Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/528EB5DA858911EC8BDCC472C4F9AE02.roa
File: 528EB5DA858911EC8BDCC472C4F9AE02.roa (raw, json)
Hash identifier: JwyTxDiuSyyhwYlaLZ+J027Ap0ZZSKYWVxlJj9oOLYA=
Subject key identifier: 91:41:EA:F1:70:50:45:27:5E:CB:BB:5E:C9:AC:5A:F3:ED:27:6B:77
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 0629
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/528EB5DA858911EC8BDCC472C4F9AE02.roa
Signing time: Fri 04 Feb 2022 07:08:59 +0000
ROA not before: Fri 04 Feb 2022 07:08:59 +0000
ROA not after: Sat 30 Jul 2022 00:00:00 +0000
asID: 208485
IP address blocks: 115.167.79.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1577 (0x629)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Feb 4 07:08:59 2022 GMT
Not After : Jul 30 00:00:00 2022 GMT
Subject: CN=61fcd10a-8385
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:c1:46:cb:12:23:37:81:ef:ce:d6:ea:fd:96:
78:01:86:5c:a6:96:8d:8f:84:9c:f1:5d:18:99:37:
4d:aa:00:20:db:80:15:01:18:72:d0:0c:15:0b:88:
74:7c:8c:d8:5d:e8:e6:86:30:ac:bf:1b:32:d0:9a:
18:75:0c:4d:92:a4:67:f6:d9:5f:8b:4e:27:dc:86:
2d:24:f3:78:98:22:45:93:bf:32:e5:71:1c:65:86:
24:a7:c0:67:92:c8:81:41:fc:5f:fe:5f:ee:57:7f:
2d:a5:5e:ce:bc:70:46:f1:73:96:a6:58:57:17:34:
3f:3b:e2:57:4f:35:fb:f9:5f:61:d6:f0:e8:10:7d:
55:df:38:47:a4:ee:08:2f:fc:83:47:49:d5:08:60:
85:b4:e7:ad:63:7a:53:eb:47:cc:6a:77:c2:2f:8e:
59:ff:06:46:75:3f:8c:eb:e8:c3:0c:4d:3f:0b:f9:
00:b3:43:37:47:4d:11:94:74:f1:81:50:a4:eb:d9:
ef:2b:0f:e0:ef:5c:19:18:72:19:da:06:1b:d1:b2:
b8:48:0d:7a:f1:31:79:f8:e8:fd:e9:1e:20:38:73:
c4:5b:93:3b:c9:73:db:a8:bd:32:35:fa:eb:71:1b:
a5:31:9c:43:74:a1:be:b2:c0:49:dc:7e:b7:aa:dc:
2b:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:41:EA:F1:70:50:45:27:5E:CB:BB:5E:C9:AC:5A:F3:ED:27:6B:77
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/528EB5DA858911EC8BDCC472C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
115.167.79.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:89:0e:d0:26:21:f8:37:57:99:f2:c6:f7:18:69:05:71:78:
89:94:c4:b5:85:89:8d:ff:27:e2:3e:c2:06:0f:d1:c1:54:63:
af:83:21:a4:39:92:1e:45:f9:14:1b:17:cc:67:5b:00:7a:f1:
d7:68:e6:b3:de:4b:5f:24:9b:70:59:04:49:9d:27:04:04:7b:
73:01:58:41:1f:15:d1:80:a8:b6:ad:73:26:0a:c0:6e:12:dc:
9c:22:2d:ed:fd:a6:be:7f:da:0e:b0:b6:6c:59:4c:22:42:26:
46:be:43:83:e9:fc:6e:fd:f8:6a:73:08:91:0d:d5:f4:35:0c:
52:da:0a:d7:df:16:b6:f7:5c:7b:39:2a:c3:9a:c0:0d:f5:a0:
50:f2:b5:a1:df:be:b3:6b:5e:8e:fa:f1:2d:c6:82:33:03:b2:
fb:6f:81:01:34:14:a1:3c:33:9d:ad:c5:fd:3f:8f:a6:30:79:
e0:91:48:2f:be:48:7e:55:62:f1:06:34:3c:4a:d5:3a:df:6d:
fb:56:80:f3:a3:11:a5:42:25:99:0a:95:46:39:ee:ef:ef:50:
82:b2:bb:e6:05:cd:83:0c:a3:e3:e3:b1:14:1f:c4:22:57:46:
fd:4b:08:f8:a3:0a:d6:65:35:90:f4:93:30:5b:9f:a9:87:eb:
bb:a6:6d:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:11 2023 by rpki-client on console-fra.rpki-client.org