Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A914589A/ACD6FB8A7D9411E7938BCF4EC4F9AE02/35C55E2C105411EC92580578C4F9AE02.roa
File: 35C55E2C105411EC92580578C4F9AE02.roa (raw, json)
Hash identifier: u7zW2iJ6BiiuCvGCEZYVrlTKdsz3wPbH4RHaiv/1QbE=
Subject key identifier: 46:7F:27:FA:3C:D3:4E:EA:7D:37:7F:C5:E5:B3:C7:EF:D8:99:57:9D
Certificate issuer: /CN=A914589A/serialNumber=262790CD914CEA8EC11E25869B898DE0001FBD09
Certificate serial: 146F
Authority key identifier: 26:27:90:CD:91:4C:EA:8E:C1:1E:25:86:9B:89:8D:E0:00:1F:BD:09
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JieQzZFM6o7BHiWGm4mN4AAfvQk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914589A/ACD6FB8A7D9411E7938BCF4EC4F9AE02/35C55E2C105411EC92580578C4F9AE02.roa
Signing time: Wed 15 Sep 2021 05:43:39 +0000
ROA not before: Wed 15 Sep 2021 05:43:39 +0000
ROA not after: Thu 01 Dec 2022 00:00:00 +0000
asID: 23893
IP address blocks: 180.210.128.0/19 maxlen: 24
2404:b00::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5231 (0x146f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914589A/serialNumber=262790CD914CEA8EC11E25869B898DE0001FBD09
Validity
Not Before: Sep 15 05:43:39 2021 GMT
Not After : Dec 1 00:00:00 2022 GMT
Subject: CN=6141880b-559c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f2:11:fc:f9:a0:d1:2a:7f:71:06:92:3e:54:
a6:83:a7:80:14:9d:8c:b8:41:fd:17:8f:0c:94:43:
28:20:9e:9b:ff:e2:f8:a4:0e:d3:1f:d7:b8:fe:ba:
7c:39:a0:72:77:a4:92:20:47:5e:21:08:ad:4a:44:
93:d6:a0:f5:56:35:0e:b6:95:00:fd:8b:7c:49:b8:
a3:c9:35:cd:76:21:0c:08:01:d9:47:12:98:b0:77:
fc:08:07:3c:51:f5:a8:18:17:7e:6c:7f:0f:e3:f5:
d4:94:d4:3d:0c:33:94:5a:a2:ce:5d:22:cc:5a:53:
7d:7c:40:91:88:a4:cb:78:88:a7:84:e5:39:18:d7:
78:c7:8b:ec:c5:93:dc:47:03:78:4e:5f:a5:30:7a:
29:ac:08:ae:54:55:a9:15:92:1c:2d:5a:6f:42:aa:
a0:a0:a8:73:ec:95:a3:4a:3a:18:02:c2:f2:85:69:
6e:2b:04:1e:83:13:d3:6e:c4:3a:85:e2:77:30:6c:
34:ec:77:dd:48:ae:00:75:bd:3f:14:65:95:ea:ce:
2a:13:95:14:01:78:0a:2d:b8:03:a4:f7:72:5d:ea:
51:04:82:d8:56:5a:b0:b9:01:97:79:0a:32:6a:a4:
ef:2d:bb:42:9a:50:55:b5:d7:c1:5e:0f:19:75:e6:
af:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:7F:27:FA:3C:D3:4E:EA:7D:37:7F:C5:E5:B3:C7:EF:D8:99:57:9D
X509v3 Authority Key Identifier:
keyid:26:27:90:CD:91:4C:EA:8E:C1:1E:25:86:9B:89:8D:E0:00:1F:BD:09
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914589A/ACD6FB8A7D9411E7938BCF4EC4F9AE02/JieQzZFM6o7BHiWGm4mN4AAfvQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JieQzZFM6o7BHiWGm4mN4AAfvQk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914589A/ACD6FB8A7D9411E7938BCF4EC4F9AE02/35C55E2C105411EC92580578C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
180.210.128.0/19
IPv6:
2404:b00::/32
Signature Algorithm: sha256WithRSAEncryption
08:03:83:3f:3b:31:2a:8a:bb:3e:dd:a7:ca:42:da:d4:6b:16:
fd:78:18:ea:91:9b:b8:c8:23:cb:0b:20:fd:5e:75:25:8f:be:
1b:de:df:14:5c:f6:a5:57:65:d0:2d:e5:f1:da:5d:a5:24:82:
0f:4b:7e:30:96:41:a5:4b:29:85:70:77:b9:65:48:11:1f:82:
61:af:a9:15:39:d5:7f:4a:5d:56:43:5c:c0:ed:54:61:95:51:
88:66:fa:13:8c:47:3b:ee:44:08:c1:35:ac:ce:ff:61:87:bc:
94:de:78:03:90:88:c0:77:d0:c3:73:fe:b9:0e:ae:74:85:6f:
49:52:d6:6d:55:8c:bf:ec:0a:80:87:e1:6b:a1:aa:69:c5:02:
92:62:01:b0:fb:0a:80:65:b0:fb:7d:f1:98:82:ca:ac:c3:5c:
66:15:17:5c:16:4e:69:61:7d:44:e3:69:62:26:1c:0e:d9:21:
c9:7d:31:7b:e1:f6:df:52:be:3f:33:b9:4a:60:b5:bc:0c:54:
c3:0a:52:99:15:07:35:57:20:fc:52:2a:25:ef:d8:99:7b:1d:
50:77:fe:e4:ce:93:fe:a4:62:dd:d3:8e:a7:f1:41:2a:63:64:
65:8f:dc:d4:47:79:74:8b:82:2b:1d:1b:3a:16:d0:85:a7:fd:
4c:8c:4d:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:57 2024 by rpki-client on console-ams.rpki-client.org