Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9151F3B/4F8B91B8B9B611EBB411E92EC4F9AE02/3748FE6E117711ED8D15054FC4F9AE02.roa
File: 3748FE6E117711ED8D15054FC4F9AE02.roa (raw, json)
Hash identifier: 4RdeA2ufrAwvqOmKAT1WeXCkC+snHZhjQj6xBdH0kKU=
Subject key identifier: 57:EF:27:20:1D:E8:43:6E:54:EF:9A:2F:1D:58:75:93:BE:EF:CE:09
Certificate issuer: /CN=A9151F3B/serialNumber=BE92ABA4A0144319EE6D45AB9090D88D5DAF37FE
Certificate serial: 044A
Authority key identifier: BE:92:AB:A4:A0:14:43:19:EE:6D:45:AB:90:90:D8:8D:5D:AF:37:FE
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vpKrpKAUQxnubUWrkJDYjV2vN_4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9151F3B/4F8B91B8B9B611EBB411E92EC4F9AE02/3748FE6E117711ED8D15054FC4F9AE02.roa
Signing time: Tue 21 Feb 2023 02:11:54 +0000
ROA not before: Tue 21 Feb 2023 02:11:54 +0000
ROA not after: Wed 01 May 2024 00:00:00 +0000
asID: 7604
IP address blocks: 113.197.64.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1098 (0x44a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9151F3B/serialNumber=BE92ABA4A0144319EE6D45AB9090D88D5DAF37FE
Validity
Not Before: Feb 21 02:11:54 2023 GMT
Not After : May 1 00:00:00 2024 GMT
Subject: CN=63f4286a-3af8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:f6:b7:c2:c2:dc:7b:c4:8b:2a:09:2f:35:50:
7a:16:da:32:37:f6:74:91:8a:00:48:1c:93:e4:18:
ef:3f:78:e3:5a:4a:ad:e3:ca:1f:9d:b5:b3:53:2d:
8d:af:15:4b:c6:5f:89:db:32:45:10:45:0e:8d:45:
ae:9e:ce:56:63:fb:ec:e6:5e:de:c2:b8:9a:e1:ff:
a7:e3:17:4a:d6:3f:c9:30:ed:0c:fc:89:59:16:d6:
eb:16:30:55:cb:68:84:00:35:c6:47:1d:36:5d:dd:
a0:7f:41:9f:6f:29:1c:60:3d:98:ef:6d:d9:97:2f:
a1:70:8a:75:9c:f0:4b:04:76:bf:fc:33:14:32:5f:
36:4c:78:c7:c9:58:56:49:5e:ac:e4:d6:aa:f2:a2:
d2:3e:ba:df:48:14:b4:19:07:52:8e:83:5c:11:14:
ee:ac:11:7f:0a:34:c0:fb:54:5b:d3:c5:f2:37:5f:
78:66:23:a9:cd:a6:f6:7e:61:48:ce:6e:80:f7:26:
77:c2:56:ef:9f:9b:72:68:d1:0d:45:59:7c:32:d1:
e5:69:f2:d9:9e:21:5f:2b:a2:71:92:3d:3b:99:03:
91:a6:e8:e9:4d:fc:5f:41:20:c4:23:1b:e8:3f:d3:
24:ff:49:68:87:aa:c1:2a:2e:64:f9:73:8e:28:60:
38:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:EF:27:20:1D:E8:43:6E:54:EF:9A:2F:1D:58:75:93:BE:EF:CE:09
X509v3 Authority Key Identifier:
keyid:BE:92:AB:A4:A0:14:43:19:EE:6D:45:AB:90:90:D8:8D:5D:AF:37:FE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9151F3B/4F8B91B8B9B611EBB411E92EC4F9AE02/vpKrpKAUQxnubUWrkJDYjV2vN_4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vpKrpKAUQxnubUWrkJDYjV2vN_4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151F3B/4F8B91B8B9B611EBB411E92EC4F9AE02/3748FE6E117711ED8D15054FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
113.197.64.0/24
Signature Algorithm: sha256WithRSAEncryption
91:dc:f4:93:a2:57:1d:3f:97:8d:27:7c:b6:1b:02:99:3d:a6:
a4:d2:9f:d2:a4:d2:12:20:f6:72:8b:0b:bf:a7:3c:b3:9c:ac:
19:97:f9:f7:46:44:13:8f:92:60:1b:7a:a3:77:f8:74:be:31:
c9:c9:0d:24:d7:22:f5:2d:29:d6:20:30:9b:32:2a:81:2e:f8:
c5:c8:ac:47:37:68:0b:3e:f3:e7:be:a0:a0:85:a2:87:4a:33:
89:a5:7a:06:06:64:03:4b:44:30:df:71:4f:d3:df:10:96:e8:
c0:cb:26:f8:f0:13:2d:7a:aa:c8:6f:ac:41:5a:bc:2b:65:b6:
88:bd:a0:38:ab:77:53:2c:69:37:5b:8a:8a:23:d9:56:a6:5d:
5f:d5:85:b4:db:8e:45:4d:5a:31:82:09:d8:3f:c3:f8:99:73:
d4:9b:f1:a2:07:3a:8d:ac:9d:b8:c1:39:03:0d:7f:50:6b:ac:
c3:d7:e3:e6:c1:1e:04:30:f4:fd:48:81:86:dd:09:7d:9a:23:
ad:34:d6:16:da:93:85:e6:ba:e7:47:e3:1e:d4:e8:d9:a9:cf:
88:d2:30:ef:b6:c4:8b:6f:3f:c1:03:12:a2:dd:e1:fc:89:64:
43:d3:b1:61:ac:77:9d:23:bc:44:9f:a2:12:3b:7b:72:03:ce:
8a:6b:74:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-ams.rpki-client.org