Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9198847/DDFBB0B8D78111E9B423AC4BC4F9AE02/D88443586E4911EE8988954AC4F9AE02.roa
File: D88443586E4911EE8988954AC4F9AE02.roa (raw, json)
Hash identifier: iJrj3PY7EKYp+LKLDAhxXVN6KxEWSPWvHLaGOapVxXw=
Subject key identifier: DA:77:00:03:FD:04:0B:73:20:59:36:3C:2B:A3:20:67:B3:BA:7D:3E
Certificate issuer: /CN=A9198847/serialNumber=A6EF06B689581821C78C88291BBDF5C512A33F41
Certificate serial: 0C24
Authority key identifier: A6:EF:06:B6:89:58:18:21:C7:8C:88:29:1B:BD:F5:C5:12:A3:3F:41
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pu8GtolYGCHHjIgpG731xRKjP0E.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9198847/DDFBB0B8D78111E9B423AC4BC4F9AE02/D88443586E4911EE8988954AC4F9AE02.roa
Signing time: Thu 19 Oct 2023 06:36:34 +0000
ROA not before: Thu 19 Oct 2023 06:36:34 +0000
ROA not after: Wed 29 May 2024 00:00:00 +0000
asID: 137449
IP address blocks: 43.246.200.0/22 maxlen: 24
2402:76c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3108 (0xc24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9198847/serialNumber=A6EF06B689581821C78C88291BBDF5C512A33F41
Validity
Not Before: Oct 19 06:36:34 2023 GMT
Not After : May 29 00:00:00 2024 GMT
Subject: CN=6530ce72-378f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:82:d9:76:ce:df:f1:6e:be:9b:3b:25:d3:28:
09:56:2d:52:e5:44:04:e4:dc:73:75:5d:9e:a8:97:
10:c0:8c:ad:79:c2:a4:e1:9b:55:b5:19:5c:12:c3:
5b:b7:38:7f:39:6c:9b:66:b8:83:9a:91:03:bc:2e:
82:f7:68:3b:05:06:68:5c:5b:74:b3:ef:08:df:b7:
46:0f:08:21:d9:d0:8d:e1:7e:00:6f:d6:89:21:93:
fe:83:7c:7d:5d:b5:cc:b4:e5:9c:c4:e9:f8:fa:b4:
5d:be:eb:3c:f9:3f:e4:36:e1:b7:0f:cd:e6:f8:90:
8c:7d:90:88:0b:31:f9:e1:08:d7:10:e9:a4:0c:7a:
30:01:ba:4a:0a:0f:f6:8c:2f:73:b0:6c:48:29:15:
b7:0e:44:64:47:b2:5f:f8:b9:ea:5f:cd:5a:a7:3c:
db:6d:f0:b3:4a:d6:b9:fc:50:c4:00:b4:9d:c7:cb:
e3:60:a9:15:31:82:3b:05:5c:13:9c:1e:4b:46:a2:
b5:21:6d:79:f3:77:7b:59:60:1b:d3:55:6e:e2:3c:
74:03:65:ac:01:d3:f3:c9:44:74:eb:6c:a3:dd:ca:
bd:3f:85:e4:6d:bb:e7:a4:21:c0:e1:cb:a5:17:3e:
a3:7e:db:2e:b4:7c:d5:d6:32:f1:5e:a9:a6:fd:46:
8b:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:77:00:03:FD:04:0B:73:20:59:36:3C:2B:A3:20:67:B3:BA:7D:3E
X509v3 Authority Key Identifier:
keyid:A6:EF:06:B6:89:58:18:21:C7:8C:88:29:1B:BD:F5:C5:12:A3:3F:41
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9198847/DDFBB0B8D78111E9B423AC4BC4F9AE02/pu8GtolYGCHHjIgpG731xRKjP0E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pu8GtolYGCHHjIgpG731xRKjP0E.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198847/DDFBB0B8D78111E9B423AC4BC4F9AE02/D88443586E4911EE8988954AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.246.200.0/22
IPv6:
2402:76c0::/32
Signature Algorithm: sha256WithRSAEncryption
0a:a9:6c:7e:c5:9c:1e:22:b1:0f:ee:13:9f:b8:46:e3:af:8b:
6b:68:0e:1f:cf:a4:2f:a9:59:70:7f:b8:d4:42:7e:3f:bc:0d:
b4:64:62:79:37:27:32:2e:c3:57:43:06:81:51:c7:23:55:e3:
b1:fc:a7:c6:03:5e:15:98:bf:63:7b:1b:aa:90:cf:7f:7a:91:
51:2d:cb:fc:db:6d:f0:6f:e3:b4:9c:8f:e8:d2:e3:fa:ca:eb:
13:d9:a2:d9:4b:df:d7:19:48:bb:ae:8c:be:00:1f:1e:68:9a:
f7:01:d4:fe:91:12:8d:e2:92:54:bb:cd:03:e9:22:f7:e1:fd:
9b:91:fd:70:57:ec:2e:e1:d9:05:99:7b:21:8a:b5:09:ff:29:
f5:19:5e:4d:e7:e8:2a:4c:4d:b7:b1:75:4b:02:d5:be:7f:fc:
f4:09:39:66:fd:01:8d:b0:b3:65:dd:e1:db:d8:fa:ba:7a:dc:
30:be:25:6d:eb:ec:67:65:d7:11:54:08:2b:b4:05:2c:f3:55:
cd:a0:8a:e3:82:e0:9d:cb:56:5a:fd:c7:38:ad:ed:ca:fd:37:
fc:ee:3c:0c:96:4a:20:dc:36:37:ff:f6:4e:6c:ec:92:1c:71:
0b:2e:c3:fa:77:59:92:ba:cd:b8:98:4a:71:42:f1:8d:0f:65:
ff:7b:e4:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:48 2024 by rpki-client on console-ams.rpki-client.org