Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/1CD13618ADF311E980380735C4F9AE02.roa
File: 1CD13618ADF311E980380735C4F9AE02.roa (raw, json)
Hash identifier: APqZ4AuPJxkayDvZm5pOYQjKIBJV3kzCps8BsQj8IAY=
Subject key identifier: 6F:CD:04:FA:82:C8:6A:7F:7D:DA:E3:D5:F0:A8:71:44:A4:43:AA:9D
Certificate issuer: /CN=A91CEF3E/serialNumber=932EC2E6E52B5AF6C7B03C415020EDE272AAA145
Certificate serial: 0A88
Authority key identifier: 93:2E:C2:E6:E5:2B:5A:F6:C7:B0:3C:41:50:20:ED:E2:72:AA:A1:45
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/1CD13618ADF311E980380735C4F9AE02.roa
Signing time: Wed 19 Jan 2022 07:17:17 +0000
ROA not before: Wed 19 Jan 2022 07:17:16 +0000
ROA not after: Fri 31 Mar 2023 00:00:00 +0000
asID: 60068
IP address blocks: 23.226.12.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2696 (0xa88)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CEF3E
Validity
Not Before: Jan 19 07:17:16 2022 GMT
Not After : Mar 31 00:00:00 2023 GMT
Subject: CN=61e7bafc-868e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:43:7e:59:4d:a4:0a:a3:29:d0:11:ce:a7:97:
ca:76:85:5b:da:8a:d3:7f:d8:da:bc:bc:87:47:db:
b6:16:97:4c:76:f4:84:27:4b:d9:70:b1:d9:a4:b3:
4b:88:43:02:54:43:b3:ee:2e:53:1e:33:45:e2:1b:
f7:3d:d9:03:97:6a:6b:16:81:70:d6:16:ae:ae:7a:
90:ef:27:9b:42:52:d8:97:3e:f2:ed:fb:53:a2:ef:
da:44:b8:72:7c:a2:5f:b9:b7:07:c5:65:25:68:27:
78:51:ff:fd:38:b8:84:15:ff:16:2e:cc:ef:50:13:
a6:16:0d:b0:84:34:8c:f1:6d:61:7c:45:f4:d7:e3:
d6:2a:d3:c1:20:f3:d1:8e:1d:dc:6e:78:23:b3:a2:
b8:1a:e1:e1:f0:53:7a:61:38:78:f4:99:a1:7c:a4:
1b:8f:ff:b2:de:74:99:c0:30:88:71:0f:48:e7:bc:
2b:b1:9c:1a:4d:0f:60:34:cc:0c:43:02:97:8e:da:
d9:73:0c:ba:66:04:7e:75:a4:d4:bf:ef:55:7d:da:
40:f0:51:89:76:ad:39:e7:46:f2:2b:18:71:c2:57:
e1:95:4e:13:65:a9:9f:d0:fd:3f:49:55:f8:2f:0f:
fb:a2:72:3b:d4:c4:69:1d:04:70:89:05:1e:11:4b:
a5:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:CD:04:FA:82:C8:6A:7F:7D:DA:E3:D5:F0:A8:71:44:A4:43:AA:9D
X509v3 Authority Key Identifier:
keyid:93:2E:C2:E6:E5:2B:5A:F6:C7:B0:3C:41:50:20:ED:E2:72:AA:A1:45
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/1CD13618ADF311E980380735C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
23.226.12.0/24
Signature Algorithm: sha256WithRSAEncryption
47:76:49:e4:29:21:23:cb:7c:42:22:6d:28:f8:0e:e1:e4:b4:
a0:54:9b:87:ae:27:17:89:a2:01:dd:07:9f:f1:9f:d5:83:65:
73:5e:2e:b5:07:47:74:26:3b:9e:43:92:7b:d9:be:b1:22:f4:
39:80:95:28:6a:47:61:19:f0:7a:35:95:27:b3:7c:a2:e4:18:
07:20:9d:7e:54:ba:32:1b:30:e3:bb:ba:db:8f:d3:55:e6:51:
7c:63:e0:4e:9d:5e:17:ec:4f:d3:0e:2f:d5:18:0e:16:8d:9a:
cf:82:23:b9:65:ca:b1:f1:e8:e9:d3:ae:f9:3f:5e:89:c3:1c:
be:ec:8b:2a:f8:6b:0c:30:17:87:a0:23:1d:3f:55:9a:c8:04:
8f:1c:a0:a3:80:2f:61:2c:d0:82:05:05:3b:af:94:1a:3b:82:
e5:fb:14:33:70:b7:34:7e:09:40:83:35:9e:4f:29:01:96:a2:
a1:d8:e7:6f:73:f5:f1:40:db:ef:92:d9:eb:6d:db:3a:27:24:
72:21:12:8b:e0:43:57:c5:17:4b:8f:db:64:16:4b:49:c6:96:
d2:50:a0:d9:ca:cf:ba:5e:a4:fc:ce:ac:70:03:5f:ed:47:58:
ea:c4:71:41:d9:bb:c7:2f:3d:7c:cf:61:0d:44:b7:8a:e8:86:
eb:85:6b:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:32:02 2025 by rpki-client