Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917E1FE/386235F06F8811EBA86BF64AC4F9AE02/6A6F91B458E811EDA305A22FC4F9AE02.roa
File: 6A6F91B458E811EDA305A22FC4F9AE02.roa (raw, json)
Hash identifier: uZazji4YO7g7F6Ih0GQeumlkJ7CBeeu3TNnKCcvJu+0=
Subject key identifier: 55:6B:C5:4B:13:13:2D:84:22:51:72:48:0B:F9:47:2C:0B:E2:6D:9D
Certificate issuer: /CN=A917E1FE/serialNumber=EDEB96F04C8D3EDCCBEEBA40C4242922A8136B53
Certificate serial: 04D1
Authority key identifier: ED:EB:96:F0:4C:8D:3E:DC:CB:EE:BA:40:C4:24:29:22:A8:13:6B:53
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7euW8EyNPtzL7rpAxCQpIqgTa1M.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917E1FE/386235F06F8811EBA86BF64AC4F9AE02/6A6F91B458E811EDA305A22FC4F9AE02.roa
Signing time: Mon 31 Oct 2022 06:51:16 +0000
ROA not before: Mon 31 Oct 2022 06:51:16 +0000
ROA not after: Sun 30 Jul 2023 00:00:00 +0000
asID: 137409
IP address blocks: 36.255.198.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1233 (0x4d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917E1FE/serialNumber=EDEB96F04C8D3EDCCBEEBA40C4242922A8136B53
Validity
Not Before: Oct 31 06:51:16 2022 GMT
Not After : Jul 30 00:00:00 2023 GMT
Subject: CN=635f7064-18ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:f4:17:3a:d1:f2:cd:79:13:41:92:d4:58:b4:
89:c3:ea:35:e4:17:d7:57:9c:41:79:47:36:9d:e7:
b4:7d:5b:b5:b4:0a:5a:55:9e:87:7c:6f:d5:76:85:
82:92:86:a6:91:b8:7f:d8:a3:c7:1a:20:19:a1:4c:
a8:37:31:b8:d9:28:82:34:04:02:41:8c:ed:18:76:
2d:21:12:67:73:fa:89:4a:8b:6a:cb:d1:0f:be:80:
60:ea:69:96:56:4e:e0:8a:4c:b3:a1:d1:c0:10:5e:
6f:36:81:a3:eb:d0:59:5c:c3:b9:d7:59:9e:24:4a:
e3:c2:d3:4f:7b:f5:cf:1b:46:21:ba:94:60:91:50:
4c:74:43:dc:10:46:8a:e5:24:d9:0b:b6:b6:bb:33:
f6:a3:0d:e5:e8:40:41:53:30:64:8d:88:6e:98:7e:
a3:c0:3c:cd:10:48:ac:8a:1b:13:1a:97:38:03:d2:
ed:28:b3:45:28:b3:97:77:e4:b4:0e:97:03:08:d6:
4a:78:39:e9:ff:9c:c1:ee:b2:0d:d0:18:2f:a3:12:
a9:27:ff:65:c5:64:b2:40:ee:54:af:9c:99:8c:64:
75:9f:ae:2b:00:83:5e:3f:21:cc:1d:12:ff:7d:5d:
a5:fd:e3:70:b4:3e:1e:93:03:5d:34:31:64:6b:05:
5e:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:6B:C5:4B:13:13:2D:84:22:51:72:48:0B:F9:47:2C:0B:E2:6D:9D
X509v3 Authority Key Identifier:
keyid:ED:EB:96:F0:4C:8D:3E:DC:CB:EE:BA:40:C4:24:29:22:A8:13:6B:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917E1FE/386235F06F8811EBA86BF64AC4F9AE02/7euW8EyNPtzL7rpAxCQpIqgTa1M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7euW8EyNPtzL7rpAxCQpIqgTa1M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E1FE/386235F06F8811EBA86BF64AC4F9AE02/6A6F91B458E811EDA305A22FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
36.255.198.0/24
Signature Algorithm: sha256WithRSAEncryption
72:4e:d1:be:7f:76:22:0d:cc:db:af:e9:64:c3:da:41:5e:c3:
c5:27:8d:33:62:5d:c1:1f:bd:a4:0f:5c:3a:63:db:e5:97:50:
03:e5:f0:99:17:c8:bd:99:94:98:bd:a8:1a:1d:65:41:a2:83:
11:d8:15:40:1a:9e:9e:93:75:ea:da:92:4b:c6:78:72:3d:af:
04:e3:9e:d7:95:a6:cd:a2:c7:c6:0e:b8:8a:14:4f:61:87:0e:
39:28:b1:5a:7e:e3:8f:43:11:5d:ca:1a:2d:86:92:01:36:24:
d6:fb:0e:43:53:77:a7:b0:48:67:f3:d8:e9:4e:38:17:a1:cb:
93:67:b5:8e:74:17:06:45:2a:c9:e7:33:f3:38:11:d7:e4:e3:
c8:25:ae:6d:10:05:b4:a0:c2:31:11:4d:63:e3:4e:7a:34:93:
23:8b:55:f7:66:69:62:06:5f:1f:cc:0c:4f:d1:c4:6b:f4:69:
e2:48:f7:85:6d:33:de:c4:ef:ed:d9:da:52:1a:9f:c1:a1:89:
c7:af:ca:c4:fb:1c:b0:1b:d3:a6:e7:f1:05:38:e3:11:7d:73:
c0:ec:7c:03:39:31:a6:e4:d1:f7:d6:0e:4d:5a:60:46:d1:5e:
f0:c8:d0:5f:a6:74:a3:9c:3e:bf:78:78:76:c5:91:1b:d4:4d:
ee:78:f7:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:13 2024 by rpki-client on console-fra.rpki-client.org