Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0875/6D91AABC593111EAAA31B40AC4F9AE02/E9882268795D11EE8B585A5EC4F9AE02.roa
File: E9882268795D11EE8B585A5EC4F9AE02.roa (raw, json)
Hash identifier: YC4sZgi/Nt9LAxtvsm3/mfyWSWM8hUYPUv+LTQ+otdI=
Subject key identifier: EB:4A:F7:C8:27:E3:81:B9:05:5E:C8:F8:81:1F:2E:DE:98:E1:F3:65
Certificate issuer: /CN=A91E0875/serialNumber=F973492ED646928ED1F10DE84662E5523F55CC8D
Certificate serial: 0992
Authority key identifier: F9:73:49:2E:D6:46:92:8E:D1:F1:0D:E8:46:62:E5:52:3F:55:CC:8D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XNJLtZGko7R8Q3oRmLlUj9VzI0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E0875/6D91AABC593111EAAA31B40AC4F9AE02/E9882268795D11EE8B585A5EC4F9AE02.roa
Signing time: Thu 02 Nov 2023 08:57:55 +0000
ROA not before: Thu 02 Nov 2023 08:57:55 +0000
ROA not after: Wed 01 May 2024 00:00:00 +0000
asID: 2914
IP address blocks: 202.6.248.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2450 (0x992)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E0875/serialNumber=F973492ED646928ED1F10DE84662E5523F55CC8D
Validity
Not Before: Nov 2 08:57:55 2023 GMT
Not After : May 1 00:00:00 2024 GMT
Subject: CN=65436493-3a7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:4d:a1:d2:9d:a9:93:9c:37:d7:73:10:d3:d6:
54:9a:65:6b:2a:01:36:b1:98:27:46:67:39:94:57:
b2:94:aa:e9:3c:a9:10:38:a6:ea:7b:7c:a3:04:60:
8c:b1:b4:78:22:3a:be:b7:60:ad:1b:ed:12:8a:6b:
35:9a:5c:ce:f8:9c:37:aa:46:26:16:d0:46:81:d9:
07:c6:af:be:a1:0a:6d:be:8c:3a:61:92:ec:0b:60:
ab:4f:c4:ac:fb:73:aa:c5:c4:15:14:2b:62:fd:20:
5a:85:72:8c:35:cd:32:b9:ac:ee:52:55:e0:79:aa:
b7:56:e4:77:1f:48:79:c7:bf:1a:c4:db:a3:ff:1b:
07:8c:77:20:11:7a:e7:70:15:2a:89:de:19:7a:41:
ad:a9:f2:69:38:6f:02:61:f8:27:f4:fa:55:a2:e2:
5e:d1:07:75:b4:a1:21:3e:a5:48:c6:0c:de:43:56:
89:3d:61:3e:e6:d0:15:7b:18:21:35:53:56:8b:7e:
64:db:6d:7a:cc:db:90:c9:7b:25:94:a2:a3:d7:bb:
a3:14:4d:83:a8:1e:a7:14:c9:79:66:03:74:74:f2:
bd:94:2a:c2:6f:72:42:0c:6d:dc:a2:5b:20:19:32:
ef:5f:40:c6:07:15:f4:e1:a2:2a:a0:18:47:f1:68:
e9:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:4A:F7:C8:27:E3:81:B9:05:5E:C8:F8:81:1F:2E:DE:98:E1:F3:65
X509v3 Authority Key Identifier:
keyid:F9:73:49:2E:D6:46:92:8E:D1:F1:0D:E8:46:62:E5:52:3F:55:CC:8D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E0875/6D91AABC593111EAAA31B40AC4F9AE02/-XNJLtZGko7R8Q3oRmLlUj9VzI0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XNJLtZGko7R8Q3oRmLlUj9VzI0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0875/6D91AABC593111EAAA31B40AC4F9AE02/E9882268795D11EE8B585A5EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.6.248.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:c8:40:f2:40:b6:01:9a:56:18:a4:6e:07:66:0c:b8:dd:c8:
4c:62:94:14:71:d4:de:07:98:31:43:23:08:6f:02:25:e3:23:
d6:58:73:e1:6b:02:d0:fe:0d:04:73:34:97:a3:a5:c7:b3:f4:
7f:fb:61:b7:e2:b1:07:ab:9e:f2:05:9a:36:72:3c:1f:9d:6f:
b0:ff:c5:87:9a:d4:70:52:1d:0f:7e:d1:4d:19:cb:1f:34:5d:
61:47:89:ca:32:70:8d:54:5b:02:77:c6:4c:b3:19:b6:9f:e9:
b3:0f:40:b3:c3:ac:4e:d5:65:62:7b:8b:78:30:d6:7d:54:e8:
b0:5b:31:13:f5:c4:a0:a6:d5:ad:83:43:8f:c8:fd:2e:e0:b9:
28:f6:06:57:da:02:9a:62:e9:cd:39:78:c8:c4:fd:01:1f:a1:
7f:f4:3f:1b:62:e7:72:36:15:ee:7c:fb:3a:27:1a:f8:b8:39:
b1:cb:66:be:67:bd:c5:35:fb:6d:8f:5e:10:b3:37:7d:89:bc:
43:01:3f:0f:aa:b8:85:59:36:25:1f:71:11:28:60:03:62:f4:
c1:f2:00:ae:c7:aa:c1:b1:6b:ca:6d:c1:1c:94:30:42:f9:2d:
e5:e9:6e:79:52:dc:e3:d3:28:c6:37:38:f9:94:5b:1d:3a:ce:
67:1f:58:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:43 2024 by rpki-client on console-fra.rpki-client.org