Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/97046604535911EC90F6AF78C4F9AE02.roa
File: 97046604535911EC90F6AF78C4F9AE02.roa (raw, json)
Hash identifier: huXuM9Dc+AQGyo/kmnLMKOB8cDNSOtPechQ9nLMmxlw=
Subject key identifier: 80:E5:89:E1:B4:0C:9F:6A:F5:E4:EE:DC:B5:62:91:CB:44:30:E0:EE
Certificate issuer: /CN=A91ACD72/serialNumber=2C19175325A5F36C0BB58F92119E65820C8FD57B
Certificate serial: B5
Authority key identifier: 2C:19:17:53:25:A5:F3:6C:0B:B5:8F:92:11:9E:65:82:0C:8F:D5:7B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/97046604535911EC90F6AF78C4F9AE02.roa
Signing time: Wed 22 Dec 2021 03:42:13 +0000
ROA not before: Wed 22 Dec 2021 03:42:13 +0000
ROA not after: Thu 02 Mar 2023 00:00:00 +0000
asID: 61317
IP address blocks: 202.43.4.0/22 maxlen: 22
202.43.4.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 181 (0xb5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91ACD72/serialNumber=2C19175325A5F36C0BB58F92119E65820C8FD57B
Validity
Not Before: Dec 22 03:42:13 2021 GMT
Not After : Mar 2 00:00:00 2023 GMT
Subject: CN=61c29e95-6894
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:3f:18:b6:92:d0:cd:da:a6:de:3d:3b:4a:80:
c1:2b:a5:94:0d:05:42:cb:70:d0:44:62:f9:32:97:
de:84:fe:50:cd:2b:59:c9:19:30:18:ea:b1:fa:12:
44:7a:8c:60:e3:f7:93:af:94:bf:6e:18:17:eb:16:
7a:86:d7:ca:de:ee:fd:0f:0c:21:87:4a:ac:f4:77:
72:bf:db:c2:cf:3b:eb:fb:12:68:cd:e5:4e:eb:77:
dc:74:b5:1b:ab:cc:0d:8b:ed:de:8f:12:8e:1a:b0:
5c:81:f0:28:20:1b:53:fc:4d:26:7b:b6:f7:8f:fb:
98:ad:cb:75:1f:90:aa:ad:5d:fd:ab:d3:65:bc:c3:
72:d7:c1:c4:7e:47:1c:32:83:cb:5f:d9:d8:c4:a7:
7b:d4:7a:9f:4f:dc:f5:b4:61:0e:d1:f9:e5:e2:4b:
f2:c9:a4:37:f7:ca:3b:b7:b4:6a:0f:3c:49:9a:c8:
19:d5:c6:b7:16:08:2b:cb:7d:fb:b6:ab:79:ec:fa:
9e:3e:fb:1b:1f:55:41:8d:50:8f:83:80:d2:ee:90:
9f:90:90:b3:4a:cd:a9:2a:b4:55:2d:61:a2:db:71:
5a:55:fa:3c:f6:41:97:46:12:48:0d:4f:b7:e8:19:
09:74:8d:ed:4b:ea:4d:f8:bc:05:b6:8e:5d:ef:31:
c1:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:E5:89:E1:B4:0C:9F:6A:F5:E4:EE:DC:B5:62:91:CB:44:30:E0:EE
X509v3 Authority Key Identifier:
keyid:2C:19:17:53:25:A5:F3:6C:0B:B5:8F:92:11:9E:65:82:0C:8F:D5:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/97046604535911EC90F6AF78C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.43.4.0/22
Signature Algorithm: sha256WithRSAEncryption
11:6c:87:7c:c3:bf:2c:03:4d:41:50:92:aa:8a:bd:51:ab:84:
3e:83:e7:60:37:02:18:c5:6d:4e:f2:19:70:c3:78:b2:b2:3a:
65:4c:4b:6e:67:1e:9f:45:9f:74:fb:ce:b2:95:73:b2:76:54:
b6:da:bb:d5:0e:bd:bc:03:88:1d:99:9e:41:07:6e:a6:d7:05:
70:27:8e:8c:7e:65:48:f1:4b:12:00:54:9c:f6:51:ab:82:a1:
49:c2:bd:12:a7:1e:19:51:9d:8c:7e:c9:53:cd:fd:78:25:94:
a7:78:b8:0f:3a:3c:4a:35:0e:55:fe:e1:e4:bd:df:be:9e:90:
de:2a:f6:93:b7:a0:9d:af:cd:45:d7:78:0b:8e:99:4d:be:6f:
5f:9b:0a:f6:50:82:f3:20:48:9e:fc:c2:57:33:75:d4:36:54:
c6:aa:d3:5f:07:c1:4f:84:45:d5:62:04:a3:60:35:9a:c2:f0:
83:6c:f3:b5:1d:b5:b8:b7:7a:9b:da:12:d5:fb:87:39:5c:07:
ae:39:e5:94:d7:de:32:84:27:9f:f0:7a:3e:39:13:68:c8:cb:
57:d5:8e:a4:0d:1e:0b:7e:b6:27:06:55:57:ea:b4:09:b2:69:
29:4b:64:b9:66:13:ec:aa:58:d2:c1:43:49:d7:a1:27:34:90:
f6:6c:1f:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:55 2024 by rpki-client on console-ams.rpki-client.org