Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/6AD83AACF1E511ED8D18244FC4F9AE02.roa
File: 6AD83AACF1E511ED8D18244FC4F9AE02.roa (raw, json)
Hash identifier: xLM2MmJk/MouByXF5VUEqyZRSpy+QpdRaF62t7wl8OY=
Subject key identifier: E9:7F:8E:6B:FE:06:3C:76:D5:E9:E1:7E:4B:2F:19:44:5A:09:B8:BB
Certificate issuer: /CN=A91D366A/serialNumber=B067C6BB70DF0DC04CE77F7C8D76706A49F6CB85
Certificate serial: AD
Authority key identifier: B0:67:C6:BB:70:DF:0D:C0:4C:E7:7F:7C:8D:76:70:6A:49:F6:CB:85
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/6AD83AACF1E511ED8D18244FC4F9AE02.roa
Signing time: Sat 13 May 2023 23:25:16 +0000
ROA not before: Sat 13 May 2023 23:25:16 +0000
ROA not after: Tue 31 Oct 2023 00:00:00 +0000
asID: 834
IP address blocks: 203.33.238.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173 (0xad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D366A/serialNumber=B067C6BB70DF0DC04CE77F7C8D76706A49F6CB85
Validity
Not Before: May 13 23:25:16 2023 GMT
Not After : Oct 31 00:00:00 2023 GMT
Subject: CN=64601c5c-b919
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:16:6b:89:e1:d5:22:43:2c:0b:22:b1:79:8c:
86:17:f5:c5:14:8a:17:b3:6a:5e:95:a5:cb:d0:9f:
11:56:bb:08:34:bf:bd:67:51:17:d3:b2:bb:bf:89:
3f:7a:9b:d0:0e:93:58:da:6f:7b:dd:ad:5c:26:60:
dc:1d:d8:a3:06:c5:04:8b:a3:df:90:0b:33:29:ac:
a7:9a:7a:aa:68:0d:d0:40:11:18:df:3f:2b:02:1f:
69:81:24:54:ff:e7:65:12:3c:cf:da:ff:d9:f4:95:
ba:a6:ab:17:18:7b:b7:13:e9:4d:99:43:df:8d:05:
98:82:f2:a4:6b:6b:42:b8:81:f6:15:71:63:e6:16:
ec:21:31:61:2e:b9:21:e5:46:8f:48:f3:b5:42:6d:
62:50:5f:50:b4:64:ad:df:44:7c:32:1d:04:90:8f:
0d:a9:b8:61:fe:08:18:f8:31:03:3c:d4:2b:cf:1d:
c7:b2:fc:81:cd:b7:5a:09:81:27:2e:a7:d6:9a:97:
8d:65:ee:c7:bc:4a:79:59:59:cc:7f:bb:7e:bb:d9:
cc:2f:f8:81:a7:f4:80:b9:a3:22:91:af:da:19:53:
21:96:bd:a8:aa:6d:31:9a:72:2e:83:b5:08:68:aa:
3d:d3:22:b0:21:78:9b:9b:c4:92:ee:5a:ee:7a:d9:
b9:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:7F:8E:6B:FE:06:3C:76:D5:E9:E1:7E:4B:2F:19:44:5A:09:B8:BB
X509v3 Authority Key Identifier:
keyid:B0:67:C6:BB:70:DF:0D:C0:4C:E7:7F:7C:8D:76:70:6A:49:F6:CB:85
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/6AD83AACF1E511ED8D18244FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.33.238.0/24
Signature Algorithm: sha256WithRSAEncryption
57:8f:55:57:fc:c8:94:25:68:b5:6c:d2:8a:41:99:26:91:2d:
0f:3f:bb:6f:6c:01:98:27:f7:ea:7b:fa:4a:42:17:45:7e:30:
af:a7:35:70:6d:6d:36:3f:47:7e:62:dc:91:b9:91:35:fa:88:
d8:46:b6:ed:3d:31:75:12:ce:ab:6d:11:19:54:8a:b0:8b:ae:
ff:07:3e:65:5f:2d:a8:99:d1:f9:b6:d3:ac:2d:7f:b2:b7:35:
32:4a:f2:83:d0:8a:d8:25:68:b3:39:76:ad:ce:63:f2:d3:63:
ae:bb:fb:cc:c7:d0:93:a4:f3:df:42:c2:1b:de:5b:a4:81:03:
16:81:f1:c9:59:0c:4e:e3:a3:f8:bb:e5:2f:2d:f0:7a:20:dc:
13:c2:a3:11:38:48:8d:49:b8:ca:cd:06:14:90:10:8c:17:63:
94:ac:04:c3:96:e2:97:0a:f4:76:31:88:6b:78:0a:60:39:d4:
a5:f9:db:3c:f0:68:93:35:83:e2:7a:f1:c6:6d:b1:3e:e8:bb:
3f:a3:e1:d2:93:ca:78:c2:ce:1c:99:74:ca:b3:bf:89:c2:99:
fc:65:26:78:e2:54:b0:72:3e:85:c9:ce:1a:5c:c6:07:41:ee:
83:fb:d1:d8:35:5f:7b:6b:74:a8:c6:0f:ed:3c:bb:16:27:ac:
e4:5f:3b:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:29 2024 by rpki-client on console-ams.rpki-client.org