Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9176190/C37300E8AE1811EAA5090072C4F9AE02/8DE4B85AD59911EB9F992569C4F9AE02.roa
File: 8DE4B85AD59911EB9F992569C4F9AE02.roa (raw, json)
Hash identifier: 3Se3iASYE9AgsEmH81qkJ+6P+zP3j4PnhHIDleWL1lg=
Subject key identifier: 28:8C:3E:BC:CD:07:A9:14:7F:BF:F4:03:D6:6F:71:7B:89:11:32:61
Certificate issuer: /CN=A9176190/serialNumber=3DE7EFC046A67B9925BBBBDC6132B12975DB4A6D
Certificate serial: 03DC
Authority key identifier: 3D:E7:EF:C0:46:A6:7B:99:25:BB:BB:DC:61:32:B1:29:75:DB:4A:6D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PefvwEame5klu7vcYTKxKXXbSm0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9176190/C37300E8AE1811EAA5090072C4F9AE02/8DE4B85AD59911EB9F992569C4F9AE02.roa
Signing time: Tue 17 Aug 2021 22:37:35 +0000
ROA not before: Tue 17 Aug 2021 22:37:35 +0000
ROA not after: Mon 31 Oct 2022 00:00:00 +0000
asID: 134963
IP address blocks: 202.43.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 988 (0x3dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9176190/serialNumber=3DE7EFC046A67B9925BBBBDC6132B12975DB4A6D
Validity
Not Before: Aug 17 22:37:35 2021 GMT
Not After : Oct 31 00:00:00 2022 GMT
Subject: CN=611c3a2f-47b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:33:ae:4c:d5:a3:57:fd:7b:8c:1d:38:a7:30:
65:09:66:fb:61:ac:5f:32:43:77:4a:9c:77:e3:a4:
d5:e6:bc:33:79:e1:49:57:eb:a9:b7:f3:f8:aa:05:
54:d5:fb:74:e8:4a:c8:07:28:74:61:5c:ef:15:85:
18:c1:ce:a2:16:50:75:80:e7:f0:df:95:c0:27:fb:
1c:d0:01:1c:3c:0c:9e:1f:c0:7c:fe:5d:08:5f:0f:
1e:c4:0b:5a:3b:84:18:82:f6:16:70:be:ca:f9:18:
a2:76:18:67:e2:d1:a5:ef:74:b7:8b:56:d4:ae:4b:
1b:91:74:3c:f8:47:04:56:5c:cb:6c:c7:10:0a:ed:
84:75:12:9b:f8:3e:f7:f3:59:6b:36:ba:89:25:70:
2d:4c:cd:00:30:f0:84:92:fa:25:60:80:3e:c2:04:
23:2d:92:ce:51:03:2d:a5:22:e4:cf:18:fc:f9:db:
6f:a4:9f:20:8d:d3:b1:d2:b5:a3:ab:03:77:d8:d6:
74:ce:b9:27:fc:9b:3e:33:88:e5:12:ad:7e:ab:77:
09:02:fc:2a:33:40:44:66:0b:a6:23:26:da:f2:1d:
3a:21:2e:67:c6:3b:de:4d:01:01:95:0a:9a:0f:68:
c3:59:c9:3e:c1:eb:03:ad:c2:d4:11:cb:97:10:83:
17:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:8C:3E:BC:CD:07:A9:14:7F:BF:F4:03:D6:6F:71:7B:89:11:32:61
X509v3 Authority Key Identifier:
keyid:3D:E7:EF:C0:46:A6:7B:99:25:BB:BB:DC:61:32:B1:29:75:DB:4A:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9176190/C37300E8AE1811EAA5090072C4F9AE02/PefvwEame5klu7vcYTKxKXXbSm0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PefvwEame5klu7vcYTKxKXXbSm0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176190/C37300E8AE1811EAA5090072C4F9AE02/8DE4B85AD59911EB9F992569C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.43.225.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:ae:2d:ea:44:f1:bb:fe:00:e9:6a:a2:3a:1a:e3:36:07:fb:
4f:8f:21:a5:7b:23:c0:cb:54:55:6f:20:41:91:eb:35:a8:d6:
da:68:12:bf:c6:1d:46:94:ba:54:f7:01:34:de:6f:33:7e:bd:
b2:af:e2:31:a0:8b:37:35:7a:ed:64:b7:4c:f4:b3:78:c3:cb:
6b:a0:f9:93:63:f0:4f:7d:38:10:11:67:e0:da:c0:a7:be:57:
ad:f1:04:fe:b1:f0:39:0a:99:e3:a9:5d:45:dc:03:fe:2e:30:
08:86:c7:7c:e1:09:f5:f1:03:b1:37:8d:49:91:dc:be:6d:b4:
61:6f:21:d0:e5:9b:5e:85:01:1e:1a:62:d8:a1:02:cd:2d:6a:
2f:fb:41:6c:ab:cc:a7:91:bd:b9:33:7e:67:11:a8:b5:ed:cc:
9e:62:94:79:9a:2c:f5:11:52:21:67:d7:6b:b7:c8:b4:90:a1:
75:1f:97:5d:2f:85:91:7e:1e:36:56:29:d4:cc:60:5e:47:e6:
2b:68:ce:73:1b:73:23:fc:a9:de:68:5d:7e:9f:82:9f:da:7c:
0f:97:56:b3:52:0e:c2:7d:36:9b:82:73:4a:1a:68:59:fc:9e:
47:7e:0f:62:da:ed:6a:33:01:01:75:fc:98:25:01:d6:ad:cb:
7c:ef:31:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:44 2023 by rpki-client on console-ams.rpki-client.org