Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A912AED4/BEC9AC82B0BD11E792A2BF30C4F9AE02/95A4564C712711ED9349F814C4F9AE02.roa
File: 95A4564C712711ED9349F814C4F9AE02.roa (raw, json)
Hash identifier: mFDckasGdH0G6/RC85aWV4zGEWbVCq4xS3Ouq3aK9VI=
Subject key identifier: 5D:3B:D4:E7:3E:CF:0B:AA:3C:67:6F:0B:01:C6:CC:50:8D:61:25:50
Certificate issuer: /CN=A912AED4/serialNumber=66F0C1DBCDF1ABC34ED11B46A90AE3201802A95C
Certificate serial: 1656
Authority key identifier: 66:F0:C1:DB:CD:F1:AB:C3:4E:D1:1B:46:A9:0A:E3:20:18:02:A9:5C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZvDB283xq8NO0RtGqQrjIBgCqVw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912AED4/BEC9AC82B0BD11E792A2BF30C4F9AE02/95A4564C712711ED9349F814C4F9AE02.roa
Signing time: Thu 01 Dec 2022 03:23:55 +0000
ROA not before: Thu 01 Dec 2022 03:23:55 +0000
ROA not after: Tue 31 Oct 2023 00:00:00 +0000
asID: 45873
IP address blocks: 180.94.236.0/22 maxlen: 22
180.94.236.0/23 maxlen: 24
2401:e880::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5718 (0x1656)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912AED4/serialNumber=66F0C1DBCDF1ABC34ED11B46A90AE3201802A95C
Validity
Not Before: Dec 1 03:23:55 2022 GMT
Not After : Oct 31 00:00:00 2023 GMT
Subject: CN=63881e4a-6ed2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:55:66:f7:0a:f4:f4:69:d5:ad:8e:0c:f6:3d:
6d:69:66:70:08:b2:39:06:25:89:28:06:1a:cb:2c:
b6:79:6f:4b:0f:9c:9a:8b:20:8d:a6:c8:d7:ef:4a:
d3:fc:e0:96:ff:c8:8c:5e:46:d9:fe:8b:f3:df:ae:
eb:31:ac:e4:a9:c7:b0:6b:05:bb:da:d6:cd:68:21:
59:72:40:0b:24:3e:ba:2b:2a:b7:d4:db:37:c3:d2:
f6:5b:bf:c4:d4:c3:90:ab:65:79:fe:09:0e:0c:d1:
c4:99:df:32:4c:f3:d9:c4:33:62:6f:0b:f9:86:c4:
6a:ce:24:37:be:8d:fe:a4:70:b3:3a:f6:ce:6b:34:
f5:71:fa:51:a4:22:5f:e8:46:5b:fe:c7:ef:d2:09:
23:a4:df:cc:06:b8:dc:6f:8c:8b:ad:d8:f0:53:95:
8a:5f:42:90:57:9c:6b:a2:4e:1f:7c:77:94:6f:5e:
a8:44:07:a6:27:93:06:03:47:82:80:3c:b4:b4:89:
3b:c7:1b:ae:3b:49:ce:11:f6:63:be:af:14:56:b6:
b4:17:c5:85:f9:bb:f6:5b:40:7b:c1:73:eb:4a:98:
ad:09:bf:86:a2:b9:20:f3:89:6d:fc:45:4f:b7:ef:
90:c5:de:22:d8:0e:73:24:0f:f2:d1:36:9b:10:9f:
5f:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:3B:D4:E7:3E:CF:0B:AA:3C:67:6F:0B:01:C6:CC:50:8D:61:25:50
X509v3 Authority Key Identifier:
keyid:66:F0:C1:DB:CD:F1:AB:C3:4E:D1:1B:46:A9:0A:E3:20:18:02:A9:5C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912AED4/BEC9AC82B0BD11E792A2BF30C4F9AE02/ZvDB283xq8NO0RtGqQrjIBgCqVw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZvDB283xq8NO0RtGqQrjIBgCqVw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912AED4/BEC9AC82B0BD11E792A2BF30C4F9AE02/95A4564C712711ED9349F814C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
