Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A914E93F/2ED775DAA36C11E891405926C4F9AE02/4403C22AFFE311EBB4FA4965C4F9AE02.roa
File: 4403C22AFFE311EBB4FA4965C4F9AE02.roa (raw, json)
Hash identifier: pnxMcS2J1RP9DqA6c6rrmfukDNTWwUQ5tmTbMBP8bDs=
Subject key identifier: 6F:2F:E0:E3:BD:AF:5B:EC:1E:C7:E1:CB:A3:47:FA:4A:D9:0E:AB:92
Certificate issuer: /CN=A914E93F/serialNumber=B2F8AB00D57464DD5D05A45A47C420F5F896B8FC
Certificate serial: 0E5A
Authority key identifier: B2:F8:AB:00:D5:74:64:DD:5D:05:A4:5A:47:C4:20:F5:F8:96:B8:FC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/svirANV0ZN1dBaRaR8Qg9fiWuPw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914E93F/2ED775DAA36C11E891405926C4F9AE02/4403C22AFFE311EBB4FA4965C4F9AE02.roa
Signing time: Wed 18 Aug 2021 05:15:13 +0000
ROA not before: Wed 18 Aug 2021 05:15:13 +0000
ROA not after: Wed 31 Aug 2022 00:00:00 +0000
asID: 133551
IP address blocks: 14.192.49.0/24 maxlen: 24
14.192.51.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3674 (0xe5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914E93F/serialNumber=B2F8AB00D57464DD5D05A45A47C420F5F896B8FC
Validity
Not Before: Aug 18 05:15:13 2021 GMT
Not After : Aug 31 00:00:00 2022 GMT
Subject: CN=611c9761-2b3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:3a:3d:42:10:06:14:fe:b5:3e:88:5b:6e:b3:
a1:99:2f:ae:6e:e7:f0:2a:d0:45:a2:6d:e4:87:bc:
b3:55:29:44:86:37:4e:1f:76:c4:77:b5:41:7f:bb:
70:e9:7e:14:7f:f5:60:b0:cd:fa:ca:85:74:7f:e3:
de:56:7d:8c:c8:26:87:80:0b:5e:0a:ca:82:d4:77:
83:00:8c:09:e2:54:b8:63:65:0d:49:f4:0e:01:8d:
5c:43:28:f4:0a:e1:79:d7:4a:a5:b4:50:9e:e2:c6:
0f:94:4b:9f:f6:39:7e:51:9e:2a:c6:3e:52:57:d1:
da:fc:b9:b0:09:bf:9a:4e:43:58:b0:05:b0:e1:a1:
c7:32:85:a8:63:7c:b3:42:ba:b9:b3:7f:1f:39:39:
d5:c2:23:ac:c8:7e:26:45:84:12:04:97:21:d7:88:
c1:2a:28:30:66:0c:2b:9c:09:f7:50:56:30:e6:cb:
9d:1d:cc:8f:d2:1c:40:f9:c9:91:bb:7b:5f:52:15:
37:61:36:98:9d:bd:de:fa:9e:17:3c:1a:89:86:0b:
5c:1a:05:2a:c0:e3:20:3c:6c:d2:56:39:7b:9a:f6:
01:34:ea:44:cd:c0:5a:50:8b:ca:0f:86:a3:12:e6:
a0:9d:ad:25:0e:76:47:d7:92:3c:b1:d5:f0:ba:32:
5c:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:2F:E0:E3:BD:AF:5B:EC:1E:C7:E1:CB:A3:47:FA:4A:D9:0E:AB:92
X509v3 Authority Key Identifier:
keyid:B2:F8:AB:00:D5:74:64:DD:5D:05:A4:5A:47:C4:20:F5:F8:96:B8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914E93F/2ED775DAA36C11E891405926C4F9AE02/svirANV0ZN1dBaRaR8Qg9fiWuPw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/svirANV0ZN1dBaRaR8Qg9fiWuPw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E93F/2ED775DAA36C11E891405926C4F9AE02/4403C22AFFE311EBB4FA4965C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
14.192.49.0/24
14.192.51.0/24
Signature Algorithm: sha256WithRSAEncryption
81:2a:c8:69:f1:7c:f2:8e:fc:ac:de:46:8d:0e:cd:3d:c4:82:
06:8c:05:7e:23:cf:6f:43:1a:2e:40:45:7a:e2:f5:03:ce:33:
37:e4:b5:0f:d6:bd:8d:e2:56:5e:4d:49:37:01:c3:bf:f1:ef:
12:6f:df:64:47:a8:a5:d9:0e:32:99:0b:65:7c:a5:0b:52:f9:
ce:b8:f9:17:0f:b8:b7:de:cf:b2:6e:5d:6d:c5:2b:b5:e7:be:
2e:65:da:d2:4a:65:eb:3e:8d:b7:51:f2:d9:b8:e3:08:df:a3:
d3:c7:a0:bb:0a:3c:f3:b4:8f:70:a8:6e:5f:6f:e6:15:67:fd:
a9:3a:f7:bd:23:23:ec:05:1a:ec:ef:73:12:fb:99:dc:f0:34:
ac:12:a4:27:68:1f:ba:ae:01:13:1c:74:68:87:2c:05:70:ff:
a1:9f:a2:bb:1b:2a:bf:6b:32:45:c1:02:6c:fe:7f:d1:a1:d0:
cd:ec:97:bd:d1:d3:65:c9:d4:0e:b7:df:24:7a:00:a5:b1:e6:
0b:f6:6e:08:43:2c:3f:18:15:32:09:8a:b3:36:d8:3e:43:9b:
84:33:0f:c0:ca:1d:db:62:76:b3:eb:9a:8b:24:e5:eb:ea:5f:
16:88:07:bd:75:df:70:8d:f9:99:99:06:2a:85:86:16:08:40:
a5:6e:b3:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:05 2024 by rpki-client on console-fra.rpki-client.org