Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/807E22A8D00811ED8E376354C4F9AE02.roa
File: 807E22A8D00811ED8E376354C4F9AE02.roa (raw, json)
Hash identifier: pNe+IF71baHh0vcbER/62Kv3odkkICkeVLs/2WtCH5Q=
Subject key identifier: 4F:0A:96:FD:C2:BF:77:02:E9:0E:67:7D:D5:2C:90:C1:19:15:39:50
Certificate issuer: /CN=A91B1A23/serialNumber=27C3900FBD77EE22CB71E9A90E81574CDE4644AD
Certificate serial: 05B6
Authority key identifier: 27:C3:90:0F:BD:77:EE:22:CB:71:E9:A9:0E:81:57:4C:DE:46:44:AD
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J8OQD7137iLLcempDoFXTN5GRK0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/807E22A8D00811ED8E376354C4F9AE02.roa
Signing time: Fri 31 Mar 2023 21:10:45 +0000
ROA not before: Fri 31 Mar 2023 21:10:45 +0000
ROA not after: Sun 31 Mar 2024 00:00:00 +0000
asID: 45250
IP address blocks: 203.81.177.0/24 maxlen: 24
203.81.178.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1462 (0x5b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B1A23/serialNumber=27C3900FBD77EE22CB71E9A90E81574CDE4644AD
Validity
Not Before: Mar 31 21:10:45 2023 GMT
Not After : Mar 31 00:00:00 2024 GMT
Subject: CN=64274c55-0a3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:80:5c:2b:ac:21:e5:b7:39:e4:78:32:13:95:
bc:96:be:04:f8:59:b5:d6:1d:8d:80:5a:bf:39:59:
40:40:c5:21:3e:ae:87:fc:a8:e9:87:02:88:67:f4:
4d:de:a3:83:6f:ff:2d:a2:5b:d8:3c:64:0a:32:84:
21:32:7f:57:b3:4b:ca:8b:89:f4:f2:10:f5:ef:2d:
fa:8f:db:97:8c:b0:30:cd:13:ea:6a:a3:ef:1f:e9:
b7:e6:f4:ea:77:e8:8a:ce:7f:83:45:ee:bb:e9:f9:
3b:ff:7f:2d:92:03:fe:48:93:d8:43:ea:9f:1f:b9:
45:9e:ad:7e:c3:72:fd:6e:35:b0:64:f5:d8:7e:36:
63:b1:67:11:81:1d:92:73:f9:0b:b4:2c:09:7b:61:
21:c3:32:a1:7a:aa:90:63:67:eb:05:99:a5:f9:fb:
97:1d:26:56:4e:46:e9:c5:ae:04:83:0f:19:03:e0:
7c:3c:20:ca:84:bf:33:ad:f6:4c:92:eb:9d:cb:72:
b8:ab:ee:b9:9f:d7:c3:cc:3f:b3:ba:89:ad:5f:8c:
42:de:9e:2f:e5:fb:b2:a2:ed:ab:13:cf:8c:87:10:
56:8a:34:08:ed:9d:d0:45:db:88:67:b3:91:a3:4d:
60:48:1b:71:c2:2b:0a:a0:2b:f2:6b:d0:dd:56:db:
29:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:0A:96:FD:C2:BF:77:02:E9:0E:67:7D:D5:2C:90:C1:19:15:39:50
X509v3 Authority Key Identifier:
keyid:27:C3:90:0F:BD:77:EE:22:CB:71:E9:A9:0E:81:57:4C:DE:46:44:AD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J8OQD7137iLLcempDoFXTN5GRK0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/807E22A8D00811ED8E376354C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.81.177.0-203.81.178.255
Signature Algorithm: sha256WithRSAEncryption
80:a3:5e:ec:9c:1c:3e:46:99:7d:83:c5:8e:39:51:a5:3b:ae:
a5:46:da:25:c1:32:a4:b1:4b:34:2e:9b:7e:0b:f7:c6:ce:6a:
de:78:93:a4:4a:38:41:4c:6a:1e:a9:23:54:22:29:ea:5d:14:
07:1c:b1:e3:ec:68:4e:98:fd:c3:b6:73:84:8e:b3:8c:3f:e5:
5f:48:e9:ca:ca:63:ef:28:95:4c:84:cc:a2:69:80:4d:46:1d:
85:2d:0b:fe:1f:27:d6:51:b4:63:82:93:88:9a:d7:39:3a:83:
a4:26:d1:b7:49:40:50:54:07:08:51:eb:d2:d2:75:68:b1:93:
d3:5b:d4:07:68:06:34:60:f2:1f:37:d6:e0:a2:68:2c:86:43:
a4:a7:35:1e:ee:c3:89:39:c3:b1:7c:fa:38:bd:9e:6c:2a:d7:
9e:28:9d:49:00:59:1a:5d:61:45:f1:6d:48:73:5b:82:fb:11:
77:c4:ea:76:36:db:42:87:8d:25:79:20:ac:0d:bb:8d:f6:ad:
a2:9e:d5:17:04:32:f4:d2:68:0a:48:db:51:69:18:b8:01:fd:
08:e8:18:d5:ae:90:63:45:c6:f1:89:d2:0f:6a:85:44:f6:0c:
67:98:3d:15:d3:1d:73:8f:fa:7b:fc:51:38:3d:e5:4f:a6:70:
b5:25:19:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:37 2024 by rpki-client on console-fra.rpki-client.org