Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/B0D0760442B011ECBA3A677CC4F9AE02.roa
File: B0D0760442B011ECBA3A677CC4F9AE02.roa (raw, json)
Hash identifier: wO9P7h0r71XG3psUSixJVVUdbTqb49ajo0kIyvNIPtI=
Subject key identifier: 43:49:68:C3:E3:0C:82:7F:C3:62:DB:86:CD:B5:5F:18:5C:30:E8:B6
Certificate issuer: /CN=A91853D3/serialNumber=FA045C6302B873E88365FA9A021499B4F3C58688
Certificate serial: A6
Authority key identifier: FA:04:5C:63:02:B8:73:E8:83:65:FA:9A:02:14:99:B4:F3:C5:86:88
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gRcYwK4c-iDZfqaAhSZtPPFhog.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/B0D0760442B011ECBA3A677CC4F9AE02.roa
Signing time: Thu 11 Nov 2021 05:32:00 +0000
ROA not before: Thu 11 Nov 2021 05:32:00 +0000
ROA not after: Fri 01 Jul 2022 00:00:00 +0000
asID: 2697
IP address blocks: 202.41.64.0/18 maxlen: 24
202.141.0.0/17 maxlen: 24
202.141.128.0/19 maxlen: 24
2001:e30:1100::/40 maxlen: 40
2001:e30:1200::/40 maxlen: 40
2001:e30:1300::/40 maxlen: 40
2001:e30:1400::/40 maxlen: 40
2001:e30:1500::/40 maxlen: 40
2001:e30:1600::/40 maxlen: 40
2001:e30:1800::/40 maxlen: 40
2001:e30:187c::/48 maxlen: 48
2001:e30:1a00::/40 maxlen: 40
2001:e30:1b00::/40 maxlen: 40
2001:e30:1b06::/48 maxlen: 48
2001:e30:1c1e::/48 maxlen: 48
2001:e30:1e00::/40 maxlen: 40
2001:e30:1f00::/40 maxlen: 40
2001:e30:2000::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166 (0xa6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91853D3/serialNumber=FA045C6302B873E88365FA9A021499B4F3C58688
Validity
Not Before: Nov 11 05:32:00 2021 GMT
Not After : Jul 1 00:00:00 2022 GMT
Subject: CN=618caacf-d444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e7:90:ad:d5:46:6b:10:93:7c:75:02:86:6d:
1c:8f:d2:e5:17:44:ac:d5:a9:58:b6:0e:b6:ed:32:
78:71:1a:e2:ad:e9:7e:91:ad:c3:7b:5a:61:c7:e3:
79:38:c5:b9:a4:63:c4:ec:e0:01:07:f0:5a:1d:59:
a0:b0:05:ca:55:39:36:d7:55:65:a1:11:be:68:a7:
dc:b5:c9:11:09:91:44:43:a8:32:38:26:93:a6:d2:
ca:94:f4:7b:61:33:5d:8f:5e:5b:6e:c6:6c:e2:8e:
78:0b:0a:5b:64:ea:b2:6f:5e:26:c9:3b:d1:cc:47:
c0:ea:52:f9:59:bf:12:01:8c:f9:b3:76:2e:cc:1f:
80:49:3d:5c:c3:f5:77:16:4e:c0:86:33:17:7c:7a:
92:14:cc:98:60:cb:31:40:8f:f6:2e:49:56:db:d3:
fc:62:38:7f:e9:83:fe:ee:4d:5e:07:d6:c6:d0:12:
d3:18:d1:a9:43:1c:aa:e2:f4:40:af:b6:93:52:da:
2d:df:e1:5c:d2:6e:c4:93:42:34:f7:f2:0c:4f:7e:
78:38:00:71:29:43:5b:9b:4a:5a:8e:0a:ca:3c:e4:
ae:90:fc:01:d1:d7:dd:76:e5:2e:06:b5:11:57:16:
62:e4:81:80:a9:e2:98:b5:8e:fb:17:df:8d:ea:bf:
44:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:49:68:C3:E3:0C:82:7F:C3:62:DB:86:CD:B5:5F:18:5C:30:E8:B6
X509v3 Authority Key Identifier:
keyid:FA:04:5C:63:02:B8:73:E8:83:65:FA:9A:02:14:99:B4:F3:C5:86:88
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/-gRcYwK4c-iDZfqaAhSZtPPFhog.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gRcYwK4c-iDZfqaAhSZtPPFhog.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/B0D0760442B011ECBA3A677CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.41.64.0/18
202.141.0.0-202.141.159.255
IPv6:
2001:e30:1100::-2001:e30:16ff:ffff:ffff:ffff:ffff:ffff
2001:e30:1800::/40
2001:e30:1a00::/39
2001:e30:1c1e::/48
2001:e30:1e00::-2001:e30:20ff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
39:81:44:b5:e6:94:e9:ca:60:dc:5f:86:7c:66:a8:ee:c3:c6:
91:26:60:76:7d:03:ce:f4:e9:9a:f0:6f:71:bd:88:0f:ff:3a:
9b:1f:9f:78:59:f0:c1:66:2f:09:5a:18:d1:56:5b:ab:d2:2b:
aa:e2:bb:08:07:95:f0:7f:b1:c3:c1:c5:2f:d9:d8:c1:50:17:
9f:7e:59:95:a6:c5:45:a5:5c:52:2e:9e:9c:be:14:b3:5b:5a:
1f:6d:64:de:90:1e:06:1f:cb:4d:0e:cf:32:fd:07:32:88:3e:
3c:5d:d6:a1:57:f6:8e:1f:a9:cb:5b:01:b1:37:d6:a8:63:90:
16:6c:82:bf:64:b5:29:13:20:6e:26:8d:a5:72:65:db:b3:e6:
8c:3d:b5:b0:e5:7d:34:e5:6c:9c:86:b8:c5:0a:bf:11:0d:24:
33:72:02:39:6d:04:28:df:33:a8:70:9c:c8:35:6d:94:d6:99:
a3:9a:c2:c6:d7:89:19:79:a8:ca:97:92:6f:00:c6:e4:ca:5c:
65:00:8b:8c:e2:ed:47:4d:91:30:6b:49:13:3b:5d:a9:40:d8:
e0:30:59:d3:33:31:d7:2c:b5:13:6b:7f:22:25:89:11:1f:3d:
9a:c4:60:95:2b:23:d1:b1:cd:fd:2f:4a:8f:2e:ed:b1:61:38:
b0:1e:ae:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:49 2023 by rpki-client on console-fra.rpki-client.org