Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9164D60/9E0DE392B45F11EBB61B760CC4F9AE02/48D70B24E21711EC9A109051C4F9AE02.roa
File: 48D70B24E21711EC9A109051C4F9AE02.roa (raw, json)
Hash identifier: HIrBcdMfUyRYu4wHgCyeALklkeVNfwWaFMmceZ7Ri7M=
Subject key identifier: 45:6D:9B:EB:7E:DE:91:EA:CF:AF:A1:F4:E1:A8:75:3D:49:8C:60:B3
Certificate issuer: /CN=A9164D60/serialNumber=E0BA228EAF9812F067D2FF3BF806895698C93977
Certificate serial: 0339
Authority key identifier: E0:BA:22:8E:AF:98:12:F0:67:D2:FF:3B:F8:06:89:56:98:C9:39:77
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Loijq-YEvBn0v87-AaJVpjJOXc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9164D60/9E0DE392B45F11EBB61B760CC4F9AE02/48D70B24E21711EC9A109051C4F9AE02.roa
Signing time: Thu 02 Jun 2022 01:56:58 +0000
ROA not before: Thu 02 Jun 2022 01:56:58 +0000
ROA not after: Sat 30 Sep 2023 00:00:00 +0000
asID: 32181
IP address blocks: 118.99.26.0/24 maxlen: 24
118.99.31.0/24 maxlen: 24
119.47.82.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 825 (0x339)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9164D60/serialNumber=E0BA228EAF9812F067D2FF3BF806895698C93977
Validity
Not Before: Jun 2 01:56:58 2022 GMT
Not After : Sep 30 00:00:00 2023 GMT
Subject: CN=629818e9-b10b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:9a:23:ff:da:25:63:5b:71:a8:ca:89:e5:fe:
5e:36:c7:65:68:58:91:e1:d2:40:11:7d:1c:49:ca:
24:a5:b6:ee:3a:bc:3b:ca:f3:87:4a:5a:20:d1:0a:
db:c4:e5:cb:c1:72:c2:17:b0:11:73:25:a3:33:9c:
88:d7:6b:6d:6e:75:6e:32:78:b1:8f:df:5d:a8:a7:
37:1b:6e:be:0e:ff:9f:4a:d6:ec:37:83:9b:4b:af:
ee:22:57:ef:e4:38:1b:4c:3b:3a:c9:ca:48:ad:b6:
7a:35:64:8f:6a:84:2d:77:e0:b4:0c:d6:a4:c7:cb:
d4:f9:e2:a2:00:2f:a7:54:7d:c9:ce:eb:12:0b:bc:
b7:62:14:2b:a8:8b:ea:94:22:2a:7d:6a:c3:f5:b8:
34:0c:cb:0a:eb:a8:64:db:48:ef:80:b8:10:ee:7c:
6d:f7:b4:f6:74:ae:d8:bc:e8:1c:36:b7:4e:26:3f:
36:ef:6e:e6:12:31:40:11:6e:c9:da:96:6e:4a:5a:
4c:d0:27:1c:29:02:40:2b:4f:93:97:e3:a7:27:bb:
64:6d:c7:f2:41:7d:28:5f:3e:c7:03:89:d6:10:47:
71:c5:eb:64:8a:f7:4f:8b:24:0c:f8:57:ce:c1:c2:
b6:10:38:04:ca:14:79:5b:1c:28:28:45:4c:54:4c:
af:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:6D:9B:EB:7E:DE:91:EA:CF:AF:A1:F4:E1:A8:75:3D:49:8C:60:B3
X509v3 Authority Key Identifier:
keyid:E0:BA:22:8E:AF:98:12:F0:67:D2:FF:3B:F8:06:89:56:98:C9:39:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9164D60/9E0DE392B45F11EBB61B760CC4F9AE02/4Loijq-YEvBn0v87-AaJVpjJOXc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Loijq-YEvBn0v87-AaJVpjJOXc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164D60/9E0DE392B45F11EBB61B760CC4F9AE02/48D70B24E21711EC9A109051C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
118.99.26.0/24
118.99.31.0/24
119.47.82.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:6b:d9:69:d1:47:da:13:bb:ee:92:b8:04:a8:4b:76:cd:17:
d6:f7:a0:4f:a8:d3:e7:b9:62:68:02:f9:66:50:55:cb:47:bd:
05:73:c7:5e:f8:2e:44:92:4c:5c:14:30:96:e0:e0:c3:53:1f:
90:8b:d2:95:19:cb:9e:52:05:a4:b0:6f:58:9b:5a:5e:a1:56:
fe:00:91:2e:0a:8e:8c:54:49:97:90:47:23:fa:d5:94:fb:e4:
45:de:75:64:c8:f9:ba:74:ab:e7:6d:7d:7c:46:56:8c:46:53:
90:3e:2f:83:85:1a:ce:40:73:64:f1:93:b8:1c:18:e3:4b:a3:
60:f1:1a:63:7c:e2:2f:65:b2:9e:15:11:a6:83:e2:cb:7b:71:
8b:aa:67:bd:81:ad:d9:6c:24:5d:bf:b1:89:11:36:a8:d6:93:
9e:7d:f5:64:e0:3d:a4:e6:c7:73:1b:44:cc:ac:99:a4:ae:43:
a2:aa:89:9a:78:c0:70:30:43:c8:10:74:22:cf:1a:c4:ea:64:
66:65:c8:8a:d5:54:f1:9b:2b:65:62:44:5f:a0:df:bb:3e:26:
96:f2:a8:2c:73:ff:52:e8:e1:10:c0:60:c5:38:af:d2:59:3d:
46:b0:7b:81:2f:1f:34:24:ce:14:f9:e5:f7:9e:84:b2:34:4e:
47:54:e5:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:09 2024 by rpki-client on console-fra.rpki-client.org