Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9194D56/E5D407FE86B311E598F37F1AC4F9AE02/501A44321E7111EDBB604584C4F9AE02.roa
File: 501A44321E7111EDBB604584C4F9AE02.roa (raw, json)
Hash identifier: GDpbisS2LoavFKiMfb7B/+KDhOmeHVYuoOPFJgEfk1w=
Subject key identifier: 3D:76:67:1E:81:D8:49:81:E3:15:CB:7D:DF:D9:AD:41:B7:DA:0E:50
Certificate issuer: /CN=A9194D56/serialNumber=7C5B7414E3CC804059BCA86CC5163A0743E41C85
Certificate serial: 2113
Authority key identifier: 7C:5B:74:14:E3:CC:80:40:59:BC:A8:6C:C5:16:3A:07:43:E4:1C:85
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fFt0FOPMgEBZvKhsxRY6B0PkHIU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9194D56/E5D407FE86B311E598F37F1AC4F9AE02/501A44321E7111EDBB604584C4F9AE02.roa
Signing time: Wed 17 Aug 2022 21:12:34 +0000
ROA not before: Wed 17 Aug 2022 21:12:34 +0000
ROA not after: Fri 30 Dec 2022 00:00:00 +0000
asID: 24016
IP address blocks: 103.197.164.0/22 maxlen: 24
115.84.128.0/19 maxlen: 24
202.21.176.0/20 maxlen: 24
220.158.220.0/22 maxlen: 24
2401:8300::/32 maxlen: 40
2401:8300:f000::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8467 (0x2113)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9194D56/serialNumber=7C5B7414E3CC804059BCA86CC5163A0743E41C85
Validity
Not Before: Aug 17 21:12:34 2022 GMT
Not After : Dec 30 00:00:00 2022 GMT
Subject: CN=62fd59c2-2669
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:7e:2d:0f:a0:40:45:3e:81:ae:21:ab:4f:97:
e5:fe:05:9f:49:5f:0f:c6:81:96:91:69:71:13:5a:
1a:18:24:07:0b:11:1d:ee:22:e2:ba:74:a9:fa:55:
ec:42:7d:6f:a0:18:e6:ac:c1:ac:7f:50:96:19:61:
89:5c:b0:18:01:b3:97:9d:7d:5d:09:73:20:d9:63:
f2:4b:af:15:86:5d:03:f8:15:5f:e3:ac:b2:8e:b9:
1b:2e:21:c3:f2:ed:56:6a:10:04:b0:5a:2b:1b:d4:
42:4e:35:7f:30:e6:fa:42:e5:c9:9b:8e:2e:fb:95:
e4:a8:11:c7:34:f6:cd:fc:12:84:c9:8f:54:7a:08:
a7:5a:fd:6f:9f:05:2b:fc:fd:0f:31:e3:fc:d2:a0:
42:e9:bd:77:fa:89:86:9e:95:94:3c:3f:8f:51:21:
5e:f4:09:41:60:7a:45:0d:db:7c:3a:f5:c4:5b:41:
c6:8b:95:6a:b1:9c:c6:16:52:7a:b3:0e:8d:4c:6d:
1f:85:02:e6:c7:d7:1a:d7:85:74:53:97:3e:36:e7:
bd:8c:61:13:c9:47:b4:d2:47:d5:91:9f:a1:31:1a:
f1:1a:ab:98:f7:b4:a9:fc:bd:af:8c:46:3f:60:db:
98:50:6b:8e:b1:a9:20:ed:25:41:90:a6:83:1d:d8:
43:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:76:67:1E:81:D8:49:81:E3:15:CB:7D:DF:D9:AD:41:B7:DA:0E:50
X509v3 Authority Key Identifier:
keyid:7C:5B:74:14:E3:CC:80:40:59:BC:A8:6C:C5:16:3A:07:43:E4:1C:85
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9194D56/E5D407FE86B311E598F37F1AC4F9AE02/fFt0FOPMgEBZvKhsxRY6B0PkHIU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fFt0FOPMgEBZvKhsxRY6B0PkHIU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194D56/E5D407FE86B311E598F37F1AC4F9AE02/501A44321E7111EDBB604584C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.197.164.0/22
115.84.128.0/19
202.21.176.0/20
220.158.220.0/22
IPv6:
2401:8300::/32
Signature Algorithm: sha256WithRSAEncryption
88:77:11:25:95:36:e6:71:70:d7:2c:78:b2:e7:90:1b:95:19:
9f:b4:51:73:ac:fb:2c:80:ea:10:7a:be:f6:1b:e2:77:d0:98:
0f:84:f7:93:74:33:5e:a9:33:7c:af:1d:b6:bf:9d:fc:57:5c:
d2:bb:94:29:9e:cd:1e:92:bb:a0:65:86:c1:83:e4:5f:16:b2:
20:a0:77:13:2a:83:e9:45:5b:66:09:f0:24:8a:e9:07:f5:5a:
79:82:9c:4a:ac:f8:7b:f3:02:31:a6:f5:54:c9:77:60:74:3a:
ef:4c:e7:e1:b1:ee:73:53:51:17:71:ea:75:51:f7:a9:b4:5d:
37:5e:2e:44:48:2f:12:0b:9b:fc:8a:74:49:1f:58:16:fc:d6:
57:fc:17:3a:11:ec:0a:ec:89:eb:94:4d:38:5e:47:eb:d6:5c:
ef:2d:2e:a3:50:4a:72:13:01:ca:65:ec:9f:df:a3:65:cf:ba:
2d:2a:c1:b1:e7:01:a4:f8:52:75:bd:d3:7b:0e:5e:11:cf:17:
06:da:30:31:04:3c:ea:de:29:72:fd:bb:e9:2b:95:42:3f:fa:
92:1f:d3:2d:f8:ca:a5:15:7b:1f:ab:8e:d9:78:04:ad:60:4a:
bb:a0:dd:b1:d3:32:46:8d:df:b4:d7:5f:37:82:46:8a:31:84:
5d:7b:9e:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:47 2024 by rpki-client on console-ams.rpki-client.org