Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A914BCB6/2AB7CC5ACCF111EB91421958C4F9AE02/47DA05EAAFD711EC89F6E36DC4F9AE02.roa
File: 47DA05EAAFD711EC89F6E36DC4F9AE02.roa (raw, json)
Hash identifier: urVbb+9dffXXbMJdW/JaO9s7tlLClFneO2eTJY4lluk=
Subject key identifier: 75:E7:02:AA:CD:F8:A1:85:33:08:52:09:FE:02:C2:93:BC:19:27:87
Certificate issuer: /CN=A914BCB6/serialNumber=0110BB3AB50E3A0D4490C32103BBC4054DC6821E
Certificate serial: 024C
Authority key identifier: 01:10:BB:3A:B5:0E:3A:0D:44:90:C3:21:03:BB:C4:05:4D:C6:82:1E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ARC7OrUOOg1EkMMhA7vEBU3Ggh4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914BCB6/2AB7CC5ACCF111EB91421958C4F9AE02/47DA05EAAFD711EC89F6E36DC4F9AE02.roa
Signing time: Wed 30 Mar 2022 03:12:50 +0000
ROA not before: Wed 30 Mar 2022 03:12:50 +0000
ROA not after: Fri 30 Dec 2022 00:00:00 +0000
asID: 24184
IP address blocks: 203.82.2.0/23 maxlen: 23
2001:df0:7040::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 588 (0x24c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914BCB6/serialNumber=0110BB3AB50E3A0D4490C32103BBC4054DC6821E
Validity
Not Before: Mar 30 03:12:50 2022 GMT
Not After : Dec 30 00:00:00 2022 GMT
Subject: CN=6243cab2-4bcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:06:7d:44:0c:d8:df:c0:97:7c:5a:fb:d5:7a:
66:47:39:91:30:e3:f2:42:45:17:9e:b9:77:8d:99:
b1:dc:13:83:f1:b8:5c:26:18:25:a8:e3:da:7a:bb:
22:b9:e4:62:9e:c1:d4:b0:78:72:8d:04:a3:8a:a6:
ad:cc:64:3c:45:26:19:91:d1:f4:ed:60:47:fd:43:
a8:bd:67:82:d1:30:b3:e3:52:fb:bd:53:05:8c:c8:
d5:42:6e:fd:cb:b6:0a:05:e4:0a:1e:de:62:bd:85:
08:3a:3a:59:6c:e3:89:f2:37:82:ba:47:11:29:1b:
cd:27:74:47:64:8f:02:35:69:00:b9:cb:9b:82:d5:
4b:1c:db:ed:91:d6:23:cf:1b:9c:71:b0:53:02:79:
25:9f:4c:b2:c1:fd:34:a2:29:cf:91:41:86:51:80:
43:ba:68:84:5c:0b:9d:3b:ca:2a:fc:e6:79:ac:fa:
a9:51:58:a7:de:c1:17:4a:14:29:6c:eb:32:c1:54:
a5:7c:55:cf:5d:83:1e:da:20:cf:a2:b6:8b:d5:75:
16:18:38:d2:cc:62:b7:19:97:b4:69:d6:b1:3d:27:
f5:35:4b:04:a3:89:c1:56:f0:19:13:0a:70:4c:9f:
9b:13:96:03:0c:18:c8:71:52:5f:f9:12:dd:b4:3a:
26:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:E7:02:AA:CD:F8:A1:85:33:08:52:09:FE:02:C2:93:BC:19:27:87
X509v3 Authority Key Identifier:
keyid:01:10:BB:3A:B5:0E:3A:0D:44:90:C3:21:03:BB:C4:05:4D:C6:82:1E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914BCB6/2AB7CC5ACCF111EB91421958C4F9AE02/ARC7OrUOOg1EkMMhA7vEBU3Ggh4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ARC7OrUOOg1EkMMhA7vEBU3Ggh4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BCB6/2AB7CC5ACCF111EB91421958C4F9AE02/47DA05EAAFD711EC89F6E36DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.82.2.0/23
IPv6:
2001:df0:7040::/48
Signature Algorithm: sha256WithRSAEncryption
7f:83:7c:a6:bc:ae:52:04:29:6a:2f:ab:78:94:c9:2b:44:1d:
8a:ab:a7:17:b4:43:6b:8b:b2:f2:45:cb:cf:19:7e:a9:e7:12:
f8:81:8e:c4:ea:d2:86:ff:83:4f:54:7f:64:df:5f:c5:84:d9:
30:6c:bd:ef:6b:c8:db:47:13:b2:f4:1d:d8:8b:e3:21:92:97:
83:2d:05:26:90:dc:e8:22:ab:58:74:1d:dc:d8:cd:1e:9b:81:
3b:e2:59:fe:8f:02:3d:da:3f:55:30:54:27:ae:58:58:ac:9c:
d4:3a:67:1e:b4:6a:30:2a:2d:c3:a6:cf:5e:94:79:73:f8:a6:
65:b6:23:cc:44:47:12:53:d8:2e:5a:9b:ea:b1:f9:31:9b:30:
58:31:77:86:19:8d:04:36:2f:bb:46:b3:2c:15:81:ad:19:f3:
d4:e9:92:50:6c:4c:46:92:5e:90:3c:a0:bc:20:5d:4a:a7:71:
f1:1f:80:aa:3b:1b:c1:f8:20:86:df:37:ff:43:f7:bb:fc:74:
ea:0d:9d:34:8a:f7:e3:8f:55:1d:05:74:60:95:47:3f:06:9d:
66:15:c4:48:6c:0b:fb:53:58:bb:85:dc:7c:94:c9:e1:ac:8d:
ec:e0:14:dc:8e:fb:3a:7c:d6:8a:1c:d4:de:2b:72:c0:b3:d2:
f0:e3:c5:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:41 2023 by rpki-client on console-fra.rpki-client.org