Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/44CB52CCFF0311EAAFD74F17C4F9AE02.roa
File: 44CB52CCFF0311EAAFD74F17C4F9AE02.roa (raw, json)
Hash identifier: J6QtAkU0LE/J6LZeo+QFlkB4h/VA8H9LrXkaGZqsrZI=
Subject key identifier: 90:96:26:AB:1D:5C:1A:10:F1:C6:C3:FA:C0:D4:E5:4C:DA:A4:2C:F7
Certificate issuer: /CN=A91DF93A/serialNumber=07A1C08545CACC65E0882D49E9F2F8CFD2BE8260
Certificate serial: 051F
Authority key identifier: 07:A1:C0:85:45:CA:CC:65:E0:88:2D:49:E9:F2:F8:CF:D2:BE:82:60
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B6HAhUXKzGXgiC1J6fL4z9K-gmA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/44CB52CCFF0311EAAFD74F17C4F9AE02.roa
Signing time: Sun 24 Apr 2022 04:29:40 +0000
ROA not before: Sun 24 Apr 2022 04:29:40 +0000
ROA not after: Wed 31 Aug 2022 00:00:00 +0000
asID: 212879
IP address blocks: 164.90.125.0/24 maxlen: 24
164.90.126.0/24 maxlen: 24
202.63.54.0/24 maxlen: 24
202.63.55.0/24 maxlen: 24
202.63.56.0/24 maxlen: 24
202.168.124.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1311 (0x51f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DF93A/serialNumber=07A1C08545CACC65E0882D49E9F2F8CFD2BE8260
Validity
Not Before: Apr 24 04:29:40 2022 GMT
Not After : Aug 31 00:00:00 2022 GMT
Subject: CN=6264d234-7329
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:ad:3e:8e:ba:55:c3:b3:af:95:0f:99:ab:de:
c5:16:96:d7:ea:dc:cb:8f:1d:f3:f2:12:68:46:a5:
14:8d:27:de:36:8b:e8:5f:12:b8:a5:52:3f:e3:95:
39:69:47:a5:65:65:bb:25:01:68:13:3a:91:ef:10:
96:1e:e6:fd:80:99:ee:4d:bf:28:fd:c6:15:8b:42:
47:1b:67:84:90:57:e6:8e:3f:fa:cb:e0:f2:78:12:
73:53:19:66:82:f5:b6:39:71:da:3d:02:81:22:f8:
e7:98:77:62:9a:72:6c:ff:96:0b:a9:0c:19:ac:59:
d2:96:23:19:6b:40:38:8d:ac:1b:b0:07:a6:10:1c:
f5:fa:fb:9b:18:ae:9c:a8:00:cd:12:54:eb:2c:1f:
c8:8c:2c:df:c1:db:e4:c9:30:db:c0:8b:44:6d:dc:
c1:c7:35:cf:4c:af:73:80:b4:ad:17:f2:16:98:8e:
bb:cb:30:a1:6a:da:3d:b9:36:37:ae:23:13:33:70:
03:72:67:1e:d4:67:29:94:14:5f:c5:d3:30:ef:fb:
44:3b:56:f3:7d:1c:3b:b5:e5:bd:b0:f5:61:78:e1:
8a:43:ad:df:10:d0:d1:91:2e:00:04:16:1a:a7:ea:
62:1c:91:20:7b:42:38:b2:48:53:56:13:05:07:fe:
2e:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:96:26:AB:1D:5C:1A:10:F1:C6:C3:FA:C0:D4:E5:4C:DA:A4:2C:F7
X509v3 Authority Key Identifier:
keyid:07:A1:C0:85:45:CA:CC:65:E0:88:2D:49:E9:F2:F8:CF:D2:BE:82:60
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/B6HAhUXKzGXgiC1J6fL4z9K-gmA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B6HAhUXKzGXgiC1J6fL4z9K-gmA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/44CB52CCFF0311EAAFD74F17C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
164.90.125.0-164.90.126.255
202.63.54.0-202.63.56.255
202.168.124.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:14:b7:6a:74:76:9f:5c:83:56:3b:a0:3e:16:77:0a:1e:f8:
9e:fa:48:9a:3e:7f:d8:b0:d4:b4:49:c3:85:aa:8f:bc:06:c3:
90:e2:01:d0:c9:6a:8b:6f:4f:e1:f9:59:d9:eb:5f:ea:17:e4:
b8:8d:54:2d:fc:7a:c1:cb:d1:07:84:fc:72:fc:50:55:5f:12:
e0:b3:7a:39:3b:88:65:ad:a0:46:a8:a6:a2:50:0b:0f:c8:a0:
7c:fa:86:d7:c7:02:c5:f9:69:9a:27:84:61:3f:d6:4d:64:c6:
75:30:eb:05:c3:bd:98:c4:23:5d:b2:78:56:a0:e8:ab:2e:d6:
76:d8:10:b5:fd:0c:e7:0a:c2:2e:aa:69:b7:6b:19:60:96:85:
c7:a2:cd:e1:a3:f1:0c:e4:d8:41:8c:91:44:f2:41:27:36:1e:
c6:38:21:31:92:eb:cb:a2:3e:11:4e:fe:bd:6f:ea:03:b6:ce:
3e:1b:b1:76:f0:b7:79:ea:07:08:24:56:ad:3a:40:d1:60:32:
de:fd:c0:bd:26:a3:87:8f:0d:d7:48:aa:a2:a8:e7:06:87:8c:
6d:81:4a:f8:b9:d6:7c:71:61:b0:0e:67:83:74:78:12:24:cb:
45:9a:e7:f8:e6:46:bb:b8:d8:fe:c5:66:e5:45:30:cf:c1:05:
43:19:fc:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:43 2024 by rpki-client on console-fra.rpki-client.org