Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91853D3/6482DB7C000A11EC8C287252C4F9AE02/98FDA14A45F911ECB5A0F552C4F9AE02.roa
File: 98FDA14A45F911ECB5A0F552C4F9AE02.roa (raw, json)
Hash identifier: jilXe2YCIQBcwgfpjmIRaOlC1U13Vw1zLrbynpT1NN0=
Subject key identifier: 75:CB:26:41:2D:DC:CB:75:4A:7F:FA:5B:A4:41:FD:4E:3B:06:31:21
Certificate issuer: /CN=A91853D3/serialNumber=4E1B840F5C66016CED7E62EEC61B8322A321B6B6
Certificate serial: B0
Authority key identifier: 4E:1B:84:0F:5C:66:01:6C:ED:7E:62:EE:C6:1B:83:22:A3:21:B6:B6
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ThuED1xmAWztfmLuxhuDIqMhtrY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91853D3/6482DB7C000A11EC8C287252C4F9AE02/98FDA14A45F911ECB5A0F552C4F9AE02.roa
Signing time: Mon 15 Nov 2021 09:51:27 +0000
ROA not before: Mon 15 Nov 2021 09:51:27 +0000
ROA not after: Fri 01 Jul 2022 00:00:00 +0000
asID: 55824
IP address blocks: 144.16.112.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176 (0xb0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91853D3/serialNumber=4E1B840F5C66016CED7E62EEC61B8322A321B6B6
Validity
Not Before: Nov 15 09:51:27 2021 GMT
Not After : Jul 1 00:00:00 2022 GMT
Subject: CN=61922d9e-ca71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:31:05:88:21:8d:b7:71:48:be:86:9c:3f:52:
d9:ef:73:a1:7c:9c:cc:1a:73:69:36:66:95:a9:dc:
39:ca:08:a2:00:e8:b6:c0:c3:cc:ac:19:83:13:bc:
2b:78:da:97:84:3c:ce:3e:88:37:d1:53:57:97:15:
72:2b:45:02:c5:37:29:15:04:1f:bd:32:81:91:5e:
b1:f1:fc:f8:7e:63:e1:81:d7:05:d4:9b:f9:df:16:
74:27:ed:d6:3e:53:2a:6e:11:57:07:d5:a6:07:fc:
69:6c:35:c7:66:93:07:4f:53:4d:ed:9a:15:c9:ea:
83:03:48:15:11:af:91:c1:85:31:ad:d0:b6:39:a3:
f4:07:c2:2e:22:97:d4:a9:0b:ba:38:82:f0:d4:c4:
ab:08:8f:0f:4e:70:2f:f3:e0:28:e3:60:bd:40:4e:
52:6e:14:9b:e7:d3:ec:61:e5:49:7e:e1:0a:f6:bf:
40:2d:ec:d3:59:1e:6c:94:e2:23:ec:d4:d1:28:e2:
c7:b3:2d:50:21:ef:87:3d:d2:07:80:32:7b:b9:c6:
78:fe:b3:43:0b:81:fc:9f:17:88:21:8c:3f:54:1b:
ce:5d:9e:52:8c:d6:5e:da:85:5f:7c:aa:7e:a9:2f:
f5:3a:f7:ff:24:4f:38:cc:95:85:ac:3b:43:55:99:
e1:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:CB:26:41:2D:DC:CB:75:4A:7F:FA:5B:A4:41:FD:4E:3B:06:31:21
X509v3 Authority Key Identifier:
keyid:4E:1B:84:0F:5C:66:01:6C:ED:7E:62:EE:C6:1B:83:22:A3:21:B6:B6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91853D3/6482DB7C000A11EC8C287252C4F9AE02/ThuED1xmAWztfmLuxhuDIqMhtrY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ThuED1xmAWztfmLuxhuDIqMhtrY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91853D3/6482DB7C000A11EC8C287252C4F9AE02/98FDA14A45F911ECB5A0F552C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
144.16.112.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:b7:9d:aa:42:20:d4:68:c6:6a:9a:98:73:a5:f2:13:80:19:
9a:b5:eb:85:83:9d:25:18:02:1b:69:d3:28:b9:bd:42:42:20:
d3:a9:4a:50:22:df:fd:6a:84:0a:50:2a:e3:80:f3:43:44:6c:
d3:c8:a6:b3:0c:c9:1e:95:60:60:d0:90:80:bf:72:bf:12:b0:
54:41:3b:dd:4f:e2:c6:a0:9f:d8:95:9e:bf:e1:8c:76:d2:e9:
02:44:cb:5c:e9:21:57:7b:f8:00:b7:19:70:f8:dc:ff:ec:c1:
40:ec:aa:59:95:2c:de:2c:61:07:d7:2b:c5:53:c8:6e:6e:0d:
6a:c8:4e:53:01:81:18:1e:92:5f:22:18:09:ec:08:50:bf:c3:
a3:d1:0f:70:a2:c9:e1:12:af:8e:e7:b6:30:a7:b0:38:05:15:
01:55:b5:ef:85:05:dd:81:0b:68:25:3c:1d:43:5a:9d:20:e8:
98:a1:09:55:7b:84:a9:c1:35:8d:9f:e8:47:10:0c:74:e5:42:
32:37:c1:88:cb:5a:23:6c:26:1d:81:2f:4e:33:03:a1:f0:39:
fc:2b:29:cf:f3:ce:28:d2:db:e1:a8:cc:b0:40:1a:10:7e:4c:
5a:ae:f8:f1:33:f2:53:c3:29:75:e6:1f:5b:54:51:d5:de:05:
2c:1e:b8:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:24 2024 by rpki-client on console-ams.rpki-client.org