Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/A75B1EC4B10911E586FC2D11C4F9AE02.roa
File: A75B1EC4B10911E586FC2D11C4F9AE02.roa (raw, json)
Hash identifier: Rj3Rw0i7hgxbTfADpgby4yGFjIWdwOMearMY3O/iXUM=
Subject key identifier: 3E:E0:CE:AC:6C:B2:C0:54:A3:CB:5D:E6:BD:5E:2F:EF:60:99:B5:4F
Certificate issuer: /CN=A916C128/serialNumber=B5642732265D40BF75CA94A9EC8119211C1B9B32
Certificate serial: 25D3
Authority key identifier: B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/A75B1EC4B10911E586FC2D11C4F9AE02.roa
Signing time: Sat 01 May 2021 04:11:41 +0000
ROA not before: Sat 01 May 2021 04:11:41 +0000
ROA not after: Sat 30 Jul 2022 00:00:00 +0000
asID: 56171
IP address blocks: 14.1.62.0/24 maxlen: 24
103.13.119.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9683 (0x25d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916C128/serialNumber=B5642732265D40BF75CA94A9EC8119211C1B9B32
Validity
Not Before: May 1 04:11:41 2021 GMT
Not After : Jul 30 00:00:00 2022 GMT
Subject: CN=608cd4fd-d563
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:dd:d3:ee:7b:35:6a:89:e5:87:fc:2a:82:6b:
66:cd:fd:51:05:7b:82:55:ff:b2:96:d8:11:2d:4a:
e3:26:bf:1b:7f:d2:6a:2b:ef:be:9c:4e:ef:1f:29:
7d:0b:92:32:89:b9:3a:a1:05:19:3e:8c:14:cd:4a:
34:f6:a6:ac:72:c8:5d:07:82:2a:c6:b6:7d:4c:78:
cb:c2:3d:93:fc:ee:f5:43:5c:ee:0a:f2:77:ff:fd:
2c:ab:cd:7a:6e:77:b2:cf:9a:4f:96:b5:b5:87:02:
e0:64:a6:35:76:3e:af:c8:1b:d7:ff:54:03:88:54:
9b:ff:a9:f4:92:9b:3c:d3:6a:65:e1:26:46:8b:ae:
41:7a:a0:6c:07:6f:dd:a7:58:42:4f:3d:8e:dc:9c:
3d:21:7f:32:d9:83:15:6e:1f:45:0d:ad:c0:61:54:
4a:dd:1e:8f:da:22:ed:a2:7a:6f:34:dc:61:c5:7d:
db:39:f3:d0:bf:69:b5:24:ed:b3:e8:f9:28:49:db:
4d:3f:9b:c7:83:4d:80:23:c4:6e:7b:13:33:ed:cb:
3a:36:3d:06:63:cc:31:cd:31:7c:50:ce:6f:73:9b:
42:f9:73:cc:d5:3c:ee:e0:ec:e5:62:12:b5:c2:50:
05:e2:39:0b:dc:d4:e6:8a:07:28:ba:af:85:d5:57:
a0:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:E0:CE:AC:6C:B2:C0:54:A3:CB:5D:E6:BD:5E:2F:EF:60:99:B5:4F
X509v3 Authority Key Identifier:
keyid:B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/A75B1EC4B10911E586FC2D11C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
14.1.62.0/24
103.13.119.0/24
Signature Algorithm: sha256WithRSAEncryption
91:5f:6a:6b:12:78:87:df:19:f3:41:28:e8:b9:92:e1:20:55:
7b:3d:49:2c:3a:7f:84:a2:b5:02:77:ca:ac:88:7e:37:9a:59:
ab:25:bf:e5:55:91:4d:ec:03:f9:ef:d7:98:48:0b:96:66:aa:
e3:62:91:f6:02:9c:1d:45:7e:46:2e:33:01:09:e9:92:b1:4e:
c9:04:d4:05:f9:a6:f6:bb:3c:a0:9a:5d:39:fa:c4:89:48:a9:
ab:0a:8d:9a:4b:92:3d:cf:82:14:f5:b8:c1:87:7c:fa:1f:ce:
c4:28:8c:06:ff:bd:c1:ea:57:ee:b8:41:dd:dd:b3:c9:6a:fb:
75:f0:5e:75:41:6a:5a:12:0e:14:22:a2:43:8a:03:4a:32:a8:
f9:82:62:a9:c7:21:aa:5a:07:b6:c4:d1:34:fa:c0:0d:19:88:
a7:b0:0a:24:57:a4:ea:52:cf:fc:54:42:93:40:f5:1f:1d:f7:
1b:7c:7b:c5:a5:c6:33:88:34:4f:60:70:33:61:b2:a6:b0:60:
39:bf:40:68:81:da:60:14:dd:5d:fc:83:32:13:08:c4:63:41:
53:9a:74:7a:57:26:ab:b1:ff:ea:3d:7a:1e:ef:b3:3b:eb:46:
19:c8:60:05:b7:d3:68:d7:6c:bb:87:e3:cf:4e:ab:f0:4c:31:
7d:e1:43:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:10 2024 by rpki-client on console-fra.rpki-client.org