Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918A62F/1CF98726085211EA8DF67349C4F9AE02/805D736AFCF411EC8C09AE81C4F9AE02.roa
File: 805D736AFCF411EC8C09AE81C4F9AE02.roa (raw, json)
Hash identifier: VUTSPX4+DBXpgQ//s2f/k6XoMuc8cPDe/r/MNRKffIg=
Subject key identifier: DD:47:2A:6E:F9:00:78:E5:FB:6B:F5:69:F7:A2:1C:6B:D9:44:AA:AF
Certificate issuer: /CN=A918A62F/serialNumber=DFB6723672151EC2C46CD04E71C59F9169CAE6F8
Certificate serial: 099C
Authority key identifier: DF:B6:72:36:72:15:1E:C2:C4:6C:D0:4E:71:C5:9F:91:69:CA:E6:F8
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/37ZyNnIVHsLEbNBOccWfkWnK5vg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918A62F/1CF98726085211EA8DF67349C4F9AE02/805D736AFCF411EC8C09AE81C4F9AE02.roa
Signing time: Wed 06 Jul 2022 06:26:00 +0000
ROA not before: Wed 06 Jul 2022 06:26:00 +0000
ROA not after: Thu 31 Aug 2023 00:00:00 +0000
asID: 45905
IP address blocks: 123.253.214.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2460 (0x99c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918A62F/serialNumber=DFB6723672151EC2C46CD04E71C59F9169CAE6F8
Validity
Not Before: Jul 6 06:26:00 2022 GMT
Not After : Aug 31 00:00:00 2023 GMT
Subject: CN=62c52af8-b464
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:6a:f1:49:0d:1e:ea:cc:87:8b:3d:22:a2:96:
07:4a:31:b0:f2:5f:8e:03:47:dc:0c:9a:c4:b7:97:
5e:8c:a6:6a:43:6f:7c:fa:56:59:63:10:e8:68:ce:
d8:78:44:dc:af:8a:68:15:99:8f:09:3f:ef:3e:28:
f1:01:78:df:68:86:52:16:9c:fe:46:13:e5:8b:63:
e5:c5:6f:2b:1b:e0:df:9e:ab:40:0e:ee:b0:96:dd:
2d:68:3e:5f:3a:b0:02:aa:3f:da:41:7a:1d:4d:0f:
63:2f:e7:5d:95:57:4f:e7:b0:8b:80:2a:93:8d:85:
fd:91:f0:00:0f:ce:34:b4:9b:fc:00:9c:33:cf:3b:
aa:77:10:a2:e8:d0:33:d4:94:e2:b6:04:90:8f:8f:
0f:25:19:2e:81:75:f9:5b:a5:54:c5:81:04:87:78:
be:c8:46:cb:aa:c0:7b:22:19:cb:a6:51:f6:15:cf:
49:35:5b:e1:fb:f6:ca:dd:ec:6b:1d:09:d2:f3:cd:
17:e1:88:6a:dd:c5:ee:34:35:50:b5:b2:4d:6c:bd:
06:b3:8f:9f:ed:2a:c3:a4:5a:4e:3d:d4:a9:83:7c:
9e:3a:dd:9d:32:5f:25:1d:f1:1a:84:f5:17:0c:b8:
7b:c7:c0:c5:96:7f:95:2a:96:53:1e:8e:30:93:7a:
d3:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:47:2A:6E:F9:00:78:E5:FB:6B:F5:69:F7:A2:1C:6B:D9:44:AA:AF
X509v3 Authority Key Identifier:
keyid:DF:B6:72:36:72:15:1E:C2:C4:6C:D0:4E:71:C5:9F:91:69:CA:E6:F8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918A62F/1CF98726085211EA8DF67349C4F9AE02/37ZyNnIVHsLEbNBOccWfkWnK5vg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/37ZyNnIVHsLEbNBOccWfkWnK5vg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A62F/1CF98726085211EA8DF67349C4F9AE02/805D736AFCF411EC8C09AE81C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
123.253.214.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:11:50:42:bd:21:d0:3a:db:57:ae:47:0a:ed:8b:e5:11:91:
5f:67:87:12:aa:5a:db:0e:c1:43:c8:91:68:d2:30:1a:d6:16:
d4:5d:62:83:0c:aa:1d:12:f3:d7:bc:13:df:69:69:0b:51:be:
71:80:20:4c:dd:e7:25:f4:a6:0e:40:b7:d1:5f:67:b1:35:e8:
71:20:f4:6d:5f:44:7a:6a:64:61:ef:bc:c1:05:7c:72:5e:a9:
9c:3a:39:9c:4b:1d:df:10:a1:63:a1:b6:b7:73:ee:0f:16:78:
2d:6a:fc:38:c7:9d:01:f4:9d:2b:8e:0b:a0:8f:ff:c8:c6:62:
2e:9d:6f:fd:6e:90:dc:2c:cf:b4:03:b4:38:52:a9:dc:a3:a0:
a3:70:78:e4:7a:fa:68:38:63:75:c7:a7:80:6b:61:fe:93:47:
3c:8c:db:e1:55:96:0e:53:3e:50:1a:0c:aa:98:ce:c5:cf:75:
33:54:5f:50:3a:c2:96:7d:55:8c:da:41:18:f9:d1:ed:05:8a:
d1:41:42:0f:30:98:76:a2:dc:05:13:60:52:50:62:ce:05:0f:
c9:af:08:ea:7b:ae:90:c5:43:66:ae:94:49:d8:92:37:e3:39:
02:3c:9a:b3:be:de:ce:51:19:59:77:dd:cd:09:09:55:de:f2:
5b:2c:b1:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:15 2024 by rpki-client on console-fra.rpki-client.org