
b3:ca:9c:b9:b7:00:34:be:85:7b:21:5a:49:26:43:
c4:c0:bc:be:4c:a9:ac:13:94:3f:17:16:c5:21:b2:
66:61:9f:ea:1c:46:b1:70:a1:80:65:de:7a:c2:87:
3e:8c:c8:0e:b4:53:7d:75:d6:55:db:29:a9:62:9b:
7d:de:90:60:2b:67:97:86:3a:87:d6:e2:6c:31:b9:
e4:32:a8:7f:b4:8b:55:ca:c4:30:dc:d7:4d:2d:20:
d9:01:7d:aa:4a:c4:68:dd:cb:6e:1e:7d:5a:46:24:
98:b0:60:c6:26:a3:bd:ac:d1:e3:b8:6c:d8:fc:83:
3b:c9:03:c0:c8:95:84:55:91:ae:4d:e6:05:5b:8c:
b7:62:45:17:5f:f1:57:05:77:41:3e:8e:72:4b:2b:
f1:28:7b:cd:c8:5a:b8:f8:d9:bf:0e:2d:63:77:05:
4d:95:da:9b:b0:bf:1b:30:00:1b:cb:78:5e:55:39:
79:8d:64:aa:28:f1:11:dd:80:3d:1d:aa:d3:73:5c:
fd:14:c8:5b:fc:37:1a:a3:ef:e4:28:0c:8f:7d:a3:
dd:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:8E:53:74:26:4F:B4:87:30:13:C9:C1:E4:22:3F:4A:57:B0:CB:65
X509v3 Authority Key Identifier:
keyid:F2:8D:6D:11:C3:C5:54:6E:42:41:81:8A:73:B4:70:EE:CA:6D:72:83
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9114CE7/5B2B131C60CD11ED84F75F4CC4F9AE02/8o1tEcPFVG5CQYGKc7Rw7sptcoM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8o1tEcPFVG5CQYGKc7Rw7sptcoM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9114CE7/5B2B131C60CD11ED84F75F4CC4F9AE02/AB4235F460CF11EDA1D2164DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.171.253.0/24
Signature Algorithm: sha256WithRSAEncryption
22:28:13:0d:28:1b:51:ba:75:53:e9:0e:a2:4a:cf:63:78:8b:
a4:03:db:39:b4:cd:bd:04:1a:2b:52:c3:81:c5:75:ce:8b:9b:
2f:c5:73:d6:1e:cd:d3:fe:a5:e0:91:ea:7e:93:ae:e1:19:72:
57:69:44:85:96:7a:c6:0a:21:b5:1b:75:bc:f9:81:b9:23:d1:
fb:0a:ba:03:da:a1:65:dd:c2:71:8d:32:f8:47:e2:62:84:89:
e4:b5:e2:a7:4a:a7:1f:f4:d7:c2:32:35:64:2e:27:6a:7e:37:
3f:ce:ef:30:64:dc:b9:9f:06:36:e7:75:3b:17:4f:04:3b:fa:
06:66:e2:c5:4f:ac:1c:63:72:c4:b1:a2:04:6d:ca:b2:d1:40:
97:37:d3:0d:63:b2:72:6e:9e:97:2e:ae:a8:47:6e:02:aa:2a:
1f:50:49:98:d0:ce:a6:55:3c:bd:f8:f6:ce:ac:58:04:d8:7b:
27:e5:50:72:89:f4:09:e5:8c:4f:63:70:92:0f:4b:11:a9:89:
eb:75:fc:37:0b:fb:aa:ef:87:68:cc:3e:06:f9:f9:d4:87:6f:
af:56:b5:6d:88:45:e8:83:35:a5:13:fb:56:a5:9b:77:4a:a2:
ad:31:9b:52:ac:3a:d5:96:6a:d5:a5:b0:f8:21:f6:ca:d3:cb:
41:1c:a1:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-ams.rpki-client.org