Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/A6AE73781CFA11EC8EC24F7DC4F9AE02.roa
File: A6AE73781CFA11EC8EC24F7DC4F9AE02.roa (raw, json)
Hash identifier: Etj169HylsCOo9Jxd5yki6ZxlE0Jis7b3JiutTp0Y+U=
Subject key identifier: 45:43:11:04:58:CA:2E:5E:2A:A0:E2:F1:1C:89:FB:96:4B:A6:08:A1
Certificate issuer: /CN=A91402DC/serialNumber=C2B9F5F3C68C576727239B92A93B36297D1B1653
Certificate serial: 1057
Authority key identifier: C2:B9:F5:F3:C6:8C:57:67:27:23:9B:92:A9:3B:36:29:7D:1B:16:53
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wrn188aMV2cnI5uSqTs2KX0bFlM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/A6AE73781CFA11EC8EC24F7DC4F9AE02.roa
Signing time: Tue 16 Aug 2022 06:36:31 +0000
ROA not before: Tue 16 Aug 2022 06:36:31 +0000
ROA not after: Sat 30 Sep 2023 00:00:00 +0000
asID: 138345
IP address blocks: 113.10.64.0/18 maxlen: 24
117.20.128.0/18 maxlen: 24
122.11.212.0/24 maxlen: 24
122.11.213.0/24 maxlen: 24
122.11.214.0/24 maxlen: 24
122.11.215.0/24 maxlen: 24
171.0.0.0/15 maxlen: 15
171.0.0.0/16 maxlen: 24
171.1.0.0/16 maxlen: 24
171.207.0.0/16 maxlen: 24
2406:3000:5a::/48 maxlen: 56
2406:3000:5b::/48 maxlen: 56
2406:3000:5c::/48 maxlen: 56
2406:3000:5d::/48 maxlen: 56
2406:3002:40::/48 maxlen: 56
2406:3002:50::/48 maxlen: 56
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4183 (0x1057)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91402DC/serialNumber=C2B9F5F3C68C576727239B92A93B36297D1B1653
Validity
Not Before: Aug 16 06:36:31 2022 GMT
Not After : Sep 30 00:00:00 2023 GMT
Subject: CN=62fb3aef-8f62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f9:4e:c3:88:01:15:a8:35:1c:71:e2:1e:fe:
e5:a0:76:dc:4e:c9:57:41:43:d7:fe:df:31:d4:10:
32:8d:82:35:79:94:1a:dc:19:ab:ae:08:af:6c:cc:
a3:53:9b:d4:34:c1:d4:f9:67:5c:06:dd:f3:a4:eb:
9b:1d:83:4f:ff:5b:10:c7:35:96:ad:08:10:9f:e5:
89:54:07:01:c6:ed:09:0d:2f:a4:3d:a0:67:2d:d5:
4d:30:74:91:ab:ab:a5:82:d0:1c:34:85:3f:6e:ea:
a2:47:40:bb:1d:3f:c2:49:d0:13:fc:7a:cd:61:3c:
20:5e:9e:c8:f9:d9:36:51:8d:9b:59:62:1d:ce:24:
7d:1f:3e:98:4e:c2:01:2a:04:cc:c6:8f:eb:8f:1e:
24:3a:11:70:1b:8f:5b:86:da:1f:ec:dc:62:a6:7f:
80:aa:98:20:be:03:53:d7:44:a0:59:09:4e:f6:71:
c8:d2:8c:80:b0:a2:59:88:c6:d4:00:8f:45:a3:b3:
60:19:ef:00:0e:8c:40:50:3d:52:75:36:34:6f:b9:
a9:ef:42:c6:b7:ba:60:9b:88:54:be:e3:89:0e:a8:
52:de:d9:05:47:af:e0:7d:f4:91:01:bb:45:73:f8:
f7:6d:b4:55:90:fb:a7:5e:33:ac:4d:0d:17:48:b2:
7c:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:43:11:04:58:CA:2E:5E:2A:A0:E2:F1:1C:89:FB:96:4B:A6:08:A1
X509v3 Authority Key Identifier:
keyid:C2:B9:F5:F3:C6:8C:57:67:27:23:9B:92:A9:3B:36:29:7D:1B:16:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/wrn188aMV2cnI5uSqTs2KX0bFlM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wrn188aMV2cnI5uSqTs2KX0bFlM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/A6AE73781CFA11EC8EC24F7DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
113.10.64.0/18
117.20.128.0/18
122.11.212.0/22
171.0.0.0/15
171.207.0.0/16
IPv6:
2406:3000:5a::-2406:3000:5d:ffff:ffff:ffff:ffff:ffff
2406:3002:40::/48
2406:3002:50::/48
Signature Algorithm: sha256WithRSAEncryption
75:d2:72:2e:4e:74:b8:14:da:6f:3a:da:1b:6f:ab:01:e9:f6:
8a:b1:3e:75:aa:d7:38:13:37:28:f0:f9:2e:57:91:85:58:77:
79:27:d2:ad:6e:9b:04:1c:0c:bb:36:f8:0c:6e:68:67:93:3b:
5e:98:67:cf:b1:7d:ba:9d:19:2b:86:4b:51:94:07:1b:e4:75:
36:4e:24:a9:7f:72:cf:14:84:99:10:19:22:d4:8d:ab:27:97:
48:80:55:bb:5c:62:ad:e0:4e:67:33:df:f5:df:7d:69:3b:1b:
ae:d7:20:b0:7f:54:fb:2b:7d:1e:36:d6:a5:90:3c:2b:7f:76:
1f:49:af:32:61:bc:74:15:03:2e:cb:86:66:59:d6:e8:7b:3d:
a0:ce:a8:7b:83:f9:0e:0d:c7:bb:04:eb:f5:73:20:34:14:41:
d7:f3:b7:74:97:8f:58:46:a8:a0:ec:40:3f:84:41:32:a0:6a:
55:9d:f6:8e:11:b2:6c:07:81:bb:42:14:b5:f4:24:a7:14:46:
d7:3f:4a:95:1f:f8:69:2e:1d:b8:ef:12:69:2b:3a:c9:c1:65:
18:fe:55:a2:16:1e:e5:81:97:72:cc:fc:b5:ae:7c:b9:e4:1a:
1e:3b:28:a3:db:5b:77:a8:a5:35:e6:43:75:23:05:08:a8:1c:
7b:f2:e6:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:03 2024 by rpki-client on console-fra.rpki-client.org