Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE3C4/6DD9F3347F9711EBADDC5F15C4F9AE02/7CF6D2DE807211EBB51AEA81C4F9AE02.roa
File: 7CF6D2DE807211EBB51AEA81C4F9AE02.roa (raw, json)
Hash identifier: rVybKYJcXsFlxrzjc/e7iZUuw7o6ECvpfk7eqzK50Ts=
Subject key identifier: E8:E4:D4:9A:C3:72:40:F6:3C:1E:58:30:D2:9C:E8:9A:7F:91:3F:F9
Certificate issuer: /CN=A91CE3C4/serialNumber=B6FD6F4B4FB7C3247C599299B2E8BAFB5A8BBA72
Certificate serial: 70
Authority key identifier: B6:FD:6F:4B:4F:B7:C3:24:7C:59:92:99:B2:E8:BA:FB:5A:8B:BA:72
Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/tv1vS0-3wyR8WZKZsui6-1qLunI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CE3C4/6DD9F3347F9711EBADDC5F15C4F9AE02/7CF6D2DE807211EBB51AEA81C4F9AE02.roa
Signing time: Thu 29 Apr 2021 13:17:57 +0000
ROA not before: Thu 29 Apr 2021 13:17:57 +0000
ROA not after: Fri 01 Jul 2022 00:00:00 +0000
asID: 17477
IP address blocks: 194.193.0.0/19 maxlen: 21
194.193.0.0/20 maxlen: 24
194.193.16.0/21 maxlen: 24
194.193.24.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112 (0x70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CE3C4/serialNumber=B6FD6F4B4FB7C3247C599299B2E8BAFB5A8BBA72
Validity
Not Before: Apr 29 13:17:57 2021 GMT
Not After : Jul 1 00:00:00 2022 GMT
Subject: CN=608ab204-aaaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f8:85:ac:37:2f:0b:21:1a:94:1a:40:84:17:
6a:af:d5:f3:e8:47:35:8f:f9:89:b5:9d:64:0b:02:
f2:d0:e9:5a:86:87:fd:43:d0:9d:d3:36:7e:d5:ec:
9f:28:47:4c:68:1c:0c:66:b5:40:b9:0c:e1:7a:da:
c2:ed:bd:c8:ac:f2:e4:bb:fa:46:00:1b:e6:93:b7:
c4:74:fb:2e:68:42:c4:e6:a1:8f:ff:28:f6:2c:c7:
09:20:6d:da:ac:8e:82:8a:21:ea:43:02:a5:c6:3b:
6b:0f:5e:d0:3c:94:37:f1:b3:14:ab:90:ca:c0:6e:
1b:78:f6:56:f9:2c:44:89:97:01:8b:74:a8:4e:71:
a3:af:8b:22:97:a3:b8:56:19:37:9c:bd:b5:a2:ac:
7c:14:28:3e:92:c1:58:0e:f4:16:43:a4:07:2f:86:
11:92:df:9c:52:35:5d:61:7e:b5:d9:b4:cd:ef:44:
3a:24:df:f4:db:0a:6e:a9:33:66:df:41:87:a9:c8:
e0:c7:b8:43:ad:20:a8:f1:cc:c7:89:f0:7e:64:df:
ff:8b:9f:49:34:4c:09:fd:3b:c1:c6:61:4c:89:d3:
b2:5f:1b:14:f1:5b:37:1a:cd:f7:60:bf:69:70:98:
75:6e:e1:02:0b:2c:df:e9:80:e1:d6:7c:b6:d0:f4:
57:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:E4:D4:9A:C3:72:40:F6:3C:1E:58:30:D2:9C:E8:9A:7F:91:3F:F9
X509v3 Authority Key Identifier:
keyid:B6:FD:6F:4B:4F:B7:C3:24:7C:59:92:99:B2:E8:BA:FB:5A:8B:BA:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CE3C4/6DD9F3347F9711EBADDC5F15C4F9AE02/tv1vS0-3wyR8WZKZsui6-1qLunI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/tv1vS0-3wyR8WZKZsui6-1qLunI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE3C4/6DD9F3347F9711EBADDC5F15C4F9AE02/7CF6D2DE807211EBB51AEA81C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
194.193.0.0/19
Signature Algorithm: sha256WithRSAEncryption
2a:b3:9d:1e:4e:36:40:7b:7e:82:eb:c2:71:95:65:c3:ce:77:
27:ce:1e:01:08:05:3b:7d:af:c4:b5:0b:d0:da:f0:71:24:cd:
40:c8:40:5b:ef:84:c0:fc:47:26:54:d5:a3:67:17:8d:ce:c5:
3a:db:31:4d:f5:81:b5:bd:0d:7a:e6:4b:ee:ab:03:ba:ec:35:
7f:f3:fd:2f:d5:61:13:86:a2:6a:4f:5c:69:85:08:be:ec:a3:
fb:4b:2f:b1:a0:c1:18:fd:0b:c4:b8:53:49:23:14:e6:d8:e7:
83:bc:97:ff:ad:66:7b:27:35:1b:ba:5d:ce:42:ab:aa:e3:9d:
4e:7c:c3:8d:46:60:6c:63:2b:27:28:b2:49:7a:6e:57:f9:3c:
5f:2f:33:d4:56:72:48:fb:18:8e:a4:73:e6:dd:ee:fd:cd:ac:
28:2c:85:d5:4f:1b:07:d4:a8:6b:a1:87:88:44:f4:f7:85:c3:
3a:72:70:5c:d2:11:b5:32:54:df:fd:92:6f:fe:31:88:8f:8d:
e1:56:9a:0e:64:39:9a:52:8d:e6:36:8e:78:2f:92:39:f2:8e:
a9:66:9b:1c:79:1a:4f:b7:8c:b4:04:1a:72:09:60:1d:b7:e3:
83:fc:a9:e1:f5:0c:78:88:a2:57:79:b2:d3:2c:16:b5:28:f9:
b2:21:53:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:41 2024 by rpki-client on console-fra.rpki-client.org