Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/DCC9FDBC11EE11ED9BF6E33BC4F9AE02.roa
File: DCC9FDBC11EE11ED9BF6E33BC4F9AE02.roa (raw, json)
Hash identifier: ChJ2zQCHo7otTJdsbf7ttVI0LVZyuAyDO8ojN4fML34=
Subject key identifier: 2C:44:64:7A:AE:18:9D:FD:A0:B9:5A:FC:75:70:C9:ED:F7:B5:D3:63
Certificate issuer: /CN=A915E475/serialNumber=745FF4F063AB5D171E05251B31E294A4BC7973B1
Certificate serial: 07AB
Authority key identifier: 74:5F:F4:F0:63:AB:5D:17:1E:05:25:1B:31:E2:94:A4:BC:79:73:B1
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dF_08GOrXRceBSUbMeKUpLx5c7E.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/DCC9FDBC11EE11ED9BF6E33BC4F9AE02.roa
Signing time: Fri 04 Nov 2022 23:08:55 +0000
ROA not before: Fri 04 Nov 2022 23:08:55 +0000
ROA not after: Sat 30 Dec 2023 00:00:00 +0000
asID: 24129
IP address blocks: 116.255.41.0/24 maxlen: 24
116.255.43.0/24 maxlen: 24
116.255.44.0/24 maxlen: 24
116.255.48.0/24 maxlen: 24
116.255.50.0/24 maxlen: 24
116.255.53.0/24 maxlen: 24
125.63.23.0/24 maxlen: 24
203.10.77.0/24 maxlen: 24
203.14.230.0/24 maxlen: 24
203.27.116.0/24 maxlen: 24
223.27.64.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1963 (0x7ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915E475/serialNumber=745FF4F063AB5D171E05251B31E294A4BC7973B1
Validity
Not Before: Nov 4 23:08:55 2022 GMT
Not After : Dec 30 00:00:00 2023 GMT
Subject: CN=63659b86-477e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:71:a1:d7:cc:47:fd:a0:21:ed:92:55:5a:21:
97:7d:b4:83:f4:6c:15:bf:a5:06:73:1b:bb:19:54:
ec:a3:da:ac:e8:95:27:4f:90:d2:09:7e:fc:b8:12:
60:3d:11:d3:4d:23:3e:2f:2e:8e:8c:59:ab:65:f7:
f7:ea:d7:13:1d:89:72:18:d4:8a:8f:7e:3a:1a:9b:
1c:8e:e7:f7:49:19:59:83:c7:0b:c0:97:76:7a:6e:
51:9f:0f:bc:a1:b2:6f:56:25:1c:6a:a2:a2:8e:a8:
51:64:9e:a6:ec:b0:28:78:47:a3:35:f4:55:b4:2b:
c4:16:0d:61:0d:68:87:c3:7e:32:2e:a5:f9:e7:74:
47:e7:ee:58:18:c6:f0:f9:77:01:60:5f:e9:7f:2f:
5c:0c:06:83:1e:d2:d4:f0:d6:95:4c:5b:83:69:7d:
c0:e5:53:9e:d7:13:2c:5b:71:f6:eb:7e:5e:34:af:
88:1e:3b:1f:96:63:9f:a4:ea:e5:c9:82:e0:90:12:
16:72:fd:55:e5:d9:6e:2d:cb:e6:64:40:c8:9f:f7:
b7:f1:39:8d:2a:ee:2b:af:a6:a8:45:af:73:32:b2:
e9:b7:59:72:dd:07:ed:ca:13:3a:2b:6d:1c:bc:d8:
79:d8:60:76:1b:92:fa:ea:dd:68:a3:9a:4a:1a:d3:
3a:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:44:64:7A:AE:18:9D:FD:A0:B9:5A:FC:75:70:C9:ED:F7:B5:D3:63
X509v3 Authority Key Identifier:
keyid:74:5F:F4:F0:63:AB:5D:17:1E:05:25:1B:31:E2:94:A4:BC:79:73:B1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/dF_08GOrXRceBSUbMeKUpLx5c7E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dF_08GOrXRceBSUbMeKUpLx5c7E.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/DCC9FDBC11EE11ED9BF6E33BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
116.255.41.0/24
116.255.43.0-116.255.44.255
116.255.48.0/24
116.255.50.0/24
116.255.53.0/24
125.63.23.0/24
203.10.77.0/24
203.14.230.0/24
203.27.116.0/24
223.27.64.0/23
Signature Algorithm: sha256WithRSAEncryption
72:a7:45:52:fd:aa:c9:e0:c7:e2:8c:e2:27:47:68:78:53:14:
36:72:d8:07:7a:d2:8a:37:1a:42:69:49:d7:2c:ce:d8:ff:f1:
60:9a:33:90:4d:a6:f8:01:40:41:88:5a:69:60:f2:04:4d:f7:
24:55:5d:f5:f9:e7:a3:89:a1:89:cb:77:a5:a7:e6:88:3c:44:
b0:23:24:78:e0:47:b2:d2:bf:fb:72:9e:78:a1:c4:62:49:34:
ac:b7:c3:8e:d3:b9:03:f9:0d:77:c7:b8:ab:56:5d:c4:9e:3d:
8b:de:34:ab:16:42:14:c3:9a:39:19:92:5d:32:83:cd:98:6e:
d1:97:56:27:1b:ba:16:74:dd:04:8f:89:f9:bd:a2:08:6b:a0:
ab:e5:28:1c:c2:09:35:2b:04:76:0b:e7:63:da:81:80:aa:a1:
12:63:42:8f:3d:e3:18:54:4b:ff:7c:6f:e1:e7:91:ee:2b:59:
05:0b:9d:4b:83:e3:19:ba:71:01:2c:ca:df:8c:04:b5:24:69:
ea:69:b1:f1:83:23:9a:44:e5:4c:41:b9:66:bc:1f:49:c2:57:
0f:9e:34:71:74:7f:0b:17:f6:be:16:69:37:2a:2c:31:5a:c8:
f0:85:cf:48:40:73:fd:ef:ab:23:64:33:13:24:19:a2:cb:17:
28:90:ca:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:08 2024 by rpki-client on console-ams.rpki-client.org