Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918E308/C77F7A1206D511EA8A897F4FC4F9AE02/1321EEB6F08811ECB5994B27C4F9AE02.roa
File: 1321EEB6F08811ECB5994B27C4F9AE02.roa (raw, json)
Hash identifier: WDxRoRw3omA7J/q1HCHdsADkC8Rym1xzC35ECPm8x0c=
Subject key identifier: E5:D6:6F:67:EA:11:45:A4:FC:26:2C:F1:60:A1:62:2D:C8:3B:7B:3C
Certificate issuer: /CN=A918E308/serialNumber=D2536918C18B6BC2D91042808BCADFCDB7347531
Certificate serial: 097C
Authority key identifier: D2:53:69:18:C1:8B:6B:C2:D9:10:42:80:8B:CA:DF:CD:B7:34:75:31
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0lNpGMGLa8LZEEKAi8rfzbc0dTE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918E308/C77F7A1206D511EA8A897F4FC4F9AE02/1321EEB6F08811ECB5994B27C4F9AE02.roa
Signing time: Mon 20 Jun 2022 10:59:37 +0000
ROA not before: Mon 20 Jun 2022 10:59:37 +0000
ROA not after: Thu 01 Dec 2022 00:00:00 +0000
asID: 136482
IP address blocks: 160.238.33.0/24 maxlen: 24
202.53.131.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2428 (0x97c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918E308/serialNumber=D2536918C18B6BC2D91042808BCADFCDB7347531
Validity
Not Before: Jun 20 10:59:37 2022 GMT
Not After : Dec 1 00:00:00 2022 GMT
Subject: CN=62b05319-a832
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:31:fa:ca:76:34:54:11:04:05:84:76:d2:01:
d3:4f:89:f1:19:95:a8:fd:6d:eb:6e:44:80:15:b2:
4d:fe:e7:6b:3a:0c:7d:15:9b:7f:4b:4a:49:ae:89:
bc:1d:9b:36:38:90:eb:e2:b7:17:09:37:70:94:45:
77:3b:cc:7a:97:8b:f7:77:45:54:ff:d9:5d:cd:95:
8d:ec:f5:bd:17:0d:3b:7b:61:92:2a:8e:5c:bd:a5:
0c:ac:21:ba:e9:68:f3:e7:b9:1d:63:63:b7:fd:e3:
12:d5:b3:b3:1f:66:2e:aa:c8:7d:12:3b:04:f4:69:
9b:3d:e8:5b:69:47:7c:bb:6d:7e:76:6b:8c:8a:d3:
5e:ed:a5:e9:76:1c:e1:51:40:2a:bb:08:0e:0e:0b:
9e:3e:22:5a:f8:1e:f8:a8:a9:1c:c8:23:4c:a0:ef:
a7:e5:0e:b5:16:b7:f4:31:12:68:25:d4:4a:57:4b:
99:6b:d2:c1:34:5e:c2:2a:7e:6e:66:9d:fd:79:38:
53:0e:38:0b:4d:89:99:26:c9:39:2c:fa:bd:f8:41:
f6:c7:17:48:72:d4:f7:cb:d2:b9:fa:bb:0e:0c:56:
e3:5e:a9:4d:a7:54:94:08:c8:92:bd:a2:bc:72:d9:
26:ec:87:15:78:bc:09:fc:18:10:ac:3b:20:da:98:
7a:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:D6:6F:67:EA:11:45:A4:FC:26:2C:F1:60:A1:62:2D:C8:3B:7B:3C
X509v3 Authority Key Identifier:
keyid:D2:53:69:18:C1:8B:6B:C2:D9:10:42:80:8B:CA:DF:CD:B7:34:75:31
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918E308/C77F7A1206D511EA8A897F4FC4F9AE02/0lNpGMGLa8LZEEKAi8rfzbc0dTE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0lNpGMGLa8LZEEKAi8rfzbc0dTE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E308/C77F7A1206D511EA8A897F4FC4F9AE02/1321EEB6F08811ECB5994B27C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.238.33.0/24
202.53.131.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:6b:20:8f:02:ae:8b:06:c1:45:fd:89:57:2d:60:1b:d0:65:
10:b1:12:04:f2:96:74:ab:8a:c9:50:36:ce:ee:5b:f2:9f:6f:
02:d0:6b:d0:f5:62:e3:a9:3e:b1:16:06:b5:2d:df:b3:32:6b:
f8:db:70:c6:b3:42:dc:1e:ae:a5:5b:4f:d6:58:b0:20:32:0e:
8b:1e:1e:46:75:2e:99:a2:43:6f:57:cd:ef:49:a2:1d:58:dc:
f4:65:d3:93:f3:6b:ae:ba:a2:17:0a:aa:98:d7:ed:aa:22:ee:
61:a3:ee:15:5a:fe:07:e4:0a:94:14:58:e8:08:5d:9b:5b:74:
96:56:d0:c0:fd:e8:0f:40:cf:05:8b:d9:b3:51:98:ad:be:8d:
32:1e:fd:fc:17:6b:cb:4a:1b:17:7e:a9:a8:86:01:dd:71:50:
15:d3:08:15:61:33:d2:cc:39:31:4d:4e:88:93:b5:c4:6f:05:
83:35:76:93:93:cf:d4:d9:3b:8c:27:03:58:2d:5c:28:e4:8e:
f1:0c:7c:f1:75:43:80:b7:81:8f:ca:43:90:78:ea:f2:b6:e5:
40:f0:98:83:02:34:64:bb:f3:35:ef:0e:f2:c9:2c:02:3b:2e:
22:4b:51:44:79:8f:c2:e6:11:77:1a:4e:a0:bc:0d:ff:b1:eb:
73:63:37:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:15 2024 by rpki-client on console-fra.rpki-client.org