Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/6CEA1AF8EC2111EAA7B7D622C4F9AE02.roa
File: 6CEA1AF8EC2111EAA7B7D622C4F9AE02.roa (raw, json)
Hash identifier: zH0Ihanz/BYkq4FGDisZR9X+HfQn6evfD+vYroYBIqI=
Subject key identifier: 74:12:B6:97:B7:F2:DC:EC:98:E3:63:D2:D6:4E:1F:A5:7A:03:50:3B
Certificate issuer: /CN=A915B536/serialNumber=8210D43756654B10705D5AB3F37BF01A78B78C47
Certificate serial: 04F0
Authority key identifier: 82:10:D4:37:56:65:4B:10:70:5D:5A:B3:F3:7B:F0:1A:78:B7:8C:47
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghDUN1ZlSxBwXVqz83vwGni3jEc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/6CEA1AF8EC2111EAA7B7D622C4F9AE02.roa
Signing time: Wed 04 May 2022 11:49:27 +0000
ROA not before: Wed 04 May 2022 11:49:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 23710
IP address blocks: 202.41.140.0/24 maxlen: 24
2001:dd8:13::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1264 (0x4f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915B536/serialNumber=8210D43756654B10705D5AB3F37BF01A78B78C47
Validity
Not Before: May 4 11:49:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=62726846-3a54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:4e:84:a6:8f:26:b9:e9:6b:fc:c4:82:3e:32:
2e:4f:3e:ae:5e:cd:64:e1:70:fb:fd:2a:53:a2:8c:
ce:fa:b6:3c:19:f7:c8:3a:1c:da:9c:27:24:68:5d:
1b:2c:98:be:17:f6:c6:4d:87:ba:ae:e5:a4:e7:17:
0a:90:31:e5:90:0e:c9:94:c2:0f:af:a6:39:28:1f:
5a:bd:a2:4d:ca:42:f0:a2:43:66:5b:1b:e8:ed:66:
65:f3:ad:a4:e6:40:bd:97:6e:27:7c:46:4c:d5:f6:
41:60:4e:f3:f9:fc:d7:d2:60:ad:f4:42:f8:6a:ac:
f5:9e:f9:b9:3d:ae:85:98:60:5f:1b:67:d8:80:02:
7e:e4:78:17:36:66:46:ca:7b:b5:0f:ca:5f:44:7c:
05:ad:44:c5:02:f9:be:ea:0d:14:53:dd:ae:1f:fb:
ed:eb:59:f8:6b:7a:b0:7d:ba:a9:c2:a1:6a:11:5f:
ff:68:de:6d:f6:2e:a3:44:c7:bb:82:46:6e:56:84:
17:69:cb:46:b4:e3:45:7f:8f:aa:86:3a:db:05:0d:
a8:6a:09:32:ac:f8:ff:69:cd:91:10:09:f2:0e:17:
8c:75:9b:5b:27:57:86:e5:22:f9:2a:8f:9a:a4:c7:
28:47:81:1c:34:b3:f2:3c:f2:89:df:c5:f3:99:91:
1b:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:12:B6:97:B7:F2:DC:EC:98:E3:63:D2:D6:4E:1F:A5:7A:03:50:3B
X509v3 Authority Key Identifier:
keyid:82:10:D4:37:56:65:4B:10:70:5D:5A:B3:F3:7B:F0:1A:78:B7:8C:47
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/ghDUN1ZlSxBwXVqz83vwGni3jEc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghDUN1ZlSxBwXVqz83vwGni3jEc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/6CEA1AF8EC2111EAA7B7D622C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.41.140.0/24
IPv6:
2001:dd8:13::/48
Signature Algorithm: sha256WithRSAEncryption
8e:a3:f3:ba:65:4a:61:3c:96:9b:3c:76:e0:3f:cb:4a:28:07:
81:c8:5b:2a:c7:e0:37:1b:70:a5:1a:62:fd:00:c6:9d:cc:35:
a1:79:69:fa:a3:fd:13:f8:92:84:32:d1:ac:19:6e:c2:89:06:
40:93:4c:f0:38:a0:a9:a1:2b:40:5d:83:65:0d:79:06:1f:3f:
b2:a0:fb:29:52:dc:e8:c5:d4:02:b2:34:be:b4:49:80:c9:b3:
4f:4a:8b:22:5a:ea:0d:06:8d:e2:a4:25:67:a3:90:55:99:f4:
a8:1a:cf:2b:17:81:02:8d:6c:be:9c:dd:cb:f3:1e:bc:e1:2d:
40:00:0d:01:4b:6e:a2:9d:a4:9e:92:6a:b8:84:28:af:f5:81:
e6:ee:c2:a5:5d:48:0b:d8:33:11:a3:a1:08:e4:fd:01:33:33:
f7:31:74:cf:61:40:0a:aa:39:77:f1:95:f3:ec:67:a4:21:50:
fc:0e:76:72:18:28:28:4a:5f:2d:f1:f4:62:22:f0:4e:90:2c:
58:33:da:a1:a0:b4:2f:82:83:10:02:d3:e4:5a:6b:63:d0:dd:
9d:38:98:d8:b7:9b:94:6b:91:16:3a:f7:22:73:67:19:af:3e:
03:c6:c4:a0:ce:fc:a6:0d:5d:ef:ff:44:7e:14:3e:9d:99:b0:
61:fb:e7:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:43 2023 by rpki-client on console-fra.rpki-client.org