Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/4ADDFD348AD811EB9CAEA638C4F9AE02.roa
File: 4ADDFD348AD811EB9CAEA638C4F9AE02.roa (raw, json)
Hash identifier: wvcroKpqFOTz4SzY1ZqoAGoCT4UpkFo0dDrIUmJrFoM=
Subject key identifier: B6:1A:66:0E:D8:61:E6:B7:CF:D3:73:EA:3A:E3:77:F9:13:96:79:35
Certificate issuer: /CN=A9123BFF/serialNumber=AF4A3544C74B317A7C326AF0E8393CB9D5262032
Certificate serial: 04A9
Authority key identifier: AF:4A:35:44:C7:4B:31:7A:7C:32:6A:F0:E8:39:3C:B9:D5:26:20:32
Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/4ADDFD348AD811EB9CAEA638C4F9AE02.roa
Signing time: Wed 15 Jun 2022 16:54:12 +0000
ROA not before: Wed 15 Jun 2022 16:54:12 +0000
ROA not after: Sun 30 Jul 2023 00:00:00 +0000
asID: 132819
IP address blocks: 185.251.172.0/24 maxlen: 24
185.251.173.0/24 maxlen: 24
185.251.174.0/24 maxlen: 24
185.251.175.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1193 (0x4a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9123BFF/serialNumber=AF4A3544C74B317A7C326AF0E8393CB9D5262032
Validity
Not Before: Jun 15 16:54:12 2022 GMT
Not After : Jul 30 00:00:00 2023 GMT
Subject: CN=62aa0eb4-6953
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:f4:a7:b4:f2:cd:67:e6:a0:2f:f6:14:2d:69:
7b:e2:4e:d7:d4:bf:b2:a1:1f:db:37:ff:5e:56:25:
02:b4:7c:be:e0:7d:44:1f:a1:82:a4:a4:a7:64:36:
1d:b4:90:68:59:63:2b:d4:22:90:bd:73:10:ac:ce:
22:bf:86:cc:d4:ad:8c:30:90:a1:f5:8a:f7:21:56:
f4:6d:c0:e4:3a:6f:f4:4e:97:f3:63:21:43:8f:91:
50:51:de:6e:74:7a:7c:4e:d7:4d:a7:04:bb:aa:a1:
4e:d8:13:65:71:69:f1:56:5a:fb:28:e8:10:d5:af:
57:f9:ee:a9:df:95:44:cf:50:3c:b2:1b:c2:86:07:
73:8d:7c:d1:da:a9:70:fd:76:c0:84:ef:99:df:95:
6d:d8:db:06:e1:91:e2:b4:81:37:fb:22:05:b0:66:
c4:86:96:f7:9c:af:e7:6d:30:12:28:be:b0:a4:3c:
99:2e:93:7b:bd:5d:8e:b0:b4:3a:ba:b8:b8:a6:2c:
90:2c:01:c1:d6:45:fd:5a:d0:6d:44:9d:78:02:fb:
78:7e:b3:82:c0:84:63:4e:72:9b:fb:a9:50:1c:49:
78:68:38:7f:c8:ba:73:f6:c3:78:ef:f7:5c:41:2f:
eb:68:29:aa:e9:9c:45:7d:97:e1:91:a3:77:5c:13:
bd:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:1A:66:0E:D8:61:E6:B7:CF:D3:73:EA:3A:E3:77:F9:13:96:79:35
X509v3 Authority Key Identifier:
keyid:AF:4A:35:44:C7:4B:31:7A:7C:32:6A:F0:E8:39:3C:B9:D5:26:20:32
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/4ADDFD348AD811EB9CAEA638C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
185.251.172.0/22
Signature Algorithm: sha256WithRSAEncryption
a8:69:cf:3e:31:c3:f3:44:73:de:89:d3:8f:b8:1d:80:06:11:
13:0e:79:3f:e7:85:f6:c1:16:f7:81:eb:92:39:44:ff:95:a9:
d8:c7:f8:fb:5a:78:cb:00:13:ff:1f:e4:af:79:c4:91:53:2d:
da:6f:e5:fb:6b:30:25:f2:25:3a:89:d3:96:55:22:57:e4:59:
9f:cf:55:53:9e:04:5b:9e:f1:f9:da:12:10:92:e8:32:2a:40:
ff:f1:32:e0:89:6c:02:f8:09:f1:f4:c4:59:98:82:e9:9c:7f:
64:7c:5f:68:9b:26:4c:8f:c1:9b:b0:6f:c0:7d:7f:34:34:f4:
1d:1a:a6:6e:69:46:a5:35:81:78:ad:ea:5f:4c:bb:c1:04:a3:
21:96:53:9c:3f:7b:3c:6b:69:bd:10:7c:5e:99:db:d8:d6:ad:
d3:ef:ba:d3:dd:d5:df:cb:76:f8:b4:3c:59:7f:b2:da:88:c4:
27:30:ff:92:e4:ff:37:37:b1:32:47:ec:f0:ab:b1:7c:3d:08:
34:25:ba:c1:95:db:0e:11:cb:07:31:6c:d8:96:20:81:5c:9a:
54:ca:c0:e2:eb:8a:05:fa:a8:67:36:04:a2:f4:30:b5:58:ef:
87:aa:5b:13:5d:a3:1a:b1:ca:d5:94:28:ac:fa:11:ac:dd:0a:
28:53:ac:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:48 2024 by rpki-client on console-ams.rpki-client.org