Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/E5D987AE41C511E8BEC06D36C4F9AE02.roa
File: E5D987AE41C511E8BEC06D36C4F9AE02.roa (raw, json)
Hash identifier: 69dO+SHhBHRd7niRf4V1Z9J36N+ZSOlfvECuF7Y4wIE=
Subject key identifier: 50:4C:17:B1:67:8F:03:46:DE:F8:CD:5C:F8:2F:8F:B9:08:3F:86:F0
Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93
Certificate serial: 24D7
Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/E5D987AE41C511E8BEC06D36C4F9AE02.roa
Signing time: Tue 02 Aug 2022 04:23:24 +0000
ROA not before: Tue 02 Aug 2022 04:23:24 +0000
ROA not after: Sat 30 Sep 2023 00:00:00 +0000
asID: 4766
IP address blocks: 45.249.90.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9431 (0x24d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93
Validity
Not Before: Aug 2 04:23:24 2022 GMT
Not After : Sep 30 00:00:00 2023 GMT
Subject: CN=62e8a6bc-c54e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:df:36:1c:07:5e:bb:c8:3f:cb:2b:a7:83:3e:
c5:b3:95:7a:b2:a6:bc:f1:4c:e2:14:c2:42:bc:0e:
94:ce:7e:02:17:8a:2b:5b:d1:d0:c1:44:9d:7c:f4:
df:13:58:30:7d:72:c7:a8:fa:54:b4:ed:79:02:7c:
28:0d:19:86:6e:0b:f2:c7:db:10:3a:01:7b:41:64:
e7:54:46:bf:f8:8c:bd:2c:3e:ad:22:de:ba:b3:f7:
4c:be:6c:2e:5a:c8:21:8b:fb:41:4c:b1:69:05:4b:
2c:04:05:d2:7a:7f:f6:02:be:c3:8f:fa:0a:7f:e4:
1d:2d:d0:5e:db:2c:5b:5d:99:f6:ab:f6:2c:22:2c:
df:f5:7e:eb:9d:96:26:24:8f:d6:23:5e:a4:ec:28:
71:98:fb:9f:d8:c4:3a:8d:45:37:74:d8:20:01:47:
ee:d7:16:1f:f7:84:4d:f7:cf:dd:52:2f:79:5b:74:
0a:78:a8:92:e2:61:74:e8:8f:16:47:ee:ec:d0:5e:
98:3b:e4:dd:ab:09:83:e2:97:32:78:3e:a4:8c:c0:
14:43:7c:bb:91:2a:20:5f:a1:f2:e5:1e:35:1f:eb:
47:f3:fc:3f:bf:50:c4:c6:2c:90:78:8d:ad:38:a6:
14:37:da:96:9e:13:d4:9c:bc:37:3f:bd:e3:42:f1:
38:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:4C:17:B1:67:8F:03:46:DE:F8:CD:5C:F8:2F:8F:B9:08:3F:86:F0
X509v3 Authority Key Identifier:
keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/E5D987AE41C511E8BEC06D36C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.249.90.0/24
Signature Algorithm: sha256WithRSAEncryption
93:64:1f:bc:80:56:cd:b5:11:a9:62:67:66:eb:63:45:a5:93:
fb:08:5d:05:f6:91:67:44:db:fe:b4:a5:0d:00:64:75:a9:6a:
1c:54:c7:25:ee:97:06:a4:2b:b6:d9:e3:57:b1:07:8e:02:d7:
b6:3a:41:d0:ca:3c:f1:11:25:20:9d:46:bd:d2:c0:0e:fc:3f:
c0:72:f0:c7:44:f3:28:2d:fb:27:36:bf:3f:dd:3f:66:01:d2:
f2:ce:87:a7:cc:1b:c4:77:bc:74:b6:7c:c5:81:eb:04:e2:ed:
7b:f5:ab:ea:72:c7:22:fc:84:ec:88:90:17:9d:1c:85:fd:b9:
c8:5e:c0:c3:b2:f6:14:0e:b1:f2:79:56:8f:a7:68:10:4b:2e:
f2:ca:0d:7c:03:37:8a:0d:80:59:31:1f:e5:c4:42:1e:bd:a3:
cc:ef:1d:02:d9:07:4b:63:51:50:f3:c1:23:98:35:4c:d7:88:
de:a3:23:a2:cd:b7:bf:3e:58:59:3b:1d:d5:5c:61:59:e1:48:
49:3d:75:32:e1:20:f9:13:a0:be:fc:87:34:ed:0f:02:9d:93:
97:e6:75:57:de:76:2b:87:69:a7:16:c2:dc:8b:18:64:4c:7f:
d5:c0:d5:6f:cc:ae:f9:12:46:51:7e:1f:f0:f0:94:3d:0e:78:
fd:eb:50:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:50:56 2024 by rpki-client on console-fra.rpki-client.org