Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A912096C/1D31C184289211EBAC8CCE13C4F9AE02/EFAF45F4289311EB949F7916C4F9AE02.roa
File: EFAF45F4289311EB949F7916C4F9AE02.roa (raw, json)
Hash identifier: ipYj/bQQ0/ZNJMdTdYWylERi6W6a1UQSlCcFkM3oXIQ=
Subject key identifier: 88:71:0A:E7:B5:87:78:7A:2E:00:F8:C1:F9:31:C7:1E:D3:89:E5:FB
Certificate issuer: /CN=A912096C/serialNumber=8197663A7F6347D591B6B2B9ADD5A2D574E91124
Certificate serial: 046B
Authority key identifier: 81:97:66:3A:7F:63:47:D5:91:B6:B2:B9:AD:D5:A2:D5:74:E9:11:24
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gZdmOn9jR9WRtrK5rdWi1XTpESQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912096C/1D31C184289211EBAC8CCE13C4F9AE02/EFAF45F4289311EB949F7916C4F9AE02.roa
Signing time: Thu 02 Jun 2022 00:25:21 +0000
ROA not before: Thu 02 Jun 2022 00:25:21 +0000
ROA not after: Thu 31 Aug 2023 00:00:00 +0000
asID: 45250
IP address blocks: 114.199.64.0/24 maxlen: 24
114.199.65.0/24 maxlen: 24
114.199.66.0/24 maxlen: 24
114.199.67.0/24 maxlen: 24
114.199.68.0/24 maxlen: 24
114.199.69.0/24 maxlen: 24
114.199.70.0/24 maxlen: 24
114.199.71.0/24 maxlen: 24
114.199.72.0/24 maxlen: 24
114.199.73.0/24 maxlen: 24
114.199.74.0/24 maxlen: 24
114.199.75.0/24 maxlen: 24
114.199.76.0/24 maxlen: 24
114.199.77.0/24 maxlen: 24
114.199.78.0/24 maxlen: 24
114.199.79.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1131 (0x46b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912096C/serialNumber=8197663A7F6347D591B6B2B9ADD5A2D574E91124
Validity
Not Before: Jun 2 00:25:21 2022 GMT
Not After : Aug 31 00:00:00 2023 GMT
Subject: CN=62980370-e3ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:5e:40:92:82:bd:47:8e:9d:8f:69:73:42:e8:
81:44:57:82:71:ce:17:9b:39:42:84:09:18:51:13:
2c:12:21:36:e6:35:b2:e0:e2:de:dd:be:03:1f:37:
8a:d0:69:2a:0d:33:c1:1c:fb:de:27:2d:ed:54:85:
c0:a6:57:d8:78:db:69:b3:d3:7f:fc:d4:3e:21:8b:
74:51:63:f3:48:4f:48:7f:d3:b8:e9:b8:7a:9b:9a:
21:65:90:20:4d:92:53:99:34:d0:53:9c:a9:f1:54:
04:52:5a:bf:d6:c5:82:10:4d:0d:02:1c:18:c0:f4:
d6:ff:f2:de:7f:ac:5b:f1:7c:6b:62:19:a5:c7:4a:
a7:5e:99:ae:86:85:fb:e6:73:f4:4b:fd:af:b9:fe:
e8:fe:25:e0:49:2d:09:19:dc:0e:ae:79:a5:48:9e:
3a:1e:08:39:02:7c:da:30:e1:68:01:98:e2:f5:b1:
84:07:78:d0:16:5b:b5:2b:31:ee:6c:c2:20:9b:0a:
4f:7f:cf:82:79:ab:26:7b:5b:38:4a:f8:2f:8f:9c:
c4:1d:3b:6c:f5:a0:05:95:14:5e:32:e7:d8:82:35:
e3:3e:72:cf:d6:03:96:6d:55:34:bb:90:18:93:93:
f6:79:f8:2d:59:65:1e:2f:53:7c:a8:bb:d7:89:83:
69:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:71:0A:E7:B5:87:78:7A:2E:00:F8:C1:F9:31:C7:1E:D3:89:E5:FB
X509v3 Authority Key Identifier:
keyid:81:97:66:3A:7F:63:47:D5:91:B6:B2:B9:AD:D5:A2:D5:74:E9:11:24
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912096C/1D31C184289211EBAC8CCE13C4F9AE02/gZdmOn9jR9WRtrK5rdWi1XTpESQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gZdmOn9jR9WRtrK5rdWi1XTpESQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912096C/1D31C184289211EBAC8CCE13C4F9AE02/EFAF45F4289311EB949F7916C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
114.199.64.0/20
Signature Algorithm: sha256WithRSAEncryption
91:72:da:58:67:54:46:66:ac:10:c5:3a:64:3b:41:5b:f3:1e:
be:30:f3:d5:97:6b:d8:8d:d4:b7:c6:0c:90:12:19:ff:40:e2:
ee:e3:e4:71:31:f6:4a:db:ae:60:01:8b:a7:de:9a:d3:43:2f:
f2:9a:56:60:cb:83:1d:fd:b0:37:62:7d:b0:d6:fc:b0:d8:36:
53:b3:7f:9e:26:d6:8f:07:2f:a5:aa:9d:c0:73:4a:8e:83:27:
0e:d8:c3:26:0e:95:ac:63:4f:5e:a6:4e:3a:a8:0e:7e:13:8a:
2e:8f:55:43:cc:f7:af:7d:a5:15:2b:48:36:34:e1:3b:4d:0f:
0a:0d:ce:47:02:17:26:ed:17:fc:f8:a9:3e:13:0c:24:f9:de:
6e:14:7e:f1:ef:46:db:f5:02:9b:a9:81:89:33:93:90:3d:b6:
a9:05:ba:1a:55:91:f5:d0:3e:30:9c:f8:e7:bf:f3:da:d7:45:
dc:33:e1:c5:4a:07:70:82:49:b6:06:92:96:8c:50:25:62:84:
a3:d7:6f:10:1e:bf:37:60:36:9a:bd:5c:a0:e9:63:41:02:47:
cb:7a:73:fe:45:a2:5a:e9:6f:51:b4:49:4b:4b:e0:da:f7:08:
d9:db:3f:08:b1:d5:a5:47:33:21:b0:ac:ef:3c:4d:5a:30:27:
d8:1e:6f:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:47 2024 by rpki-client on console-ams.rpki-client.org