Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/67B1ED5CF6D011ECA5870083C4F9AE02.roa
File: 67B1ED5CF6D011ECA5870083C4F9AE02.roa (raw, json)
Hash identifier: K9LSIk2Rp8e2fRxg/Yfs7t7Ay5PMWqlfz/P+gpmvCeM=
Subject key identifier: 80:DB:C8:C4:9C:C3:20:C8:33:BB:41:F7:21:3C:6A:D3:BD:13:62:2A
Certificate issuer: /CN=A91ACD72/serialNumber=2C19175325A5F36C0BB58F92119E65820C8FD57B
Certificate serial: 0242
Authority key identifier: 2C:19:17:53:25:A5:F3:6C:0B:B5:8F:92:11:9E:65:82:0C:8F:D5:7B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/67B1ED5CF6D011ECA5870083C4F9AE02.roa
Signing time: Tue 28 Jun 2022 10:52:30 +0000
ROA not before: Tue 28 Jun 2022 10:52:30 +0000
ROA not after: Thu 02 Mar 2023 00:00:00 +0000
asID: 8100
IP address blocks: 202.43.7.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 578 (0x242)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91ACD72/serialNumber=2C19175325A5F36C0BB58F92119E65820C8FD57B
Validity
Not Before: Jun 28 10:52:30 2022 GMT
Not After : Mar 2 00:00:00 2023 GMT
Subject: CN=62badd6d-c18b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:51:79:77:52:37:2d:81:7f:ad:e9:19:6e:41:
53:3b:59:66:c8:cf:89:62:18:29:6c:81:e4:4e:f3:
e4:a6:aa:01:d8:f4:e2:70:0e:d8:83:12:45:6a:fa:
1d:f5:a1:93:15:17:de:02:79:b3:90:7e:1b:52:38:
f5:e5:63:ad:00:0d:b9:94:43:7c:ed:d6:6f:b3:32:
70:01:cc:b9:76:3f:ff:7c:f2:18:8f:d7:71:53:56:
7b:b7:df:f0:e2:d7:5f:8f:25:38:ea:fd:71:a0:23:
7b:d0:97:50:c2:03:99:e1:ef:36:d3:30:a4:fe:fb:
f7:e4:c3:0d:fa:ed:18:94:e9:c4:92:09:af:35:19:
90:33:55:51:e2:38:ab:c9:7e:1c:73:4a:72:a1:3a:
61:3a:f8:7f:7a:5b:03:cd:df:6e:18:76:1d:1d:15:
46:fd:4a:53:fe:45:db:08:dc:d4:ef:e4:d3:4b:27:
35:53:12:3c:21:6e:0d:c0:5d:0e:e3:f4:0c:00:93:
4b:6f:99:5b:ee:1b:83:d1:bb:36:0d:03:9a:29:f5:
55:67:71:b7:ea:35:0b:a0:00:a8:12:ac:f5:ca:17:
7f:89:04:a4:b4:74:d4:b6:1b:f5:64:83:b6:61:71:
44:83:40:6b:be:4a:d9:83:22:0f:67:62:94:1a:c0:
32:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:DB:C8:C4:9C:C3:20:C8:33:BB:41:F7:21:3C:6A:D3:BD:13:62:2A
X509v3 Authority Key Identifier:
keyid:2C:19:17:53:25:A5:F3:6C:0B:B5:8F:92:11:9E:65:82:0C:8F:D5:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/67B1ED5CF6D011ECA5870083C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.43.7.0/24
Signature Algorithm: sha256WithRSAEncryption
87:ec:0c:43:87:25:e0:c0:eb:22:c2:81:7f:87:98:71:de:e7:
ca:4a:b2:e2:ef:84:26:6b:fd:3d:ca:8e:b1:93:e6:ac:40:00:
39:a4:48:28:a7:c3:40:44:5c:c5:7e:42:d7:cc:51:21:05:74:
04:21:8a:7b:62:98:0c:f9:5e:e6:d8:ff:d4:91:a9:b6:a8:6a:
51:e2:90:68:30:b6:c1:fa:2f:51:35:e3:c6:f8:9b:3f:9a:d0:
21:7c:03:0f:52:d1:ac:ef:c3:dd:33:2b:01:73:f3:ab:12:48:
f9:7a:0d:25:5f:c2:af:23:95:25:24:83:e6:89:3d:02:c9:75:
61:79:46:37:00:76:59:25:fb:28:78:d4:97:38:2a:1f:b0:1c:
38:03:3a:b8:e2:0c:68:12:da:fe:12:3e:da:05:f4:b5:9d:93:
d5:10:2d:3c:03:df:de:18:12:57:8b:78:2e:8e:2f:ea:20:d3:
7e:9b:03:f6:31:86:df:cc:0e:63:e1:1d:43:90:ee:48:5e:50:
b6:53:cc:49:c7:50:5e:80:ae:fe:b7:ee:67:24:68:67:e7:29:
81:f5:cf:b7:18:aa:94:ab:ad:4a:cf:11:f2:5e:cb:75:63:e6:
42:08:e1:32:62:b0:73:e2:26:f9:cd:14:b2:da:96:21:88:d8:
08:71:3f:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:37 2024 by rpki-client on console-fra.rpki-client.org