Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/2B113A32459B11ED8D3D6D10C4F9AE02.roa
File: 2B113A32459B11ED8D3D6D10C4F9AE02.roa (raw, json)
Hash identifier: 53wreLipA6r5Ku+0bnI1FaRTjsCpvgLGeV5/+VzB0Y0=
Subject key identifier: EE:B4:DB:95:8D:43:7D:47:AF:EA:74:90:00:66:C0:80:A2:FC:B3:E6
Certificate issuer: /CN=A91510AD/serialNumber=E1E6908A16EC813DAA0BD64797AE9DBDEB092257
Certificate serial: 336E
Authority key identifier: E1:E6:90:8A:16:EC:81:3D:AA:0B:D6:47:97:AE:9D:BD:EB:09:22:57
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/2B113A32459B11ED8D3D6D10C4F9AE02.roa
Signing time: Thu 06 Oct 2022 17:20:26 +0000
ROA not before: Thu 06 Oct 2022 17:20:26 +0000
ROA not after: Sat 30 Dec 2023 00:00:00 +0000
asID: 210334
IP address blocks: 175.29.108.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13166 (0x336e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91510AD/serialNumber=E1E6908A16EC813DAA0BD64797AE9DBDEB092257
Validity
Not Before: Oct 6 17:20:26 2022 GMT
Not After : Dec 30 00:00:00 2023 GMT
Subject: CN=633f0e5a-df48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:21:05:31:08:8d:ff:8b:3e:3e:24:df:d4:f6:
e1:4f:7c:13:41:d7:b0:2d:a7:b6:d6:26:6c:90:78:
93:76:eb:b1:4c:7c:6a:53:dd:a0:d9:72:26:59:4e:
62:29:2c:da:fc:15:2d:e4:fa:c7:8d:ea:78:21:e2:
1e:f4:8b:81:6e:63:98:bc:b5:c2:a2:ce:61:51:83:
b4:f5:65:60:3f:af:ef:2b:85:ae:52:bd:86:b9:72:
25:da:2a:9f:83:c7:ad:c6:14:e0:ea:1e:e2:f9:27:
f5:67:88:4c:c7:01:0a:b4:b6:8c:b6:d9:37:59:f2:
6f:fc:1e:8e:71:47:ca:ba:6c:8e:87:f6:3c:21:03:
58:3e:dd:87:38:26:91:f9:47:e3:66:a7:39:5b:92:
6a:2b:f2:9a:13:01:db:fc:0a:f7:3a:03:3d:fb:9a:
b3:ba:f5:7f:71:6a:4b:46:58:4b:2a:d5:6f:50:84:
3b:ce:bc:c7:fa:68:cf:44:c3:00:73:e8:48:e7:63:
61:d7:4d:c2:a1:2e:e3:d2:7a:71:ed:46:c0:8f:cc:
62:ea:45:21:26:fc:6b:e3:6f:7f:6c:d6:a6:d5:ab:
1d:54:1b:f1:92:ea:8f:97:41:fb:fd:ad:c1:95:92:
d3:99:b9:f3:a9:94:66:b9:76:f7:1c:58:e9:00:3f:
b8:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:B4:DB:95:8D:43:7D:47:AF:EA:74:90:00:66:C0:80:A2:FC:B3:E6
X509v3 Authority Key Identifier:
keyid:E1:E6:90:8A:16:EC:81:3D:AA:0B:D6:47:97:AE:9D:BD:EB:09:22:57
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/2B113A32459B11ED8D3D6D10C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
175.29.108.0/22
Signature Algorithm: sha256WithRSAEncryption
87:6c:14:92:d3:ab:10:be:91:f6:c5:d0:f5:20:b4:19:f0:fc:
ca:e8:08:bc:5d:60:02:23:7d:d3:49:bb:8a:cc:9b:e1:e6:6e:
4f:3f:69:59:8e:85:83:99:9c:7b:08:fb:52:77:ac:d8:e3:d7:
38:4f:63:ba:7c:ff:a8:60:ae:23:e3:89:00:b8:ac:32:f6:29:
46:c2:c0:44:cd:ae:da:fe:e8:44:e0:48:11:ad:1f:14:5c:85:
c6:2f:1c:d0:1e:b9:01:ca:7a:d2:05:cc:56:07:57:b4:f8:07:
e4:3d:db:b3:7b:67:01:ef:1e:45:9b:fa:08:9f:86:46:77:60:
69:27:94:a3:09:97:af:9d:15:96:24:32:22:0a:60:87:95:da:
0a:1f:42:e4:a7:20:93:62:01:f1:b1:ec:de:d9:7a:6a:27:f3:
ea:65:ea:05:b0:64:67:0e:35:45:9b:28:9e:d3:0c:aa:52:a5:
94:57:62:c8:71:cd:f5:90:dc:8c:df:22:26:d9:f1:61:ec:81:
19:6c:73:ef:83:9a:90:58:29:ce:bb:cf:12:90:15:bc:b2:18:
60:75:66:41:e7:df:72:70:c6:91:c3:90:18:c5:d0:ee:4f:01:
fb:a7:7a:e8:bf:c4:f2:26:5b:83:56:b3:0e:4d:b8:39:a9:90:
cb:5d:a1:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:06 2024 by rpki-client on console-fra.rpki-client.org