Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A916B18B/628DE502DF2311E797225D2EC4F9AE02/885DDB4C454911EEAB49E778C4F9AE02.roa
File: 885DDB4C454911EEAB49E778C4F9AE02.roa (raw, json)
Hash identifier: zBkCd571WUpJBGHFTAeBD6bzzppqlFPlowP+mtLLXMc=
Subject key identifier: E4:FE:D0:E2:DC:8C:A2:98:D5:80:0D:8D:1F:DE:9E:69:D3:A9:F0:BD
Certificate issuer: /CN=A916B18B/serialNumber=FDE36B6E949398E52D95E89D40BDF60B25DB69B9
Certificate serial: 163C
Authority key identifier: FD:E3:6B:6E:94:93:98:E5:2D:95:E8:9D:40:BD:F6:0B:25:DB:69:B9
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_eNrbpSTmOUtleidQL32CyXbabk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916B18B/628DE502DF2311E797225D2EC4F9AE02/885DDB4C454911EEAB49E778C4F9AE02.roa
Signing time: Mon 28 Aug 2023 02:21:02 +0000
ROA not before: Mon 28 Aug 2023 02:21:02 +0000
ROA not after: Wed 31 Jan 2024 00:00:00 +0000
asID: 138379
IP address blocks: 113.19.255.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5692 (0x163c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916B18B/serialNumber=FDE36B6E949398E52D95E89D40BDF60B25DB69B9
Validity
Not Before: Aug 28 02:21:02 2023 GMT
Not After : Jan 31 00:00:00 2024 GMT
Subject: CN=64ec048e-880b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:26:9b:5d:76:39:ed:bd:5c:ce:e8:ee:17:90:
26:c0:c7:96:68:f9:cd:d4:a5:61:f1:8d:48:16:74:
59:45:c3:a0:7d:0f:e1:4d:76:56:34:e9:6a:34:be:
4d:c9:24:60:78:27:fd:bb:aa:42:5f:20:ba:8e:21:
a9:32:82:62:58:c2:1b:73:1b:6a:a9:18:ef:ed:af:
1d:5b:1d:4f:a8:b0:25:af:1b:f7:d9:8b:1c:4a:3e:
c9:26:78:f4:61:4e:cb:9c:c6:5f:0d:b4:24:a2:9c:
d8:bc:07:4c:8f:38:f8:7b:2b:c3:e2:9a:80:9d:9c:
3d:51:3d:2b:2d:50:13:11:ff:b4:72:7c:cb:be:df:
9e:af:04:4b:81:a2:97:02:e3:a5:61:c3:5d:81:62:
b8:bd:63:d0:67:21:88:17:96:15:48:da:91:df:97:
8c:00:17:95:28:ea:a3:c3:44:af:20:e8:cb:a9:a3:
85:bd:7e:9d:88:78:ac:ba:17:53:69:f6:17:ca:a4:
6b:c1:ce:7a:df:7d:8f:f7:c1:05:c0:69:28:55:fd:
64:72:b1:0f:c6:49:21:27:a6:24:7d:5c:f0:d1:35:
0e:da:61:23:3c:85:18:ea:53:9c:62:02:cf:e0:3b:
6e:60:5b:f2:b2:08:3e:37:fa:92:f6:67:2f:3f:12:
ed:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:FE:D0:E2:DC:8C:A2:98:D5:80:0D:8D:1F:DE:9E:69:D3:A9:F0:BD
X509v3 Authority Key Identifier:
keyid:FD:E3:6B:6E:94:93:98:E5:2D:95:E8:9D:40:BD:F6:0B:25:DB:69:B9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916B18B/628DE502DF2311E797225D2EC4F9AE02/_eNrbpSTmOUtleidQL32CyXbabk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_eNrbpSTmOUtleidQL32CyXbabk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B18B/628DE502DF2311E797225D2EC4F9AE02/885DDB4C454911EEAB49E778C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
113.19.255.0/24
Signature Algorithm: sha256WithRSAEncryption
67:d6:12:54:e0:09:03:7c:06:17:74:8b:50:e6:d8:ae:d5:32:
fe:72:66:a4:ba:77:a9:3e:ff:3b:ab:da:ae:a8:88:5b:62:f9:
22:9f:52:9c:5c:b8:4d:87:c4:5e:8f:f5:3d:b2:da:fc:4c:6c:
68:48:93:92:12:a5:80:dd:3a:3d:c1:e6:65:9c:d9:7a:5e:ac:
84:7c:bd:7c:48:83:e7:c3:f3:b9:8d:1c:5d:cb:06:cc:c5:6c:
7a:57:37:83:2d:f0:e4:26:b4:0f:a5:3b:74:13:83:29:0d:ff:
30:3b:44:61:86:68:b0:01:ee:11:63:9f:24:12:ea:22:ad:94:
df:e7:12:71:97:fb:02:5c:ed:09:b6:58:d8:f2:b2:9d:6b:41:
f1:3f:95:e9:19:23:e8:9b:91:ca:6f:c8:b4:b8:87:39:0d:56:
12:19:26:ca:1c:3c:57:df:cd:c9:23:cc:1d:18:86:e7:c0:e8:
aa:ce:64:c9:0f:a5:d0:8d:b3:7a:df:cf:58:8c:79:eb:25:72:
1d:5a:00:2a:a8:55:d1:7f:c8:d5:2c:65:03:b5:02:f7:df:eb:
8a:82:3a:64:7d:3c:a7:3a:f1:47:2a:17:73:db:83:97:a9:fa:
59:70:19:fb:42:70:9c:c8:45:9f:6a:19:f8:58:b2:05:0e:9d:
0b:1d:87:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:10 2024 by rpki-client on console-fra.rpki-client.org