Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0875/6D91AABC593111EAAA31B40AC4F9AE02/2390E89EEAF911ED9E2D1958C4F9AE02.roa
File: 2390E89EEAF911ED9E2D1958C4F9AE02.roa (raw, json)
Hash identifier: c+bMm6APPH8jxGMLSmsUZNehT41hXZB8RaJx/MNprlA=
Subject key identifier: 10:A8:B4:17:6A:B7:9C:77:2E:6D:67:D3:C2:E1:36:01:4C:2C:63:95
Certificate issuer: /CN=A91E0875/serialNumber=F973492ED646928ED1F10DE84662E5523F55CC8D
Certificate serial: 092D
Authority key identifier: F9:73:49:2E:D6:46:92:8E:D1:F1:0D:E8:46:62:E5:52:3F:55:CC:8D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XNJLtZGko7R8Q3oRmLlUj9VzI0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E0875/6D91AABC593111EAAA31B40AC4F9AE02/2390E89EEAF911ED9E2D1958C4F9AE02.roa
Signing time: Fri 05 May 2023 04:38:45 +0000
ROA not before: Fri 05 May 2023 04:38:45 +0000
ROA not after: Wed 01 May 2024 00:00:00 +0000
asID: 10204
IP address blocks: 202.6.250.0/23 maxlen: 23
202.6.250.0/24 maxlen: 24
202.6.251.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2349 (0x92d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E0875/serialNumber=F973492ED646928ED1F10DE84662E5523F55CC8D
Validity
Not Before: May 5 04:38:45 2023 GMT
Not After : May 1 00:00:00 2024 GMT
Subject: CN=64548855-0aac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:a3:43:36:38:50:a6:42:28:0c:9f:cc:5c:7f:
48:50:2f:dd:82:a2:8e:8b:4f:b2:ed:f9:ae:c9:77:
9c:fb:9a:2d:a3:4e:a6:a0:bd:09:96:2e:fe:37:42:
cb:04:8b:ac:93:da:fb:33:18:10:27:62:29:4f:b4:
0b:83:ca:0a:0c:89:3e:92:79:0d:7e:0c:e1:c9:c2:
a0:f3:ca:8d:ba:51:8a:27:b8:3f:7b:2e:98:1f:c2:
f3:40:56:4f:83:23:8e:d1:4f:a4:d2:5e:39:4d:ee:
3d:47:4d:04:23:83:44:ad:b4:02:c3:3a:8f:72:da:
cc:d6:68:62:61:52:31:51:85:48:01:7a:5b:56:41:
db:7b:08:e2:25:50:12:0a:5e:29:0b:40:19:9b:c1:
33:13:79:1d:77:fb:aa:86:93:fe:59:e2:36:dc:fb:
e5:54:41:39:eb:8b:cc:7a:22:33:9a:8a:40:34:72:
ac:a7:0a:2c:ee:73:e7:9b:b4:c7:a6:89:1a:b0:f0:
2c:50:bd:73:5e:1e:41:39:96:b9:9a:b0:e9:47:3c:
df:42:99:e0:ae:16:97:1f:a2:18:47:0d:70:9b:86:
df:68:4e:40:26:c5:65:2f:59:ae:a4:a9:50:1b:e6:
2b:f9:ae:f9:c5:a2:e9:9d:87:99:d4:da:d4:a8:4a:
f5:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:A8:B4:17:6A:B7:9C:77:2E:6D:67:D3:C2:E1:36:01:4C:2C:63:95
X509v3 Authority Key Identifier:
keyid:F9:73:49:2E:D6:46:92:8E:D1:F1:0D:E8:46:62:E5:52:3F:55:CC:8D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E0875/6D91AABC593111EAAA31B40AC4F9AE02/-XNJLtZGko7R8Q3oRmLlUj9VzI0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XNJLtZGko7R8Q3oRmLlUj9VzI0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0875/6D91AABC593111EAAA31B40AC4F9AE02/2390E89EEAF911ED9E2D1958C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.6.250.0/23
Signature Algorithm: sha256WithRSAEncryption
1c:ee:33:8c:fa:cd:ef:94:e5:42:fa:05:04:6c:d6:fb:cc:cc:
21:6f:6b:be:f6:cb:e2:c3:73:4c:41:6c:c8:51:61:cc:91:b5:
5e:37:ae:59:01:53:ad:a0:a4:37:9f:92:62:14:93:db:77:9b:
dc:20:1d:29:65:8f:da:2f:b5:1f:4d:64:84:b7:7f:8b:78:4a:
28:5b:77:27:35:a5:4c:1c:22:f9:0f:b2:69:f6:11:7d:11:0e:
04:cc:d6:c5:c3:c5:b1:82:17:1e:65:a3:f7:33:86:7f:59:12:
53:af:00:1f:94:35:c1:28:3d:47:d8:cf:22:07:5f:15:a3:dc:
89:b8:95:f4:8a:01:21:cb:18:bf:ba:06:53:3f:d5:62:00:69:
69:3f:12:1d:f7:52:81:45:23:42:d9:91:3f:9a:cc:23:ec:2f:
16:ff:db:26:da:03:92:a6:13:da:b0:c7:ec:09:af:1d:fb:f9:
16:f9:94:75:2e:a3:55:48:6d:84:1f:29:89:8f:83:3e:14:f4:
13:54:04:60:35:25:9b:e0:bc:17:e1:39:8d:13:cf:b2:0e:06:
bc:e4:25:8c:49:1c:83:4b:77:ff:e5:f0:2d:df:b1:a4:dc:f3:
5e:39:f6:9a:9b:88:00:e8:cd:c1:92:e7:c7:6f:ed:a0:0b:3d:
29:73:78:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:43 2024 by rpki-client on console-fra.rpki-client.org