Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/E74B2942A10D11EDB6423F70C4F9AE02.roa
File: E74B2942A10D11EDB6423F70C4F9AE02.roa (raw, json)
Hash identifier: 8cBCuzqdPmlEPGeW8Q6mPcYmSoXlg0n2Imwp4eb4R6I=
Subject key identifier: AA:4F:32:2B:CB:8F:A6:71:C7:94:59:47:A5:66:F5:F3:31:C8:33:5D
Certificate issuer: /CN=A915370F/serialNumber=BB5B8156B037E5D22263EAC7F6A11C052FDF633F
Certificate serial: 31F3
Authority key identifier: BB:5B:81:56:B0:37:E5:D2:22:63:EA:C7:F6:A1:1C:05:2F:DF:63:3F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1uBVrA35dIiY-rH9qEcBS_fYz8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/E74B2942A10D11EDB6423F70C4F9AE02.roa
Signing time: Fri 10 Feb 2023 02:01:03 +0000
ROA not before: Fri 10 Feb 2023 02:01:03 +0000
ROA not after: Sun 28 May 2023 00:00:00 +0000
asID: 21700
IP address blocks: 122.8.16.0/22 maxlen: 22
122.8.28.0/22 maxlen: 22
122.8.40.0/22 maxlen: 22
122.8.44.0/22 maxlen: 22
122.8.48.0/22 maxlen: 22
122.8.56.0/22 maxlen: 22
122.8.64.0/22 maxlen: 22
122.8.72.0/22 maxlen: 22
122.8.80.0/22 maxlen: 22
122.8.92.0/22 maxlen: 22
122.8.96.0/22 maxlen: 22
122.8.100.0/22 maxlen: 22
122.8.104.0/22 maxlen: 22
122.8.108.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12787 (0x31f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915370F/serialNumber=BB5B8156B037E5D22263EAC7F6A11C052FDF633F
Validity
Not Before: Feb 10 02:01:03 2023 GMT
Not After : May 28 00:00:00 2023 GMT
Subject: CN=63e5a55f-7247
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ce:7d:31:82:12:79:6c:78:86:83:0b:25:01:
e4:86:e9:ab:e3:19:a9:c1:93:19:98:5d:4d:74:3e:
5a:4e:86:7b:b8:c0:b3:7c:c8:c4:3b:c5:bd:cb:e8:
96:8e:23:e6:0e:8a:83:8e:70:e2:73:71:a8:b2:1c:
3e:b2:09:85:fe:71:6f:2c:bd:14:b8:72:cc:fd:ca:
22:90:8a:f4:db:a8:b7:61:ec:17:41:65:5c:22:b8:
75:c2:66:7c:17:3c:9b:6c:24:51:4e:1a:d0:8e:97:
ab:d4:1b:64:97:4e:10:9f:65:ea:53:25:7c:89:f1:
18:ae:4a:76:ec:e9:c4:a2:80:28:e3:7e:96:8f:17:
50:ce:3c:38:1e:ae:d0:07:35:78:ac:3d:17:58:9e:
82:86:c3:cb:ff:9d:32:83:71:b9:eb:96:80:5b:cb:
02:3a:7a:ea:4d:86:f2:78:42:19:b6:fe:7a:11:a8:
a6:2f:3f:2c:9e:98:f4:64:25:d7:c2:04:0a:be:29:
2d:3a:6d:23:dc:17:19:56:67:e5:88:8d:bb:10:77:
5d:51:ed:cd:ab:e9:7a:c2:96:8a:cb:68:db:d2:ca:
70:34:e3:7b:88:a8:ba:5b:cf:b4:17:d1:c2:49:4a:
71:fc:a7:4c:12:fe:b1:15:50:40:db:7e:19:29:c5:
0a:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:4F:32:2B:CB:8F:A6:71:C7:94:59:47:A5:66:F5:F3:31:C8:33:5D
X509v3 Authority Key Identifier:
keyid:BB:5B:81:56:B0:37:E5:D2:22:63:EA:C7:F6:A1:1C:05:2F:DF:63:3F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/u1uBVrA35dIiY-rH9qEcBS_fYz8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1uBVrA35dIiY-rH9qEcBS_fYz8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/E74B2942A10D11EDB6423F70C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
122.8.16.0/22
122.8.28.0/22
122.8.40.0-122.8.51.255
122.8.56.0/22
122.8.64.0/22
122.8.72.0/22
122.8.80.0/22
122.8.92.0-122.8.111.255
Signature Algorithm: sha256WithRSAEncryption
ed:2b:11:36:55:40:31:69:f6:8d:6c:d4:58:68:a3:82:a1:35:
4e:5e:c8:0e:af:30:08:1c:17:24:5c:de:57:67:a5:fd:46:e2:
ce:07:34:88:ed:96:e6:da:a2:57:da:b8:1f:c9:48:bb:fb:e3:
ea:5b:f9:7d:fc:7e:b2:10:cc:65:4c:34:94:05:fa:ee:fe:8d:
14:44:5a:0e:48:b3:51:f7:08:da:5a:ad:39:d9:e2:ca:60:54:
65:b1:a1:06:d3:84:70:5b:b5:94:61:17:49:ab:f0:c9:ec:9f:
dd:63:bf:45:0f:c8:ad:30:5a:d0:14:bd:e8:cc:cc:32:c7:9e:
aa:1b:99:db:4f:99:6c:db:03:46:bf:03:d2:61:d3:5d:08:44:
5f:5c:0d:68:7b:f3:5c:29:33:72:b2:62:be:12:dc:c7:46:88:
5c:2f:64:5b:a4:8d:ea:51:85:74:cb:71:0f:56:6d:f9:ac:be:
01:77:e6:63:fe:39:2a:66:69:02:ac:d3:73:71:71:64:1b:7d:
c9:b4:42:ef:75:53:fe:36:8d:b9:e2:43:ff:37:c3:df:e8:84:
59:9d:39:3e:e2:f2:f2:4c:ad:6b:22:b0:08:e4:5d:09:f5:77:
34:6f:72:c5:72:4b:40:0c:14:b9:aa:8d:56:b2:4a:c8:a4:e9:
5a:de:4b:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:40 2023 by rpki-client on console-ams.rpki-client.org