Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91934DE/A941D5E2D8E411ED92EA3620C4F9AE02/6524017AD8E711EDADEFE120C4F9AE02.roa
File: 6524017AD8E711EDADEFE120C4F9AE02.roa (raw, json)
Hash identifier: 28frKmMGWAhZyxL15GPNf5o5r5zIEdJr6F5U65oZZ1k=
Subject key identifier: B4:85:0A:E9:00:41:A6:D9:CF:8C:30:13:37:87:33:6C:C1:FA:5A:99
Certificate issuer: /CN=A91934DE/serialNumber=FD49C064FCA3E92DECC18A8F50494B21FC01F256
Certificate serial: 02
Authority key identifier: FD:49:C0:64:FC:A3:E9:2D:EC:C1:8A:8F:50:49:4B:21:FC:01:F2:56
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_UnAZPyj6S3swYqPUElLIfwB8lY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91934DE/A941D5E2D8E411ED92EA3620C4F9AE02/6524017AD8E711EDADEFE120C4F9AE02.roa
Signing time: Wed 12 Apr 2023 04:06:27 +0000
ROA not before: Wed 12 Apr 2023 04:06:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 45162
IP address blocks: 203.149.88.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91934DE/serialNumber=FD49C064FCA3E92DECC18A8F50494B21FC01F256
Validity
Not Before: Apr 12 04:06:27 2023 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=64362e42-2224
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:a3:f7:bc:1f:6a:48:42:a8:02:43:76:be:37:
53:b8:63:00:93:b1:9b:e0:1a:98:39:8d:45:63:ee:
3d:39:cb:3f:56:37:d6:49:d5:fd:e3:88:ff:6d:df:
24:bc:19:37:1a:f9:89:5a:4c:a9:ee:59:c1:ca:83:
e6:91:3a:84:36:fa:0e:31:85:59:94:cd:88:5b:2d:
77:bb:90:70:42:c6:2f:25:76:66:e5:22:90:c3:56:
36:f1:5c:6c:c2:85:41:75:33:96:fa:0e:c3:fe:c4:
68:ba:91:e9:95:01:50:c2:f0:28:44:96:27:0f:26:
1d:2d:6b:30:62:91:c6:4e:90:5d:16:26:87:51:38:
81:5a:7f:d2:ea:8d:bc:20:da:ba:40:dc:36:7e:ed:
f2:d1:ca:66:8a:67:de:82:9a:11:0d:f7:f5:97:16:
61:ce:c3:0b:ee:64:bf:68:08:12:b4:45:2c:24:49:
c6:90:e2:38:57:11:70:20:c9:2c:74:70:8b:71:24:
0e:1b:78:ea:96:99:eb:18:b2:d0:13:70:0c:c1:84:
75:10:62:68:23:33:2a:d4:68:1f:3b:30:c1:a0:e8:
0b:d9:6a:b5:8f:03:3f:cf:9f:a8:b7:9a:9d:c6:6e:
f8:5a:83:7f:05:53:7a:90:97:07:79:1e:91:bd:fc:
67:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:85:0A:E9:00:41:A6:D9:CF:8C:30:13:37:87:33:6C:C1:FA:5A:99
X509v3 Authority Key Identifier:
keyid:FD:49:C0:64:FC:A3:E9:2D:EC:C1:8A:8F:50:49:4B:21:FC:01:F2:56
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91934DE/A941D5E2D8E411ED92EA3620C4F9AE02/_UnAZPyj6S3swYqPUElLIfwB8lY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_UnAZPyj6S3swYqPUElLIfwB8lY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91934DE/A941D5E2D8E411ED92EA3620C4F9AE02/6524017AD8E711EDADEFE120C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.149.88.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:01:e0:ae:3e:d2:cd:f2:af:39:48:35:a8:42:7e:ab:f1:8a:
a2:62:47:01:22:f5:f6:30:70:33:fd:4e:81:ff:fb:1e:5b:3d:
cb:14:3e:9e:cc:9d:4d:30:c0:ef:9a:b5:64:d5:7a:00:f5:6b:
28:ca:4a:f5:7c:a2:c8:51:1b:dd:7d:49:e3:3f:44:18:ab:cd:
fa:e8:82:6e:3d:b6:ac:f9:db:13:a5:fa:d6:66:35:3a:1e:f7:
77:5d:cb:e5:47:1b:bc:06:40:5d:58:8c:9a:b7:af:b3:e1:7c:
59:7a:a4:e8:ca:0a:de:8d:a6:58:ed:ad:24:4d:f5:89:01:5e:
1c:c4:fc:d3:f5:17:9f:07:4b:c9:0c:9d:a2:4d:0d:28:04:78:
1e:90:7c:af:68:97:02:89:cb:89:90:d9:83:8f:7f:49:83:7d:
5d:73:a5:77:57:ce:69:2f:70:5b:ac:f6:c4:b4:47:b0:d0:53:
c9:d0:ba:ba:6c:b1:b1:89:df:e9:74:64:41:fc:f3:a2:6e:84:
0f:bb:fb:be:c0:42:fd:33:f5:ac:79:f0:c5:22:49:d9:ff:94:
d4:bd:07:17:d0:67:73:ce:a4:6c:19:f8:d6:23:5b:2e:5f:36:
df:48:c3:cc:9c:b0:e9:c4:35:0a:1e:89:54:b7:6c:8e:2c:8a:
75:25:3f:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:47 2024 by rpki-client on console-ams.rpki-client.org