Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917190F/B3CA76C0FA3111EABD249E7AC4F9AE02/819B17F2963011ED981DD65AC4F9AE02.roa
File: 819B17F2963011ED981DD65AC4F9AE02.roa (raw, json)
Hash identifier: +3Q23vH77y8sdYTcAqhyKJXUdxMrcz+srvayBD7IqIc=
Subject key identifier: 74:08:10:B8:4A:11:C9:2A:62:19:03:96:A0:F3:F1:AD:E7:73:06:38
Certificate issuer: /CN=A917190F/serialNumber=9D07446EF99F3C57C29C582D6B7ACA4735F4E470
Certificate serial: 062E
Authority key identifier: 9D:07:44:6E:F9:9F:3C:57:C2:9C:58:2D:6B:7A:CA:47:35:F4:E4:70
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nQdEbvmfPFfCnFgta3rKRzX05HA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917190F/B3CA76C0FA3111EABD249E7AC4F9AE02/819B17F2963011ED981DD65AC4F9AE02.roa
Signing time: Tue 17 Jan 2023 06:31:00 +0000
ROA not before: Tue 17 Jan 2023 06:31:00 +0000
ROA not after: Fri 01 Dec 2023 00:00:00 +0000
asID: 14032
IP address blocks: 111.92.240.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1582 (0x62e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917190F/serialNumber=9D07446EF99F3C57C29C582D6B7ACA4735F4E470
Validity
Not Before: Jan 17 06:31:00 2023 GMT
Not After : Dec 1 00:00:00 2023 GMT
Subject: CN=63c640a3-8ebf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:bf:19:cf:fc:9c:4a:60:27:5e:78:74:b7:95:
b0:1c:ba:3e:c6:48:a3:91:52:d6:12:a5:9e:a1:97:
76:fa:60:33:d6:54:36:f7:41:db:2a:3a:8a:59:96:
82:a1:04:24:e5:84:a9:f6:32:b9:39:69:0e:e7:9f:
89:a1:18:60:65:61:f6:85:2d:84:e2:89:07:33:52:
84:c0:13:60:4c:11:db:2b:27:1e:91:39:0c:81:bf:
30:0b:c6:a6:77:f3:0d:a0:0e:03:f9:88:a8:e0:68:
41:46:fe:dc:8b:b6:fc:af:88:f3:ef:ad:95:60:23:
47:78:06:c3:da:e9:f2:21:2e:d7:1e:a1:12:e1:22:
07:cd:62:58:5f:7d:5a:4e:ce:99:1f:ec:23:2f:2b:
a0:58:93:58:a1:78:49:c0:a6:82:db:fc:df:58:3d:
95:19:a1:c5:78:98:0b:e3:9b:e9:27:e3:97:ff:b3:
1b:56:83:a3:c9:16:bb:ec:21:be:77:ac:a2:bb:04:
7d:62:7e:87:47:73:5a:bc:7b:db:29:74:41:da:c0:
1f:26:c0:34:4f:5d:87:b4:4f:18:a7:c9:5e:1a:16:
bc:bd:92:b1:a2:0e:b4:ae:44:e1:0d:ab:de:e4:98:
30:a1:be:a3:3e:60:6e:f0:b8:6b:78:89:5d:14:ef:
fa:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:08:10:B8:4A:11:C9:2A:62:19:03:96:A0:F3:F1:AD:E7:73:06:38
X509v3 Authority Key Identifier:
keyid:9D:07:44:6E:F9:9F:3C:57:C2:9C:58:2D:6B:7A:CA:47:35:F4:E4:70
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917190F/B3CA76C0FA3111EABD249E7AC4F9AE02/nQdEbvmfPFfCnFgta3rKRzX05HA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nQdEbvmfPFfCnFgta3rKRzX05HA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917190F/B3CA76C0FA3111EABD249E7AC4F9AE02/819B17F2963011ED981DD65AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
111.92.240.0/22
Signature Algorithm: sha256WithRSAEncryption
ba:75:e9:3e:6d:11:0d:f6:fd:55:62:b5:56:64:3f:99:42:10:
55:e4:05:60:c1:f8:98:84:b1:f4:b2:ba:a1:83:3c:4c:87:22:
c6:7b:f0:45:a6:34:25:f5:b3:1a:52:cb:69:65:00:af:b1:90:
80:a6:f9:9d:65:eb:bf:d0:e6:cb:48:42:93:0b:24:12:07:87:
57:bb:bd:a4:a4:43:96:82:89:2c:44:64:4c:2b:18:1f:f3:76:
33:c3:56:50:65:e8:f9:6c:67:2c:b9:25:12:6d:97:ca:b6:0e:
26:c9:5c:33:fa:8e:91:27:39:d7:43:8d:a9:42:87:ba:76:b0:
57:5a:80:e4:c6:6f:96:76:5d:85:fa:83:34:d8:9f:3c:18:f3:
92:96:fa:3f:54:a2:d3:d9:05:a5:ee:b9:81:24:89:ab:80:1a:
fc:86:47:41:17:c9:8d:c0:8c:f3:2b:e6:ec:1f:70:ce:4c:1c:
33:60:5a:ad:dc:b4:79:be:9f:dd:4f:9e:15:21:ce:19:85:c6:
54:35:65:d8:89:dd:6f:f5:44:16:b4:c0:f8:5c:ff:8f:15:b6:
b4:71:9e:a2:e7:45:41:e1:10:71:6c:72:a3:3d:ed:54:46:d0:
4c:b5:86:9c:7a:5d:ea:ef:07:18:97:f4:57:d4:6e:80:9d:cf:
59:e2:42:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:21 2024 by rpki-client on console-ams.rpki-client.org