Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/61AD8B66337211EEB76A590DC4F9AE02.roa
File: 61AD8B66337211EEB76A590DC4F9AE02.roa (raw, json)
Hash identifier: PJKPwYmm6QxUKkVGqUnE7uSGJHFbWvadsGXP6OoYUoY=
Subject key identifier: B2:7D:CA:25:0E:60:AD:26:22:F7:FF:30:50:DF:5B:6A:D3:A0:C5:B1
Certificate issuer: /CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013
Certificate serial: 044A
Authority key identifier: ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/61AD8B66337211EEB76A590DC4F9AE02.roa
Signing time: Sat 05 Aug 2023 09:28:05 +0000
ROA not before: Sat 05 Aug 2023 09:28:05 +0000
ROA not after: Fri 01 Dec 2023 00:00:00 +0000
asID: 40676
IP address blocks: 43.254.167.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1098 (0x44a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013
Validity
Not Before: Aug 5 09:28:05 2023 GMT
Not After : Dec 1 00:00:00 2023 GMT
Subject: CN=64ce1625-a5be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:1f:1d:a7:38:e9:66:0a:f2:75:ff:ed:06:8a:
3c:ba:26:ed:5e:1d:d9:ca:5c:67:45:13:e7:e2:11:
22:41:c1:0a:63:71:52:88:8d:32:08:23:95:f0:a1:
49:dd:42:2f:e0:bd:46:40:7d:a7:3d:65:2f:66:ed:
48:f1:ed:2e:ab:77:ae:3f:07:21:5d:2c:d8:13:13:
69:cf:5f:1e:b5:88:b8:01:76:5f:c7:cd:6b:7e:54:
0d:47:21:67:56:ff:d1:85:4a:2f:b2:c2:50:ec:47:
ef:64:40:6f:6b:5e:a7:6d:e7:14:95:4a:bb:76:f2:
c7:92:42:f3:10:10:30:bf:e8:a4:88:1b:36:8a:cb:
07:53:70:50:19:08:9b:dd:8d:04:ae:38:8d:d7:3e:
66:89:54:d5:f5:6f:85:5f:fd:28:20:c0:88:c4:d2:
74:16:4f:bb:19:9f:3c:8d:eb:67:82:80:05:b8:d4:
ed:20:bb:7a:b8:ee:8c:bb:30:2a:a9:25:ff:06:f7:
ac:cd:94:bc:63:94:28:c5:d9:23:12:93:ac:4e:5b:
7f:ae:b4:b3:ff:a5:0f:a8:66:8a:70:4b:18:c2:1c:
16:36:74:1a:c0:9f:5d:85:91:c3:58:8c:76:fd:b9:
62:a6:c0:eb:ed:b3:7c:b5:84:57:44:4b:57:df:1a:
38:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:7D:CA:25:0E:60:AD:26:22:F7:FF:30:50:DF:5B:6A:D3:A0:C5:B1
X509v3 Authority Key Identifier:
keyid:ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/61AD8B66337211EEB76A590DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.254.167.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:19:38:91:24:b5:e6:17:42:cc:79:01:5a:4a:d3:b1:95:2e:
24:9c:71:00:06:f1:58:db:1c:07:cf:c2:78:69:10:e0:04:85:
60:12:62:9a:47:5f:b9:55:44:ca:b3:f5:39:39:0c:bf:22:f5:
99:de:0e:d9:e7:ea:a3:b0:54:d4:b8:78:9c:51:00:ff:c1:17:
d1:22:27:96:2a:e8:5d:30:2f:75:a4:67:86:11:d9:dc:ab:e6:
06:3f:1f:ff:e2:26:8b:71:3a:45:23:55:27:62:3b:c3:07:24:
56:c8:54:a3:81:43:e0:ad:2c:67:16:b9:34:90:8d:c5:b2:ba:
80:e5:c5:e3:8e:bc:48:83:69:de:68:b4:c9:44:5e:1f:fd:76:
25:7e:bb:42:cd:d2:20:31:ed:7c:0a:08:e5:fb:41:a5:aa:1b:
1d:31:6a:db:73:c6:18:31:d7:64:7b:2c:76:ae:ee:88:31:81:
8a:d5:c7:14:27:aa:a0:1d:04:85:c4:9c:bd:b1:ee:23:32:11:
aa:d2:c0:93:e3:e2:bf:77:22:15:99:71:8f:e7:37:8d:64:ae:
d4:35:92:61:67:29:53:6b:7f:a1:f1:2f:76:a0:03:cd:36:9b:
fa:db:94:13:d4:57:8f:44:fe:53:dd:88:50:59:42:b4:f6:6f:
33:8d:54:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:02 2024 by rpki-client on console-fra.rpki-client.org