180.94.236.0/22
IPv6:
2401:e880::/32
Signature Algorithm: sha256WithRSAEncryption
7e:8d:75:66:ae:71:04:e9:3f:33:6e:6d:cb:57:b9:c4:ba:19:
a4:de:74:fb:9c:f8:7f:93:87:40:95:53:93:84:8d:85:dd:55:
3e:ea:02:b1:d1:ee:4d:7a:32:d1:5e:fc:8f:bd:3b:7e:db:99:
88:a5:dd:f4:86:2b:e3:51:f2:5c:e6:c7:d7:88:06:13:25:23:
72:e9:3c:bd:d8:28:8f:6d:07:51:d5:e2:c5:d6:11:d8:e5:4f:
7e:89:95:a3:4c:af:d2:6a:69:23:ea:6d:89:dc:fe:36:ba:c0:
80:35:63:9b:87:1a:46:02:e3:f6:af:ff:a1:16:e7:73:60:71:
27:14:a7:c4:38:af:9e:b5:b0:56:fa:39:0e:43:1a:d2:86:bc:
ed:3b:5b:06:8e:54:4f:bd:cc:af:23:6b:0d:7c:09:e2:3c:c3:
c1:95:77:b9:79:69:d2:c8:e3:87:66:e5:ef:9b:85:de:37:22:
c8:5d:74:63:91:73:4a:25:6f:35:8e:c5:bb:aa:28:d4:f4:b1:
1b:2e:e2:cb:65:d6:93:5e:2e:25:93:85:f2:3b:e0:a2:ea:96:
db:55:ac:43:f3:9e:5c:36:2f:95:26:5e:2b:85:1d:1d:c4:c8:
97:53:d6:b1:36:e7:d4:61:44:99:79:b8:93:1b:44:8e:18:d9:
e7:bf:9b:6c
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICFlYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MkFFRDQxMTAvBgNVBAUTKDY2RjBDMURCQ0RGMUFCQzM0RUQxMUI0NkE5MEFFMzIw
MTgwMkE5NUMwHhcNMjIxMjAxMDMyMzU1WhcNMjMxMDMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02Mzg4MWU0YS02ZWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAslVm9wr09GnVrY4M9j1taWZwCLI5BiWJKAYayyy2eW9LD5yaiyCNpsjX70rT
/OCW/8iMXkbZ/ovz367rMazkqcewawW72tbNaCFZckALJD66Kyq31Ns3w9L2W7/E
1MOQq2V5/gkODNHEmd8yTPPZxDNibwv5hsRqziQ3vo3+pHCzOvbOazT1cfpRpCJf
6EZb/sfv0gkjpN/MBrjcb4yLrdjwU5WKX0KQV5xrok4ffHeUb16oRAemJ5MGA0eC
gDy0tIk7xxuuO0nOEfZjvq8UVra0F8WF+bv2W0B7wXPrSpitCb+Gorkg84lt/EVP
t++Qxd4i2A5zJA/y0TabEJ9fOQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFF071Oc+
zwuqPGdvCwHGzFCNYSVQMB8GA1UdIwQYMBaAFGbwwdvN8avDTtEbRqkK4yAYAqlc
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQUVENC9CRUM5QUM4MkIw
QkQxMUU3OTJBMkJGMzBDNEY5QUUwMi9adkRCMjgzeHE4Tk8wUnRHcVFyaklCZ0Nx
VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1p2REIyODN4cThOTzBSdEdxUXJqSUJnQ3FWdy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
MkFFRDQvQkVDOUFDODJCMEJEMTFFNzkyQTJCRjMwQzRGOUFFMDIvOTVBNDU2NEM3
MTI3MTFFRDkzNDlGODE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E
HzAdMAwEAgABMAYDBAK0XuwwDQQCAAIwBwMFACQB6IAwDQYJKoZIhvcNAQELBQAD
ggEBAH6NdWaucQTpPzNubctXucS6GaTedPuc+H+Th0CVU5OEjYXdVT7qArHR7k16
MtFe/I+9O37bmYil3fSGK+NR8lzmx9eIBhMlI3LpPL3YKI9tB1HV4sXWEdjlT36J
laNMr9JqaSPqbYnc/ja6wIA1Y5uHGkYC4/av/6EW53NgcScUp8Q4r561sFb6OQ5D
GtKGvO07WwaOVE+9zK8jaw18CeI8w8GVd7l5adLI44dm5e+bhd43IshddGORc0ol
bzWOxbuqKNT0sRsu4stl1pNeLiWThfI74KLqlttVrEPznlw2L5UmXiuFHR3EyJdT
1rE259RhRJl5uJMbRI4Y2ee/m2w=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:50:57 2024 by rpki-client on console-fra.rpki-client.org