Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/17256298A74B11EDB2F8D547C4F9AE02.roa
File: 17256298A74B11EDB2F8D547C4F9AE02.roa (raw, json)
Hash identifier: QlT0zEZNtLslnB3k8kIosw1SZIUMkZuzwY9xWNDTPog=
Subject key identifier: E9:0F:3C:0A:B5:60:87:82:02:D2:9D:CF:FC:73:04:DD:5E:B1:39:D1
Certificate issuer: /CN=A918FC75/serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D
Certificate serial: 0196
Authority key identifier: 48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/17256298A74B11EDB2F8D547C4F9AE02.roa
Signing time: Wed 08 Feb 2023 00:54:07 +0000
ROA not before: Wed 08 Feb 2023 00:54:07 +0000
ROA not after: Thu 31 Aug 2023 00:00:00 +0000
asID: 9443
IP address blocks: 203.32.26.0/24 maxlen: 24
203.32.32.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 406 (0x196)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918FC75/serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D
Validity
Not Before: Feb 8 00:54:07 2023 GMT
Not After : Aug 31 00:00:00 2023 GMT
Subject: CN=63e2f2af-8302
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:e9:fd:a2:36:86:33:d2:dd:bf:68:c8:20:67:
ea:7b:a5:34:f1:53:fe:48:8a:a6:43:d2:5d:33:6f:
20:93:2a:5e:77:18:b7:a7:76:7a:7a:56:f5:f5:0c:
c9:d5:b8:a7:a0:a4:4f:c1:c7:6f:8d:bc:8b:7b:89:
90:0a:4f:2e:e9:9f:10:2f:0c:07:1b:03:0c:16:43:
b1:6c:55:53:7f:ba:9f:85:43:39:dd:a7:ab:7e:b9:
74:1e:32:c3:21:4b:bc:13:8b:d3:59:11:62:e7:02:
a8:52:8a:72:ed:08:11:72:eb:49:e4:15:57:b2:99:
ec:3d:7c:54:a6:48:7d:dd:15:2f:9e:c1:d4:99:f9:
08:93:33:9d:12:71:2a:72:a7:68:5d:13:77:06:25:
88:3e:c0:93:e0:19:b1:95:08:ea:a5:7f:74:f9:73:
ed:01:b9:16:f4:36:d4:f7:ce:a3:3a:a6:b2:6a:11:
02:bf:c7:b3:88:20:2b:b5:d4:1d:45:ed:91:b1:c3:
06:05:f4:31:16:a4:42:b1:51:30:e5:5c:bb:47:1f:
cd:4a:9b:b1:1f:be:46:78:aa:d1:45:81:45:58:c3:
f7:31:17:78:06:d3:61:36:47:bc:bf:fb:52:5a:cd:
34:12:7d:e7:dc:6a:3d:b9:9c:fd:a6:26:d2:83:8c:
71:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:0F:3C:0A:B5:60:87:82:02:D2:9D:CF:FC:73:04:DD:5E:B1:39:D1
X509v3 Authority Key Identifier:
keyid:48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/17256298A74B11EDB2F8D547C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.32.26.0/24
203.32.32.0/24
Signature Algorithm: sha256WithRSAEncryption
70:c4:74:45:12:93:b4:fa:f9:22:1c:cc:8e:5f:9c:84:fb:5a:
44:e5:08:cc:86:ac:8e:cf:d0:71:35:81:90:7a:31:b2:94:3d:
13:10:ef:3b:81:1b:df:24:66:30:87:f8:b6:0f:be:6b:c9:a5:
bf:2b:93:58:aa:4b:1a:40:6a:21:0a:39:3c:37:fd:38:e5:1d:
f3:ca:c2:a7:a6:43:dd:b8:d2:4e:57:6d:59:11:d2:26:5d:7e:
c8:fb:4d:d2:08:3f:aa:4c:e9:59:0f:8f:95:db:a2:9a:96:8c:
6a:b2:b9:26:05:69:e7:9e:66:5f:ff:07:92:5e:1b:ac:38:31:
bb:75:13:ec:35:71:33:0c:b1:18:2f:33:5f:cc:8e:17:67:52:
58:ee:d0:cb:db:f3:52:1d:89:68:12:af:a5:8d:46:55:64:f8:
1d:70:7e:25:ef:94:9d:48:29:35:60:e6:a8:b9:31:7d:a3:4c:
8d:ee:0d:45:c5:89:35:bd:bd:ac:7a:af:f8:47:56:c7:96:ca:
f6:22:4c:ff:fa:0c:48:f3:b0:98:6d:db:ff:f7:95:e5:de:b0:
16:ca:88:f2:41:9c:d2:65:74:22:eb:3e:33:35:97:1f:f9:f3:
77:a2:9f:70:87:e1:a8:b0:f6:00:ce:b3:0f:bd:6a:57:ca:a0:
f1:71:44:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:46 2024 by rpki-client on console-ams.rpki-client.org