Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/AB22090A700811EB9B47F22AC4F9AE02.roa
File: AB22090A700811EB9B47F22AC4F9AE02.roa (raw, json)
Hash identifier: tgQPMzTCTA0F57BJ+RtSmv8LsdyZKaEyopktXqpcp7o=
Subject key identifier: DE:59:22:DC:65:50:08:F9:03:30:F6:27:C6:05:A1:0D:69:4B:50:9E
Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C
Certificate serial: 33DC
Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/AB22090A700811EB9B47F22AC4F9AE02.roa
Signing time: Thu 21 Apr 2022 04:00:11 +0000
ROA not before: Thu 21 Apr 2022 04:00:11 +0000
ROA not after: Fri 30 Sep 2022 00:00:00 +0000
asID: 131162
IP address blocks: 58.97.60.0/24 maxlen: 24
61.91.231.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13276 (0x33dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C
Validity
Not Before: Apr 21 04:00:11 2022 GMT
Not After : Sep 30 00:00:00 2022 GMT
Subject: CN=6260d6cb-0621
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:db:b4:bc:51:08:e5:30:49:18:ba:94:c4:3b:
b1:68:3d:ea:a0:c2:fc:f9:6b:e3:46:2b:e1:86:07:
95:c8:6f:58:6b:d2:0b:76:ff:66:ca:dc:68:c3:49:
60:ce:2c:63:0d:22:52:c0:bd:9c:cb:de:4b:ef:ea:
d6:81:cf:ef:c4:41:37:c4:d6:ab:09:d0:27:81:85:
6a:36:34:1b:ef:98:e5:87:6e:46:31:78:87:bd:2a:
e6:d2:90:b3:9f:1c:de:f6:c2:1c:a7:71:2d:a9:ae:
0c:70:83:c0:cf:de:a6:de:8f:87:c1:41:74:0a:8e:
4f:7a:08:10:f9:a1:04:8e:83:27:de:94:e3:ae:34:
79:02:c0:d8:ae:2d:06:cd:9f:ab:b0:96:b3:55:10:
af:07:a5:49:63:84:e2:db:46:f0:79:4f:29:b0:b8:
bb:6d:cc:17:a2:02:60:ef:1a:0b:62:7e:b5:c3:e4:
b7:a8:ff:53:16:91:44:1d:68:d3:a5:9e:94:56:a5:
f3:76:7a:46:b1:90:c8:f4:f1:70:19:ac:e9:c1:a3:
c9:0d:d7:e0:26:6e:52:88:c5:80:a0:a8:b4:fb:2a:
df:bb:20:03:65:b4:ff:63:b8:7a:57:b1:38:69:a2:
bd:4a:b4:a2:5d:2d:1f:af:58:24:2c:77:da:37:c6:
d5:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:59:22:DC:65:50:08:F9:03:30:F6:27:C6:05:A1:0D:69:4B:50:9E
X509v3 Authority Key Identifier:
keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/AB22090A700811EB9B47F22AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
58.97.60.0/24
61.91.231.0/24
Signature Algorithm: sha256WithRSAEncryption
03:2a:cf:48:bf:a2:2c:6d:1e:c6:9e:d0:e7:67:2f:bb:fc:b1:
6b:cd:46:76:b9:56:19:37:72:27:2b:8e:b8:c5:9f:f6:b8:6e:
8a:1f:b6:63:70:67:48:cd:a2:d5:e7:20:96:0a:26:5d:04:24:
25:00:4a:0c:e9:c2:e8:67:c3:0a:99:9d:c7:63:3b:c4:20:c8:
40:4c:70:3d:fc:86:d4:6e:e2:08:c2:01:c8:71:78:89:36:44:
6e:c7:c4:a0:af:95:bf:55:b7:9b:b0:b4:24:9e:f2:39:a0:3d:
d2:e1:d5:4a:bc:29:e2:de:26:b2:de:aa:1e:61:c9:86:f1:f3:
ad:bd:c7:24:33:30:43:20:a6:e1:ba:5f:42:5e:7e:dd:50:6b:
ef:f6:37:6c:1a:21:86:b4:12:1e:f7:61:4a:75:fe:9f:34:40:
f3:0a:84:4f:33:59:72:57:ef:79:34:96:87:da:09:85:ea:cd:
da:d6:91:d6:25:a7:d3:38:fb:49:eb:13:05:e7:82:0e:37:d4:
2c:41:6f:d6:db:ba:88:38:7e:9d:55:92:aa:47:48:f5:57:84:
2f:56:ea:4b:b3:3e:47:65:c2:ad:85:40:e2:cc:51:76:44:1c:
f4:f1:76:e7:20:ce:56:91:72:d9:3b:a6:3a:f1:17:bb:15:89:
f2:ec:1b:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:54 2024 by rpki-client on console-ams.rpki-client.org