Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/9651048E08C511EDBC862E48C4F9AE02.roa
File: 9651048E08C511EDBC862E48C4F9AE02.roa (raw, json)
Hash identifier: zmezDrNQhRDkI/ImJoNlUadoETwy5ozKrEoaGAX7kYY=
Subject key identifier: 72:47:E2:13:5A:45:78:D0:32:17:87:DA:1E:C6:A0:91:52:19:67:49
Certificate issuer: /CN=A91510AD/serialNumber=E1E6908A16EC813DAA0BD64797AE9DBDEB092257
Certificate serial: 32BB
Authority key identifier: E1:E6:90:8A:16:EC:81:3D:AA:0B:D6:47:97:AE:9D:BD:EB:09:22:57
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/9651048E08C511EDBC862E48C4F9AE02.roa
Signing time: Sat 23 Jul 2022 08:20:24 +0000
ROA not before: Sat 23 Jul 2022 08:20:24 +0000
ROA not after: Fri 30 Dec 2022 00:00:00 +0000
asID: 397423
IP address blocks: 175.29.112.0/21 maxlen: 21
175.29.128.0/21 maxlen: 21
175.29.200.0/21 maxlen: 21
175.29.224.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12987 (0x32bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91510AD/serialNumber=E1E6908A16EC813DAA0BD64797AE9DBDEB092257
Validity
Not Before: Jul 23 08:20:24 2022 GMT
Not After : Dec 30 00:00:00 2022 GMT
Subject: CN=62dbaf47-4d4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:5d:ef:5b:d9:a0:11:da:c4:53:5f:4a:3c:d2:
91:cd:c2:02:38:d9:b7:38:5c:95:ec:e0:e3:a1:a7:
5f:ff:f6:2e:1f:c1:04:d2:b3:ac:40:07:33:a9:fb:
ae:0a:45:18:d9:0e:51:0f:51:54:4b:91:ba:81:d0:
be:6b:4b:6c:6e:59:fd:df:69:73:00:bc:1f:bf:72:
ca:66:1f:3a:bb:a7:13:6d:a5:78:03:ae:38:06:33:
0c:e6:4a:fb:ae:71:cd:0e:00:32:a1:43:3d:0d:de:
f9:2b:29:95:3c:9f:8c:e4:95:99:e0:cd:0a:68:94:
27:a6:30:63:47:d0:a5:bf:76:75:1f:69:55:4b:bd:
e5:b7:4b:97:74:70:52:d0:af:50:e1:1e:b0:91:37:
f3:f2:a8:16:37:d2:f1:12:fa:65:70:2c:64:da:9a:
b6:d0:43:d7:a3:67:e5:22:07:c6:73:89:3e:65:4a:
7e:88:75:1a:e7:88:48:28:be:16:87:06:68:57:47:
0c:93:8f:77:59:ae:10:fc:76:b9:f7:d9:bb:23:f7:
1f:17:5d:a6:6e:c4:04:c9:90:f7:57:2a:d2:71:c1:
30:29:65:74:bd:72:b3:7a:14:7a:9a:ee:16:ae:c8:
64:4a:c9:95:e9:4f:fc:7b:04:61:47:a4:f8:35:3e:
e6:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:47:E2:13:5A:45:78:D0:32:17:87:DA:1E:C6:A0:91:52:19:67:49
X509v3 Authority Key Identifier:
keyid:E1:E6:90:8A:16:EC:81:3D:AA:0B:D6:47:97:AE:9D:BD:EB:09:22:57
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/9651048E08C511EDBC862E48C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
175.29.112.0/21
175.29.128.0/21
175.29.200.0/21
175.29.224.0/19
Signature Algorithm: sha256WithRSAEncryption
36:e3:bc:a1:36:b3:40:e4:2f:77:66:ca:ff:72:6f:f8:a4:a9:
7e:cb:fa:ef:de:13:77:37:61:04:35:75:c9:45:d4:6d:95:53:
62:e6:f0:b6:11:f4:09:09:ab:5c:78:9c:61:4f:e7:e7:b1:0c:
73:65:57:33:65:41:41:93:e5:7e:ef:60:69:87:8a:92:91:59:
7a:9a:51:c2:4f:9f:4b:81:aa:90:02:50:5a:48:62:77:fa:b7:
f8:e1:08:6f:79:eb:f0:55:f6:44:54:19:18:cf:45:e3:2e:67:
69:04:10:c3:a3:5f:32:ba:af:1b:5c:ef:f4:1c:70:22:f2:13:
bb:14:b8:64:b8:c0:44:58:a1:f8:4c:6f:85:0b:2d:17:aa:df:
30:0c:e8:ae:e6:c1:e9:28:67:b2:51:f9:70:ef:1b:67:67:3a:
bf:96:71:79:eb:46:63:bd:4d:a5:27:76:2d:58:4c:24:bb:69:
f4:52:a5:3b:f9:73:34:8f:e2:df:9a:c5:41:07:49:56:95:2b:
7f:f9:78:da:b0:c6:a0:40:ba:1b:e6:91:14:32:7f:00:4b:6a:
4d:9f:be:3c:53:8d:2e:a8:b8:f5:c5:96:0d:01:f8:fa:af:49:
96:b5:90:28:27:f2:e1:6e:b5:34:77:0f:c4:8b:99:28:4d:c1:
44:fe:41:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-ams.rpki-client.org