Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4BB3/AEA873EC5BC711ECAD58B05FC4F9AE02/78E530045BC911EC9CF3E35FC4F9AE02.roa
File: 78E530045BC911EC9CF3E35FC4F9AE02.roa (raw, json)
Hash identifier: AzfDUNB3dfv8te42U+W5o/sJRI7sf28R5Z3I4STfC4c=
Subject key identifier: 24:86:B1:3E:7E:85:F3:63:D6:8B:37:BC:E4:67:81:3E:38:56:C8:42
Certificate issuer: /CN=A91F4BB3/serialNumber=AC7C9E71822C056185186453F960B2C1E8CA94E3
Certificate serial: 0A
Authority key identifier: AC:7C:9E:71:82:2C:05:61:85:18:64:53:F9:60:B2:C1:E8:CA:94:E3
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHyecYIsBWGFGGRT-WCywejKlOM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F4BB3/AEA873EC5BC711ECAD58B05FC4F9AE02/78E530045BC911EC9CF3E35FC4F9AE02.roa
Signing time: Thu 16 Dec 2021 10:41:44 +0000
ROA not before: Thu 16 Dec 2021 10:41:44 +0000
ROA not after: Sat 30 Jul 2022 00:00:00 +0000
asID: 45947
IP address blocks: 202.43.84.0/24 maxlen: 24
202.43.86.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10 (0xa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F4BB3/serialNumber=AC7C9E71822C056185186453F960B2C1E8CA94E3
Validity
Not Before: Dec 16 10:41:44 2021 GMT
Not After : Jul 30 00:00:00 2022 GMT
Subject: CN=61bb17e7-1631
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:4c:13:f5:46:20:a6:47:fa:61:d3:ea:51:fb:
a9:46:da:2e:f2:e6:6c:00:99:48:0d:01:38:ab:3b:
7e:f6:b7:d1:2d:5d:b4:ce:8e:89:ad:2c:5d:2e:5f:
4c:68:61:45:4c:31:a3:b2:c4:31:1c:59:e9:ab:e6:
ce:6b:ab:78:f9:df:9b:a6:89:a6:23:76:3a:48:34:
1c:fb:9f:2e:36:9c:c0:a5:1c:90:80:03:6a:9c:64:
e3:f7:c7:55:e9:19:5a:74:7b:8d:84:0d:61:b3:ab:
1c:32:46:61:b0:53:66:33:66:92:10:77:73:ef:ff:
fc:ae:63:3a:1b:a4:88:9c:2c:0c:ee:a2:2f:7c:d6:
68:02:66:19:29:fa:c5:c9:35:98:c6:6e:ff:af:33:
a8:a0:40:29:62:4d:f1:8e:e1:d2:20:37:d1:e5:bb:
2b:7c:80:e5:da:87:a4:4f:16:7c:34:74:d1:97:ff:
d2:69:c9:cc:ed:fe:62:3f:87:87:58:d0:1f:fd:43:
86:7d:e6:11:dc:b0:c0:2c:bc:6d:62:96:72:c4:cb:
ea:ef:9f:ec:91:62:ee:a8:35:c5:ac:ef:cb:5a:04:
48:23:32:46:d4:d8:9b:e1:1e:d8:e4:14:95:aa:e8:
fb:8d:e5:00:8d:e1:f1:18:f3:8b:93:5f:6a:cb:d6:
0f:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:86:B1:3E:7E:85:F3:63:D6:8B:37:BC:E4:67:81:3E:38:56:C8:42
X509v3 Authority Key Identifier:
keyid:AC:7C:9E:71:82:2C:05:61:85:18:64:53:F9:60:B2:C1:E8:CA:94:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F4BB3/AEA873EC5BC711ECAD58B05FC4F9AE02/rHyecYIsBWGFGGRT-WCywejKlOM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHyecYIsBWGFGGRT-WCywejKlOM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4BB3/AEA873EC5BC711ECAD58B05FC4F9AE02/78E530045BC911EC9CF3E35FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.43.84.0/24
202.43.86.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:cd:53:52:74:77:03:c3:0a:54:e0:21:d4:64:7d:01:d1:5c:
72:a0:54:7f:b6:eb:33:24:c0:b7:b9:00:dd:95:2c:c8:c5:0b:
b2:31:66:75:99:38:57:2e:07:cd:fa:7c:21:e5:2e:03:69:f8:
35:41:ce:f9:9c:d3:db:c9:aa:58:1f:f4:dc:ee:89:9e:56:4a:
7a:fd:4c:f8:e0:4f:2a:50:e3:5d:af:58:e3:38:ff:43:cd:67:
3a:89:26:47:40:f6:c1:7c:94:d5:f7:af:17:d9:c5:02:94:b6:
0e:49:19:91:07:75:4c:b6:94:e8:7d:7a:44:fa:95:7b:7b:60:
4e:e1:8d:8d:34:98:5e:7e:4f:9d:be:e5:c1:94:46:0b:f8:6a:
94:bc:8d:e0:61:32:d7:4d:de:92:aa:9b:c4:0a:37:73:a7:09:
5c:c5:2a:dc:8e:b0:fd:66:8a:9b:69:9e:b1:26:c5:b1:35:99:
db:8d:28:b1:47:04:62:ba:d6:a9:a9:f3:02:20:92:b2:66:bc:
6f:0a:03:b3:a7:dd:bf:a2:16:a8:3a:c0:9e:71:88:39:b4:69:
18:d5:66:06:e6:5d:1e:74:0f:46:bb:22:d0:a3:ca:09:97:b2:
f1:02:e0:77:90:81:41:4a:3d:b2:e9:f1:dc:32:e8:e7:68:79:
86:8d:7f:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:38 2024 by rpki-client on console-ams.rpki-client.org