Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/725642BEB0C611E5BDBA5065C4F9AE02.roa
File: 725642BEB0C611E5BDBA5065C4F9AE02.roa (raw, json)
Hash identifier: cxZ7/7aceEr8GDIKpIgIY7ZgQYNqCElb9LoJ+dT4OV0=
Subject key identifier: 71:2F:1B:3E:8C:64:F8:66:F7:99:D5:D4:EC:A7:1A:86:E1:E6:09:92
Certificate issuer: /CN=A9174880/serialNumber=EC2C6406CAA1F39EBCF4587531500D56B95362C0
Certificate serial: 3308
Authority key identifier: EC:2C:64:06:CA:A1:F3:9E:BC:F4:58:75:31:50:0D:56:B9:53:62:C0
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7CxkBsqh85689Fh1MVANVrlTYsA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/725642BEB0C611E5BDBA5065C4F9AE02.roa
Signing time: Mon 30 Jan 2023 14:20:07 +0000
ROA not before: Mon 30 Jan 2023 14:20:07 +0000
ROA not after: Sun 31 Mar 2024 00:00:00 +0000
asID: 132040
IP address blocks: 198.48.0.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13064 (0x3308)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9174880/serialNumber=EC2C6406CAA1F39EBCF4587531500D56B95362C0
Validity
Not Before: Jan 30 14:20:07 2023 GMT
Not After : Mar 31 00:00:00 2024 GMT
Subject: CN=63d7d217-d4c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:92:16:ed:37:b0:a5:7b:18:c8:11:5a:6b:0a:
a0:48:cd:ef:0b:89:cf:1b:f8:4b:8e:29:e9:03:75:
8f:28:30:12:4b:e1:e2:6f:1b:6e:b3:fe:af:d2:b1:
ae:90:42:98:7a:95:87:0c:cc:5c:c9:fb:a7:32:53:
dd:35:7c:cd:42:29:33:25:8d:d3:a7:6a:6e:c4:14:
68:34:61:91:ca:b4:01:fa:b7:c3:95:14:47:9e:65:
55:53:0a:84:5b:1b:ef:8e:97:a0:f0:dc:85:4a:9f:
3f:52:26:5a:f2:13:0d:0c:8b:51:64:d2:23:21:c2:
8f:55:27:94:c5:ad:37:a0:85:b7:4d:3a:c2:df:dd:
0a:9f:af:ff:09:6b:8a:01:b5:e1:55:a6:fc:f0:a0:
f0:99:64:54:2a:13:b2:b0:e6:bc:88:3f:08:ce:3b:
88:77:3a:3f:4e:d5:66:01:31:a2:ba:2f:52:50:95:
c9:c8:93:17:ae:33:a9:28:62:66:42:dc:b1:48:30:
08:70:5f:aa:b5:d5:70:14:80:2f:d0:76:e7:5a:0c:
60:71:c0:dc:46:c6:a4:c0:6b:87:6a:65:c5:af:53:
62:b5:c2:c9:23:5d:6d:93:c0:92:d4:5a:77:68:63:
5f:ac:b5:8a:b6:1a:d9:75:88:2b:a4:e7:a7:c7:2e:
f1:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:2F:1B:3E:8C:64:F8:66:F7:99:D5:D4:EC:A7:1A:86:E1:E6:09:92
X509v3 Authority Key Identifier:
keyid:EC:2C:64:06:CA:A1:F3:9E:BC:F4:58:75:31:50:0D:56:B9:53:62:C0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7CxkBsqh85689Fh1MVANVrlTYsA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/725642BEB0C611E5BDBA5065C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
198.48.0.0/22
Signature Algorithm: sha256WithRSAEncryption
6e:dd:53:fc:01:ed:3b:b7:b1:db:f4:60:d2:06:bc:44:31:2f:
9a:9a:25:ad:ec:ac:60:cf:48:65:16:40:84:86:2f:92:3d:77:
fe:74:c4:38:82:ce:80:c0:e4:7a:5c:ce:72:1b:15:0d:9a:e9:
29:07:f3:b8:ea:62:8c:94:98:b6:67:5b:79:ea:38:7b:6c:71:
e2:bd:6e:8d:a9:b7:ee:cb:d8:8e:f6:95:11:3b:12:10:85:38:
62:97:ef:72:b5:75:cf:79:b8:51:b0:eb:78:b5:fa:b1:65:a3:
26:27:c1:64:5f:47:33:9d:55:d9:0a:8f:38:79:ef:d3:81:cf:
3c:17:a9:aa:83:fd:df:92:06:8a:08:27:ad:bd:24:cc:10:98:
51:b3:5b:9d:d2:d2:38:08:5d:a2:a0:5c:a3:9d:1e:07:14:5d:
67:65:6a:a5:a7:02:c6:73:6e:9e:13:ac:a8:e3:6b:4d:67:7a:
7d:91:e9:02:c8:23:6d:ed:61:7f:db:f8:50:06:16:f3:8d:99:
be:99:fd:2c:a0:6f:ac:e6:37:a7:da:10:e4:ba:37:29:c9:b6:
98:71:70:3e:89:73:84:a7:ac:1d:92:a2:8e:ae:0b:12:70:bc:
1e:06:4b:a2:10:a5:8a:f1:32:3b:44:2c:2f:5f:bc:6e:3a:13:
e4:ba:76:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:21 2024 by rpki-client on console-ams.rpki-client.org