Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913621A/282242F01D6D11E2B4C0E6AD08B02CD2/B2A127BC62BF11EABD3E5C45C4F9AE02.roa
File: B2A127BC62BF11EABD3E5C45C4F9AE02.roa (raw, json)
Hash identifier: U28fbf2hotZPWMefU6wyxISeNWX57DsorcfFV0kP0J8=
Subject key identifier: 8D:6A:99:B7:67:72:B7:5C:8D:93:86:BA:D7:89:09:15:83:3C:6D:4E
Certificate issuer: /CN=A913621A/serialNumber=F83730FD391B6F8F76FEF3176EDB9FC6F5541E40
Certificate serial: 3146
Authority key identifier: F8:37:30:FD:39:1B:6F:8F:76:FE:F3:17:6E:DB:9F:C6:F5:54:1E:40
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Dcw_Tkbb492_vMXbtufxvVUHkA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913621A/282242F01D6D11E2B4C0E6AD08B02CD2/B2A127BC62BF11EABD3E5C45C4F9AE02.roa
Signing time: Mon 28 Feb 2022 14:20:07 +0000
ROA not before: Mon 28 Feb 2022 14:20:07 +0000
ROA not after: Mon 01 May 2023 00:00:00 +0000
asID: 137066
IP address blocks: 45.115.80.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12614 (0x3146)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913621A/serialNumber=F83730FD391B6F8F76FEF3176EDB9FC6F5541E40
Validity
Not Before: Feb 28 14:20:07 2022 GMT
Not After : May 1 00:00:00 2023 GMT
Subject: CN=621cda17-0095
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:b5:d6:0d:e8:47:2b:38:83:5a:0a:d4:d1:a7:
0d:d1:d1:21:a1:81:0e:14:aa:60:b1:40:7f:77:6c:
59:ca:9d:bf:b5:98:19:d8:f0:ae:da:72:6e:a7:2a:
a8:87:f3:00:b1:a9:ff:5a:85:ed:95:3b:6a:9d:02:
09:8f:bf:75:e8:07:c1:89:15:f1:60:0b:87:4f:74:
a0:86:d2:b7:5d:a9:2b:8b:2d:49:0c:20:df:ae:7b:
cf:bc:99:75:46:57:86:5d:ed:4d:ff:43:da:71:77:
6c:51:3e:7c:fa:47:4f:f6:4e:34:4d:ef:40:c8:60:
16:55:9e:ee:a2:0b:94:a8:52:df:0b:05:57:01:88:
19:95:a9:42:25:e6:0c:93:a6:5a:2d:e2:ee:3b:5b:
98:02:ce:26:45:bb:13:08:4e:8b:f3:49:61:70:a7:
00:36:26:36:1e:57:55:37:f9:bc:01:b6:38:56:c2:
13:39:3a:de:b1:f9:e2:93:6c:92:87:33:79:21:7b:
8e:d1:2a:d1:62:7e:9a:0e:e7:a6:4e:e6:f8:81:92:
4a:63:24:8f:fe:f3:c9:a9:84:b1:20:cb:ec:32:0e:
1d:3f:22:3d:ed:0d:12:8d:68:a9:87:09:b3:0d:3b:
c6:19:d5:ce:7e:a7:3e:56:0b:83:2b:ee:c7:03:f6:
01:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:6A:99:B7:67:72:B7:5C:8D:93:86:BA:D7:89:09:15:83:3C:6D:4E
X509v3 Authority Key Identifier:
keyid:F8:37:30:FD:39:1B:6F:8F:76:FE:F3:17:6E:DB:9F:C6:F5:54:1E:40
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913621A/282242F01D6D11E2B4C0E6AD08B02CD2/-Dcw_Tkbb492_vMXbtufxvVUHkA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Dcw_Tkbb492_vMXbtufxvVUHkA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913621A/282242F01D6D11E2B4C0E6AD08B02CD2/B2A127BC62BF11EABD3E5C45C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.115.80.0/22
Signature Algorithm: sha256WithRSAEncryption
44:f8:63:69:2f:1e:ad:82:77:0e:8f:cf:fc:a8:90:d5:87:65:
0a:c8:d5:02:9c:6c:44:98:0d:2c:1d:0d:98:dd:1d:7e:b8:a5:
d5:c5:a4:18:9b:87:d9:45:4b:57:83:20:da:a1:bd:25:79:cb:
44:36:c6:8e:28:9b:7b:3c:5f:8b:2a:16:96:7f:39:5e:8b:18:
54:d7:e3:eb:3e:0b:b6:68:8f:ba:98:21:5d:53:07:6d:01:08:
77:c8:e7:13:0d:df:bc:40:4e:04:91:90:55:bf:ee:64:91:6a:
a7:0d:34:93:1d:01:e8:3b:98:5c:17:6e:d5:d8:5e:c1:fa:6c:
66:3a:11:14:35:bf:56:8f:46:24:62:03:17:65:0d:da:13:c2:
45:da:e3:b1:71:3a:22:cd:d5:cd:db:1d:75:2f:7e:60:7f:98:
d7:90:e5:fb:b2:ce:c9:e5:9b:45:70:88:35:70:1e:f9:ec:03:
6a:2e:e9:41:7c:1d:0d:21:21:e4:1e:d0:2c:a7:a5:46:30:ed:
ee:8d:ec:15:d5:85:4d:5f:a4:c4:98:2b:bf:78:4d:e7:4e:0d:
40:e0:70:48:1e:eb:00:01:a8:54:32:5d:01:21:c2:fc:ee:c3:
64:76:3e:b3:cf:13:7d:5b:67:85:c5:13:4b:18:1e:8b:15:3d:
cb:50:b1:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:02 2024 by rpki-client on console-fra.rpki-client.org