Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/42CCEDD2FF0311EAAFD74F17C4F9AE02.roa
File: 42CCEDD2FF0311EAAFD74F17C4F9AE02.roa (raw, json)
Hash identifier: DgQ+wHCdaO1M5XSzQcvX0Lp2UgX6R7KgfS3WSzlcMao=
Subject key identifier: 61:82:FC:F4:82:EF:23:A0:56:7C:82:39:E2:35:A0:F2:2A:97:94:21
Certificate issuer: /CN=A91DF93A/serialNumber=7E244310D7A456EB127B926C42F26D79E9ACDB88
Certificate serial: 057F
Authority key identifier: 7E:24:43:10:D7:A4:56:EB:12:7B:92:6C:42:F2:6D:79:E9:AC:DB:88
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/42CCEDD2FF0311EAAFD74F17C4F9AE02.roa
Signing time: Wed 15 Jun 2022 11:07:28 +0000
ROA not before: Wed 15 Jun 2022 11:07:28 +0000
ROA not after: Thu 31 Aug 2023 00:00:00 +0000
asID: 212879
IP address blocks: 169.136.64.0/24 maxlen: 24
169.136.65.0/24 maxlen: 24
169.136.66.0/24 maxlen: 24
169.136.67.0/24 maxlen: 24
169.136.72.0/24 maxlen: 24
169.136.133.0/24 maxlen: 24
169.136.137.0/24 maxlen: 24
169.136.138.0/24 maxlen: 24
169.136.139.0/24 maxlen: 24
169.136.145.0/24 maxlen: 24
169.136.147.0/24 maxlen: 24
169.136.148.0/24 maxlen: 24
169.136.149.0/24 maxlen: 24
169.136.150.0/24 maxlen: 24
169.136.151.0/24 maxlen: 24
169.136.152.0/24 maxlen: 24
169.136.153.0/24 maxlen: 24
169.136.154.0/24 maxlen: 24
169.136.163.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1407 (0x57f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DF93A/serialNumber=7E244310D7A456EB127B926C42F26D79E9ACDB88
Validity
Not Before: Jun 15 11:07:28 2022 GMT
Not After : Aug 31 00:00:00 2023 GMT
Subject: CN=62a9bd70-c56e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:0a:5b:8e:73:31:3f:e5:32:99:7f:9d:92:d8:
2f:24:92:d4:01:a6:e7:ab:2d:71:73:20:f0:c8:fd:
1d:7d:dd:7e:e0:46:b1:c4:83:1b:f1:14:81:bf:85:
ba:a1:64:13:ab:c9:fb:e3:eb:4a:72:f3:12:90:3d:
2c:d9:2d:1b:07:08:6f:c9:74:55:56:02:ca:e6:dd:
2f:f1:83:de:a9:63:c6:5e:91:2e:65:8e:b1:8d:f7:
73:32:99:18:50:c7:44:96:15:15:aa:96:1d:73:0f:
1f:30:5f:5b:f4:5e:72:dc:ee:f5:f9:35:33:ff:6a:
6d:a7:82:4f:61:4d:aa:53:c0:cb:21:05:2c:bc:5e:
fc:e4:0c:a8:9a:cf:e5:c0:81:f2:b7:93:cc:50:ca:
74:b4:97:00:21:4e:81:dd:ea:7a:d1:fa:94:78:b2:
a6:ae:19:eb:c2:b8:84:60:65:5b:c5:4d:e2:2c:39:
37:6b:aa:ce:a1:2b:b1:24:d8:ab:1d:24:aa:dd:5b:
32:6a:90:0f:5e:d3:44:f8:ae:e5:bb:fe:5f:99:71:
3b:72:64:cb:c5:1e:2a:f5:9c:87:8a:dd:60:09:e6:
1e:68:a1:19:cd:1a:24:88:e9:5f:1f:51:43:f9:d3:
47:cc:64:0c:81:75:c5:26:e3:33:c0:50:44:79:f0:
2f:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:82:FC:F4:82:EF:23:A0:56:7C:82:39:E2:35:A0:F2:2A:97:94:21
X509v3 Authority Key Identifier:
keyid:7E:24:43:10:D7:A4:56:EB:12:7B:92:6C:42:F2:6D:79:E9:AC:DB:88
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/fiRDENekVusSe5JsQvJteems24g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/42CCEDD2FF0311EAAFD74F17C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
169.136.64.0/22
169.136.72.0/24
169.136.133.0/24
169.136.137.0-169.136.139.255
169.136.145.0/24
169.136.147.0-169.136.154.255
169.136.163.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:13:1f:d1:f6:7b:80:65:12:1c:df:56:ec:65:af:6b:e0:72:
58:a1:8a:91:7e:48:bf:83:92:de:a8:66:3a:88:ca:3b:49:0e:
82:f5:2e:b4:90:7a:3b:cd:89:b0:74:44:fc:4b:90:e9:73:4b:
ab:50:77:1f:65:5a:76:6c:06:57:23:40:4f:a8:20:4f:5e:d3:
e0:74:84:78:25:34:39:76:15:08:a7:6e:95:55:9c:a0:8f:3c:
1e:16:b5:f2:21:54:9a:77:2e:f9:7b:23:45:a3:da:df:ee:15:
73:29:88:08:c0:93:b2:54:23:32:07:7f:f8:1c:47:a3:45:6c:
3a:c3:04:69:4c:5d:11:60:74:f8:27:70:41:10:c3:09:35:b4:
87:ee:59:e2:a6:3b:7c:51:5e:46:87:38:83:7a:5a:6d:31:24:
bf:6e:76:64:a9:9e:f1:43:45:b3:04:fb:ff:e3:81:97:0b:45:
8c:2b:c4:a3:28:37:0a:50:00:7c:65:46:26:1d:df:89:de:b5:
de:e9:6a:25:17:f9:f0:8e:c5:73:af:a0:ea:1d:ab:de:57:9b:
32:16:a7:2a:7c:82:3e:09:4f:0b:c1:b5:9a:e7:05:e3:b8:15:
ee:dc:24:13:51:38:5d:a1:24:41:fe:52:92:27:3c:07:c0:2a:
9d:0d:80:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:31 2024 by rpki-client on console-ams.rpki-client.org