Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A919ECE7/5E05DBA45FAC11EB8494452FC4F9AE02/DA62E06E3F0E11EDB019C365C4F9AE02.roa
File: DA62E06E3F0E11EDB019C365C4F9AE02.roa (raw, json)
Hash identifier: 0ZEVBFF8f2QyGPmpq9MYVMUihgNT++K+SUVnLnqdAL8=
Subject key identifier: 52:78:D2:2A:4D:D8:99:A3:5A:B4:1A:3F:CE:C1:24:49:7F:D5:73:92
Certificate issuer: /CN=A919ECE7/serialNumber=77370BC07305D19DBDACCE4BF7209E1EB6D40E33
Certificate serial: 04F4
Authority key identifier: 77:37:0B:C0:73:05:D1:9D:BD:AC:CE:4B:F7:20:9E:1E:B6:D4:0E:33
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dzcLwHMF0Z29rM5L9yCeHrbUDjM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919ECE7/5E05DBA45FAC11EB8494452FC4F9AE02/DA62E06E3F0E11EDB019C365C4F9AE02.roa
Signing time: Sat 05 Nov 2022 00:50:17 +0000
ROA not before: Sat 05 Nov 2022 00:50:16 +0000
ROA not after: Wed 31 Jan 2024 00:00:00 +0000
asID: 207190
IP address blocks: 43.250.174.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1268 (0x4f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919ECE7/serialNumber=77370BC07305D19DBDACCE4BF7209E1EB6D40E33
Validity
Not Before: Nov 5 00:50:16 2022 GMT
Not After : Jan 31 00:00:00 2024 GMT
Subject: CN=6365b348-e03b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:03:a2:4a:59:0d:0a:db:d9:15:8f:6e:36:3a:
b6:37:3d:6f:14:0b:88:ba:ff:65:26:b9:f0:d7:a4:
23:5c:82:d7:67:f8:7a:81:99:d4:61:00:4d:7f:81:
82:92:2a:a4:82:ad:82:3c:55:6d:38:21:a5:f4:5f:
18:1a:06:ae:9e:27:38:03:eb:ab:2d:ca:9f:ad:84:
cd:94:f2:2a:de:79:e6:a2:5f:c9:14:ac:20:38:00:
f1:b5:22:50:b3:f2:91:d3:6d:bc:f3:04:97:8f:e3:
a5:1f:0c:26:c3:fa:11:30:48:84:e0:c3:47:aa:98:
ba:83:88:e7:f5:5d:c1:c3:da:64:aa:28:b2:70:0b:
c2:5f:e8:ac:82:d2:1a:25:fb:1b:f9:9d:10:fc:39:
80:a0:68:e2:bd:63:dc:24:5f:fa:ba:6b:f0:f6:ca:
9f:67:f4:84:90:dc:8c:1e:51:86:b0:d9:5b:b1:93:
c2:6d:ae:3a:5e:ab:da:2d:c0:20:6a:ac:83:d9:ca:
12:8c:36:31:c0:d4:68:a3:54:6a:7b:69:b7:59:b8:
c3:eb:88:9d:67:cd:25:d0:b5:71:91:6f:fd:67:05:
3f:f2:76:01:0e:8d:1b:c3:23:7f:b8:be:9f:7b:5b:
77:9d:68:39:1c:bc:a1:32:ef:33:e7:58:56:2f:b0:
ed:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:78:D2:2A:4D:D8:99:A3:5A:B4:1A:3F:CE:C1:24:49:7F:D5:73:92
X509v3 Authority Key Identifier:
keyid:77:37:0B:C0:73:05:D1:9D:BD:AC:CE:4B:F7:20:9E:1E:B6:D4:0E:33
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919ECE7/5E05DBA45FAC11EB8494452FC4F9AE02/dzcLwHMF0Z29rM5L9yCeHrbUDjM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dzcLwHMF0Z29rM5L9yCeHrbUDjM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919ECE7/5E05DBA45FAC11EB8494452FC4F9AE02/DA62E06E3F0E11EDB019C365C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.250.174.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:1e:a5:1e:43:80:0c:90:7e:bd:fe:eb:92:79:06:f4:59:7d:
17:6e:e1:dc:df:65:a9:e7:a6:18:67:15:e1:66:58:dc:79:32:
3a:05:09:a1:24:a0:f1:f1:ab:9f:e1:4d:40:ec:2b:b0:4b:bb:
d7:10:2d:86:19:95:e6:60:56:f8:7b:bf:c3:ef:3a:b9:ec:7a:
9c:86:8f:1e:ec:b0:c2:ef:8a:46:8a:c3:f3:aa:02:99:72:84:
37:92:b8:91:8b:f7:c4:32:b7:74:75:2b:e0:ce:03:b2:97:3f:
5f:7a:11:07:b4:dd:d9:32:2f:76:06:47:d1:d2:50:10:52:a6:
3c:98:34:4c:c8:7f:bd:a5:a1:32:65:be:ea:bb:71:9d:7b:a1:
a6:65:59:80:95:fa:7a:5c:20:33:7d:aa:6c:52:1b:82:9b:af:
40:b7:c4:f8:c0:78:cf:76:17:05:a0:23:9d:f8:f9:d7:0f:2c:
73:73:fc:09:59:eb:f8:5d:e7:42:7f:29:e5:e8:d7:74:d4:b1:
82:d0:fb:ad:14:75:a3:ef:22:c3:2a:64:a6:63:a4:df:3c:f7:
9f:c5:41:bc:ce:a1:47:b0:ab:d2:a7:33:70:7e:79:a7:7a:3f:
66:29:26:2f:ba:db:89:45:74:4c:b8:21:38:65:8c:1f:c7:63:
8f:a8:40:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:49 2024 by rpki-client on console-ams.rpki-client.org