Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/846C901E097311EC9CA16844C4F9AE02.roa
File: 846C901E097311EC9CA16844C4F9AE02.roa (raw, json)
Hash identifier: rdeAhIyfmTVGg3L8Jdjt45WK5gsjunKbYk8QMZlnKX4=
Subject key identifier: BF:23:14:55:55:2D:6F:59:BA:B6:E5:E2:16:64:3F:1A:2A:DF:B8:30
Certificate issuer: /CN=A91510AD/serialNumber=E1E6908A16EC813DAA0BD64797AE9DBDEB092257
Certificate serial: 3081
Authority key identifier: E1:E6:90:8A:16:EC:81:3D:AA:0B:D6:47:97:AE:9D:BD:EB:09:22:57
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/846C901E097311EC9CA16844C4F9AE02.roa
Signing time: Thu 21 Oct 2021 14:40:35 +0000
ROA not before: Thu 21 Oct 2021 14:40:35 +0000
ROA not after: Fri 30 Dec 2022 00:00:00 +0000
asID: 7018
IP address blocks: 175.29.112.0/21 maxlen: 24
175.29.128.0/21 maxlen: 24
175.29.200.0/21 maxlen: 24
175.29.224.0/19 maxlen: 24
203.76.152.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12417 (0x3081)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91510AD/serialNumber=E1E6908A16EC813DAA0BD64797AE9DBDEB092257
Validity
Not Before: Oct 21 14:40:35 2021 GMT
Not After : Dec 30 00:00:00 2022 GMT
Subject: CN=61717be3-b69d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:18:0f:52:7f:ea:d7:55:a5:5d:3f:27:9f:e2:
f0:88:b5:84:5c:7e:86:f1:70:00:2b:30:81:a4:20:
f2:c6:cd:ab:7c:6b:3f:11:7d:3b:5b:58:18:63:ef:
9a:b4:42:d2:ab:fd:c7:2b:07:54:61:25:97:2c:2c:
94:ea:d6:fb:f2:ae:1a:49:d9:f2:cb:5e:cf:d6:e5:
33:d1:66:9b:56:d3:95:ce:9c:15:88:30:c0:7d:29:
20:79:6b:8b:7a:a4:54:88:3a:13:6c:4e:f4:82:3a:
56:58:f3:99:1f:29:bb:f9:7e:ef:90:1e:b6:57:33:
70:66:2d:e9:c6:2d:ec:9b:ac:e2:98:87:9b:b8:74:
f6:e4:5f:f2:7b:d0:59:c9:4f:0b:8a:8c:05:b4:c0:
92:30:c4:9e:4d:9c:8d:ce:69:8e:9d:68:c3:bf:99:
7a:a8:e0:77:96:75:ad:1b:a4:a1:33:31:2c:2e:aa:
24:06:8f:2a:41:31:56:ae:27:9d:24:3e:77:8c:a4:
3a:7b:56:b8:01:6d:10:49:ae:66:1b:6b:63:4a:32:
31:9b:c3:c3:1f:12:a7:31:0b:4e:58:4d:b3:cb:43:
7b:f4:2e:c0:c7:50:81:8a:9f:04:50:fd:93:c3:05:
b9:fa:65:5b:4b:b4:88:da:19:30:08:ec:ca:18:9c:
38:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:23:14:55:55:2D:6F:59:BA:B6:E5:E2:16:64:3F:1A:2A:DF:B8:30
X509v3 Authority Key Identifier:
keyid:E1:E6:90:8A:16:EC:81:3D:AA:0B:D6:47:97:AE:9D:BD:EB:09:22:57
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/846C901E097311EC9CA16844C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
175.29.112.0/21
175.29.128.0/21
175.29.200.0/21
175.29.224.0/19
203.76.152.0/21
Signature Algorithm: sha256WithRSAEncryption
11:6e:e7:99:8d:20:56:9d:7a:9f:2a:3d:1c:13:3f:56:12:29:
ef:26:b1:39:d5:9c:62:28:96:1b:05:3e:65:b6:95:70:68:ea:
06:81:03:1a:32:da:6d:0a:00:be:88:8e:46:4d:a7:7a:06:16:
3e:95:46:2b:a5:a6:e9:37:5e:12:9e:b7:ae:6b:1d:25:50:49:
ea:63:32:52:80:89:fe:4a:6e:ff:fb:61:82:8d:1c:28:cd:19:
f2:57:43:00:64:bf:99:cf:63:f8:bd:26:58:8d:93:02:d9:82:
b6:c2:1e:9d:b0:b1:cc:e2:73:ed:2e:dd:99:0d:72:b5:2f:b0:
b0:5b:26:69:6d:43:5d:e0:27:ce:da:b5:05:b7:ef:b3:3d:5c:
ac:9e:8e:37:f3:8a:65:3a:f5:54:ce:90:fb:14:ed:73:f0:ac:
76:8e:93:4a:ad:ef:51:82:9e:a6:cc:0c:af:56:0a:0f:25:0f:
59:04:75:64:74:cf:7a:4e:63:e7:38:4a:86:f0:a0:54:98:0a:
75:c3:3b:d8:8c:ab:36:fd:7d:a1:72:e8:85:23:26:c9:10:70:
75:34:10:62:2c:09:22:1b:d9:66:23:9d:8f:5c:7c:03:4d:4f:
6c:20:46:ff:38:e1:9c:27:8e:9a:56:f7:b1:71:f8:7a:63:0a:
fa:b6:72:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:06 2024 by rpki-client on console-fra.rpki-client.org