Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/915FA040FC2A11EC98B19157C4F9AE02.roa
File: 915FA040FC2A11EC98B19157C4F9AE02.roa (raw, json)
Hash identifier: lXYewMdUfyVwUr+LcI4EmEfBp4D554yEaAT9bsv1Vlg=
Subject key identifier: E5:E4:61:58:41:5A:F0:DC:90:39:C2:2F:72:D7:D3:5B:A3:7B:F2:F0
Certificate issuer: /CN=A91510AD/serialNumber=E1E6908A16EC813DAA0BD64797AE9DBDEB092257
Certificate serial: 3290
Authority key identifier: E1:E6:90:8A:16:EC:81:3D:AA:0B:D6:47:97:AE:9D:BD:EB:09:22:57
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/915FA040FC2A11EC98B19157C4F9AE02.roa
Signing time: Tue 05 Jul 2022 06:20:30 +0000
ROA not before: Tue 05 Jul 2022 06:20:30 +0000
ROA not after: Fri 30 Dec 2022 00:00:00 +0000
asID: 7029
IP address blocks: 203.76.152.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12944 (0x3290)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91510AD/serialNumber=E1E6908A16EC813DAA0BD64797AE9DBDEB092257
Validity
Not Before: Jul 5 06:20:30 2022 GMT
Not After : Dec 30 00:00:00 2022 GMT
Subject: CN=62c3d82e-2b9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:80:93:b8:87:d0:b4:5b:47:68:fa:8b:e5:46:
93:7f:25:9c:0d:15:10:7e:74:51:eb:7b:3f:55:03:
d7:59:22:63:7e:fa:e8:62:19:03:32:38:86:51:db:
a2:0d:fd:fd:ee:4f:4d:c0:15:4a:cc:a3:6c:ee:d8:
21:25:7e:78:eb:61:47:6d:ab:72:f9:a3:9c:fc:1a:
42:5c:49:e7:ee:63:2e:b7:e3:41:70:9f:01:0d:d2:
57:0b:f1:28:9c:cd:69:92:80:f5:f3:b2:c0:23:71:
7a:49:31:8b:80:13:c2:a6:73:f4:01:fc:66:d3:4a:
ee:56:71:14:97:12:f2:6c:a6:59:7d:6e:33:37:37:
68:91:c6:61:c8:8e:c7:7e:2e:1c:8a:a0:e6:35:d0:
e5:09:0a:6a:7e:16:60:39:9c:28:c2:21:08:08:6e:
dc:72:47:2c:29:7e:76:a9:9b:11:0a:59:5d:70:04:
a7:4a:a5:7a:2f:30:c5:18:7f:b2:20:0f:32:e3:26:
3d:57:2f:3f:c1:b5:4e:69:ad:90:f2:9b:61:ce:1c:
e4:a3:b6:22:e7:22:22:b6:b6:ea:2f:63:74:d7:40:
b9:8a:d9:c8:c5:51:97:69:43:72:d6:fd:fe:53:5a:
21:2f:2a:ab:20:fd:b0:e3:16:cc:25:9b:82:47:8f:
a4:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:E4:61:58:41:5A:F0:DC:90:39:C2:2F:72:D7:D3:5B:A3:7B:F2:F0
X509v3 Authority Key Identifier:
keyid:E1:E6:90:8A:16:EC:81:3D:AA:0B:D6:47:97:AE:9D:BD:EB:09:22:57
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/915FA040FC2A11EC98B19157C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.76.152.0/21
Signature Algorithm: sha256WithRSAEncryption
40:99:5d:1c:e1:dc:65:46:1d:d4:6f:13:ec:ef:a0:b5:a8:d1:
ba:98:7c:22:3a:36:10:60:9b:05:35:a1:da:f2:bd:79:72:15:
5c:b8:e5:5d:15:73:4f:83:81:bb:44:b4:63:a4:e3:e4:e1:99:
97:b4:8d:8f:b7:bc:be:e4:ae:e7:1d:45:ee:7b:66:4e:58:dd:
37:e2:70:34:e6:0b:89:29:83:4c:9b:2e:59:21:1d:7c:68:c4:
51:f8:5a:bf:dd:d9:eb:a5:fd:fc:95:34:fa:62:39:7e:91:68:
34:65:e7:0b:6f:18:cc:bb:ee:f6:e9:a5:68:c7:98:a7:3b:9a:
e8:bc:f8:10:72:3c:f8:5a:28:30:ed:fe:be:96:69:c1:14:1e:
d7:5b:a2:c1:73:f2:ce:81:27:e1:4e:26:38:95:15:b3:34:aa:
9d:93:6a:64:70:78:d0:f9:d3:a2:5e:66:0b:50:0e:89:83:b0:
25:92:58:80:8e:1f:c5:9d:04:8e:f7:ad:65:28:d1:bd:38:03:
a3:3b:f5:cf:3c:f6:5a:5e:12:0e:0e:ba:7c:e0:92:1c:7b:61:
e3:11:56:d9:57:c3:7d:a0:0a:7b:00:d4:73:1e:62:4c:71:5b:
9c:15:ae:97:e5:47:2d:91:71:57:3b:de:c5:3e:c2:1e:29:2b:
a3:d4:59:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:06 2024 by rpki-client on console-fra.rpki-client.org