Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7B68/53A7B92CB0A511EA8F92ED17C4F9AE02/BA943D98D91811ECB93C4C3BC4F9AE02.roa
File: BA943D98D91811ECB93C4C3BC4F9AE02.roa (raw, json)
Hash identifier: IpFGA9GJuQ7eIZMV4IFT8rSWyBirp/9WiPviJQcHrf8=
Subject key identifier: B4:A6:09:9A:F6:23:AF:17:27:82:6C:2B:54:D1:53:80:74:85:F6:4F
Certificate issuer: /CN=A91C7B68/serialNumber=C284BA8A88A02116BEE43410E039E909E3029D0D
Certificate serial: 0618
Authority key identifier: C2:84:BA:8A:88:A0:21:16:BE:E4:34:10:E0:39:E9:09:E3:02:9D:0D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/woS6ioigIRa-5DQQ4DnpCeMCnQ0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C7B68/53A7B92CB0A511EA8F92ED17C4F9AE02/BA943D98D91811ECB93C4C3BC4F9AE02.roa
Signing time: Thu 09 Jun 2022 10:33:12 +0000
ROA not before: Thu 09 Jun 2022 10:33:12 +0000
ROA not after: Sun 30 Jul 2023 00:00:00 +0000
asID: 58715
IP address blocks: 144.48.115.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1560 (0x618)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C7B68/serialNumber=C284BA8A88A02116BEE43410E039E909E3029D0D
Validity
Not Before: Jun 9 10:33:12 2022 GMT
Not After : Jul 30 00:00:00 2023 GMT
Subject: CN=62a1cc68-e57a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:e3:d9:31:58:a9:1a:a5:8f:62:9e:ff:32:45:
f0:13:4b:77:20:c2:f7:01:08:09:d8:79:43:03:1e:
1a:0b:cc:bc:76:e4:5a:af:d7:78:4b:9e:05:d5:e9:
9c:5d:54:08:05:a7:a2:db:96:63:21:30:79:94:01:
5f:e7:4f:66:51:62:bc:05:9f:0a:d8:26:ad:09:79:
b7:08:9f:41:7a:ff:b2:5d:eb:00:59:d2:45:9f:3c:
3d:eb:03:c4:ac:88:c4:94:7e:db:d7:0d:0a:87:72:
89:87:f3:45:81:7c:2a:98:5a:a7:1d:7a:e8:1c:7b:
42:73:b7:e7:d0:1d:85:c4:77:c7:39:ee:e7:9c:14:
3f:38:76:0c:6c:9c:f0:27:7b:33:44:cc:11:2a:74:
6f:fc:f4:b2:3f:7c:d5:f4:a5:88:b4:73:38:82:73:
1c:b7:e1:13:24:06:ba:0f:31:d4:5e:b5:38:99:2d:
94:1b:73:86:d4:f3:48:85:34:fb:2f:94:4a:c8:02:
0e:da:b1:43:cc:2a:18:2b:95:12:f4:93:51:fc:49:
ff:6c:ea:10:36:1b:8a:67:33:a5:9a:da:80:b6:fc:
55:29:e2:a5:46:d5:68:ae:ee:74:88:a4:df:5f:e6:
c0:97:c6:ce:db:66:5d:15:96:f5:29:2d:99:de:32:
2b:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:A6:09:9A:F6:23:AF:17:27:82:6C:2B:54:D1:53:80:74:85:F6:4F
X509v3 Authority Key Identifier:
keyid:C2:84:BA:8A:88:A0:21:16:BE:E4:34:10:E0:39:E9:09:E3:02:9D:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C7B68/53A7B92CB0A511EA8F92ED17C4F9AE02/woS6ioigIRa-5DQQ4DnpCeMCnQ0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/woS6ioigIRa-5DQQ4DnpCeMCnQ0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7B68/53A7B92CB0A511EA8F92ED17C4F9AE02/BA943D98D91811ECB93C4C3BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
144.48.115.0/24
Signature Algorithm: sha256WithRSAEncryption
52:8a:cc:5c:66:0b:c3:3b:d0:6c:93:4b:42:70:01:b5:0c:57:
6a:38:2e:db:3d:d0:fc:e7:db:55:9e:37:fe:8d:3c:10:9a:7b:
83:46:a1:71:2d:e2:7f:c6:e9:a1:74:80:4c:e8:de:f9:09:da:
a5:ac:fa:ca:06:c5:bd:de:5b:7d:5a:e3:91:21:16:e1:96:7f:
dc:9a:4d:27:0d:eb:0f:a7:ac:44:08:3b:5c:e7:68:e9:40:db:
af:c8:49:cd:70:1c:21:07:76:cd:00:f2:9b:54:e7:1b:ce:03:
f5:e8:68:6d:50:90:b4:94:b5:b2:ae:61:d2:6c:4e:d4:65:99:
e9:fa:dd:ad:fd:e4:39:9d:a0:28:85:99:ea:4e:0c:88:f4:a2:
74:69:03:aa:46:05:7d:76:5a:2b:83:26:76:2e:ab:06:54:36:
fc:c1:3a:89:4c:4c:4d:a4:00:8e:4f:bc:42:ed:dc:33:ca:3e:
e2:6d:0a:f1:f3:27:33:8c:31:c8:18:a4:ff:14:65:bd:aa:a5:
a5:2f:2e:7a:dc:18:03:a0:b9:c6:60:82:ea:8d:b9:bc:ed:45:
21:c3:19:4a:11:23:d3:de:28:24:20:86:f7:92:f4:62:28:e7:
06:19:45:0c:6c:37:e4:4d:fa:02:bb:b3:14:1e:90:30:59:1d:
db:73:57:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:40 2024 by rpki-client on console-fra.rpki-client.org