Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/2D08D492E6E311ECBB46EC4AC4F9AE02.roa
File: 2D08D492E6E311ECBB46EC4AC4F9AE02.roa (raw, json)
Hash identifier: zA/NO0VWBtvIsfPzgMthzRM9s51Y5EZ4F6EmzUu2fVg=
Subject key identifier: 3D:91:71:92:82:4B:58:2C:74:AB:EF:5F:DF:DE:BE:60:1A:2B:DA:54
Certificate issuer: /CN=A914254C/serialNumber=7B3F60D9B1A28002A07875CAB58A21457073E17F
Certificate serial: 143E
Authority key identifier: 7B:3F:60:D9:B1:A2:80:02:A0:78:75:CA:B5:8A:21:45:70:73:E1:7F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ez9g2bGigAKgeHXKtYohRXBz4X8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/2D08D492E6E311ECBB46EC4AC4F9AE02.roa
Signing time: Fri 04 Nov 2022 03:44:03 +0000
ROA not before: Fri 04 Nov 2022 03:44:03 +0000
ROA not after: Sun 30 Jul 2023 00:00:00 +0000
asID: 15830
IP address blocks: 101.97.68.0/22 maxlen: 22
2403:b101::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5182 (0x143e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914254C/serialNumber=7B3F60D9B1A28002A07875CAB58A21457073E17F
Validity
Not Before: Nov 4 03:44:03 2022 GMT
Not After : Jul 30 00:00:00 2023 GMT
Subject: CN=63648a82-1310
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:5c:39:d1:c3:eb:60:d1:03:9e:02:3c:a4:ae:
e6:46:d1:95:10:29:4d:b1:3c:22:a4:03:e5:17:c8:
0f:17:d6:9e:53:4c:b1:54:c0:58:fd:ad:65:7d:95:
a5:8f:31:a9:d9:e6:4a:f3:64:b8:b3:f8:67:a0:e8:
51:a1:12:1a:58:a5:69:0a:39:1e:48:87:b2:e0:63:
3d:ad:ef:67:4a:53:09:eb:44:6f:94:16:6e:93:65:
e8:b6:67:eb:bc:00:d6:a7:8a:5d:f4:91:ba:51:a0:
73:5d:bd:02:f8:27:fa:59:73:1c:e1:4a:09:27:66:
75:e8:4b:d0:11:f0:2e:6c:89:11:7a:bd:a8:ce:04:
3a:13:9d:1b:41:9b:3b:f2:6b:29:7f:0b:1c:15:31:
82:6e:6d:47:6a:b1:3a:09:17:ee:4a:da:26:f0:4e:
89:1f:bf:43:5e:f4:dc:7d:cb:24:b3:23:e0:c2:1a:
3a:34:cf:0a:a7:6d:b4:6c:86:55:7c:9a:80:5c:13:
19:48:fb:f7:0b:22:2a:f9:c4:1b:cd:99:12:28:68:
fa:38:d3:fa:54:fc:47:a9:a6:f2:b1:e3:13:51:e7:
41:de:5d:e4:a3:c3:a6:8e:94:10:5b:27:c4:0c:88:
3e:ee:14:fd:41:f2:c5:72:ec:64:43:93:28:9a:e2:
2a:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:91:71:92:82:4B:58:2C:74:AB:EF:5F:DF:DE:BE:60:1A:2B:DA:54
X509v3 Authority Key Identifier:
keyid:7B:3F:60:D9:B1:A2:80:02:A0:78:75:CA:B5:8A:21:45:70:73:E1:7F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/ez9g2bGigAKgeHXKtYohRXBz4X8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ez9g2bGigAKgeHXKtYohRXBz4X8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/2D08D492E6E311ECBB46EC4AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
101.97.68.0/22
IPv6:
2403:b101::/40
Signature Algorithm: sha256WithRSAEncryption
ce:14:58:ff:b0:0f:45:7c:a8:01:94:7a:3f:42:c8:f1:71:e4:
c7:92:ad:99:6e:29:07:65:25:e1:c4:12:33:de:dd:c1:a5:c0:
0f:4d:09:e8:0e:b1:a0:e3:42:58:6a:a0:1a:a7:62:23:c2:f3:
04:36:90:9a:d8:b1:1d:93:da:80:9f:9f:4b:c3:f0:ed:05:a4:
d1:e2:35:14:25:04:bf:e9:f2:f6:87:30:36:d8:ed:95:04:ab:
f7:95:e3:0d:2a:b0:ec:86:68:70:76:02:14:ac:83:62:1b:6a:
44:e4:5d:31:18:82:1f:4f:9f:d5:08:12:96:c0:01:26:ff:a6:
d8:ef:53:1b:5a:59:f3:c3:da:4a:d9:f6:dc:cf:70:71:1d:3f:
85:3d:18:d4:61:b8:a9:05:31:2a:dd:a0:0c:a4:d7:3b:f2:2b:
ad:7c:cc:76:cd:54:1b:92:5b:f0:62:97:14:85:db:86:58:a1:
d5:1c:61:1d:8b:fd:0e:11:61:19:be:b2:86:27:14:1b:ba:d5:
79:87:09:76:24:88:af:52:82:27:49:4c:1e:e5:a7:1b:7c:53:
8b:e1:ef:81:d8:5e:03:a4:68:a3:48:1c:bd:3c:a8:c5:6c:d1:
b9:29:91:7a:25:49:7d:42:f0:0f:da:23:a3:a2:f7:d5:a2:a4:
16:75:db:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:03 2024 by rpki-client on console-fra.rpki-client.org