Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/655370A25CE211EEB02B297EC4F9AE02.roa
File: 655370A25CE211EEB02B297EC4F9AE02.roa (raw, json)
Hash identifier: d4lr2glvJ3sYA8VLN1iqeLwBUMw22awL7BzOApm0Plk=
Subject key identifier: CF:E8:45:37:77:12:4A:D6:A7:05:A7:60:3D:88:C8:2E:C1:75:C8:C5
Certificate issuer: /CN=A919D109/serialNumber=3EAEB4B516F703EA58F16E08DA8A667703FB5CAE
Certificate serial: 05
Authority key identifier: 3E:AE:B4:B5:16:F7:03:EA:58:F1:6E:08:DA:8A:66:77:03:FB:5C:AE
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pq60tRb3A-pY8W4I2opmdwP7XK4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/655370A25CE211EEB02B297EC4F9AE02.roa
Signing time: Wed 27 Sep 2023 03:03:13 +0000
ROA not before: Wed 27 Sep 2023 03:03:13 +0000
ROA not after: Wed 31 Jan 2024 00:00:00 +0000
asID: 55860
IP address blocks: 202.74.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5 (0x5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919D109/serialNumber=3EAEB4B516F703EA58F16E08DA8A667703FB5CAE
Validity
Not Before: Sep 27 03:03:13 2023 GMT
Not After : Jan 31 00:00:00 2024 GMT
Subject: CN=65139b70-3dcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:51:0f:bf:6f:d4:45:01:67:58:89:de:c6:f1:
1a:ab:45:6b:42:44:7e:e0:69:90:18:8d:93:74:67:
0d:b2:0f:f4:cc:99:36:f0:04:cb:87:bc:9d:a8:e0:
2d:a5:4c:b6:35:9c:a4:f6:f4:b1:4a:f7:93:92:8f:
8a:71:13:3d:72:c8:dc:d5:33:17:a7:be:49:b2:bc:
93:c6:e5:93:99:be:d2:01:f8:d3:7f:ef:5a:52:15:
03:ee:e4:02:65:11:0b:84:73:52:73:43:aa:44:f9:
7a:d0:e2:61:d1:62:fc:51:14:75:97:d5:d2:30:51:
46:c5:77:91:05:68:16:1b:23:fc:bb:6e:f7:b1:47:
df:9f:95:60:98:f2:25:56:94:b7:1a:39:00:9b:69:
8a:01:35:6a:4b:20:d5:a9:e0:c1:3c:a9:a1:df:ab:
80:8c:77:73:65:b0:b4:cf:50:2c:d3:6b:80:3e:a7:
4f:0c:64:b1:35:4f:52:18:3c:73:89:1c:c7:97:7e:
83:a1:af:8d:e2:42:53:27:bf:34:5d:bf:49:1f:1d:
37:f0:ed:f5:ad:66:03:30:97:71:1b:14:61:f0:b0:
11:1b:78:28:24:74:1a:78:e1:67:ae:74:7b:b2:78:
de:b9:26:2b:46:e9:ca:10:f1:62:c9:7c:68:4a:21:
31:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:E8:45:37:77:12:4A:D6:A7:05:A7:60:3D:88:C8:2E:C1:75:C8:C5
X509v3 Authority Key Identifier:
keyid:3E:AE:B4:B5:16:F7:03:EA:58:F1:6E:08:DA:8A:66:77:03:FB:5C:AE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pq60tRb3A-pY8W4I2opmdwP7XK4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/655370A25CE211EEB02B297EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.74.39.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:00:90:46:d1:84:94:99:0d:ce:05:b3:1a:46:f5:2d:76:82:
cf:13:3f:9e:6c:c8:6f:bf:9e:07:fb:e8:32:82:71:c8:b3:c1:
7f:81:02:19:6c:89:fb:4c:cb:db:06:4e:10:1f:c3:e7:af:23:
d4:3d:a2:8a:70:12:e8:bc:66:a7:97:ca:a9:dc:39:cc:5d:d0:
a2:68:c4:f1:a6:ee:5e:94:32:97:48:dd:a7:77:c8:9b:7b:64:
de:ef:7f:6c:06:e4:da:a5:34:f8:df:8a:8d:2d:76:ba:fe:5f:
02:b9:a2:f9:76:43:44:99:3d:21:cc:5e:fa:17:32:08:3a:3b:
ea:2d:e6:0b:b9:59:06:ff:79:57:11:2f:7f:7a:ec:48:bd:d9:
f0:b1:67:c7:d8:ac:e8:8c:1a:71:2e:d0:c2:63:8e:1d:91:36:
f3:e1:c3:fe:cc:5b:58:a7:78:01:d1:73:7c:1b:e0:dd:6d:b2:
5f:a1:6d:e2:bb:a5:36:d0:9a:a1:2e:f9:f9:21:8d:5c:05:87:
ee:f9:6a:5d:6f:52:b4:12:b8:12:ea:18:77:20:66:40:c7:35:
a6:b8:ac:3f:0b:15:08:15:50:f4:1f:01:83:e9:f9:49:aa:4a:
2c:ab:58:28:9e:16:d0:51:fa:c9:6c:13:76:b0:09:b2:56:e4:
02:b2:34:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:35 2024 by rpki-client on console-fra.rpki-client.org