Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/D8D623522B0E11EB888BF158C4F9AE02.roa
File: D8D623522B0E11EB888BF158C4F9AE02.roa (raw, json)
Hash identifier: DRXk/lk++pLTFLMNwMqnOFhTwtBO69uFVY4TzTooN5o=
Subject key identifier: E5:67:A6:D9:24:41:51:11:A7:95:47:3F:4E:4F:40:D5:BA:89:00:3F
Certificate issuer: /CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F
Certificate serial: 2FE3
Authority key identifier: 58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/D8D623522B0E11EB888BF158C4F9AE02.roa
Signing time: Wed 01 Sep 2021 15:20:48 +0000
ROA not before: Wed 01 Sep 2021 15:20:48 +0000
ROA not after: Thu 01 Dec 2022 00:00:00 +0000
asID: 20473
IP address blocks: 117.121.243.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12259 (0x2fe3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F
Validity
Not Before: Sep 1 15:20:48 2021 GMT
Not After : Dec 1 00:00:00 2022 GMT
Subject: CN=612f9a50-4d66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:c1:f9:fd:54:58:06:dc:39:d8:4f:a6:6d:bc:
6a:25:be:d5:58:ce:05:e4:e2:da:d0:55:fd:87:0a:
22:66:cf:7f:f8:26:51:1d:96:cb:fb:08:16:0e:53:
5c:a3:18:dc:f5:2c:3e:0f:6f:a2:c1:f0:bb:40:ed:
a6:88:e8:60:2d:b9:fd:15:60:2e:19:57:d7:c3:ae:
98:17:14:90:0f:8e:ca:9e:86:f0:da:6d:fe:1b:a6:
91:a7:79:82:9c:bd:4d:66:33:36:1d:5f:8d:b1:88:
5e:d0:42:fc:18:20:f2:bc:f5:c1:22:00:7a:bd:4d:
3b:ad:7a:39:b6:6b:e1:1b:d3:b7:cc:f3:72:bc:26:
80:cf:43:a0:a1:87:80:8a:c8:d6:79:16:03:da:12:
5b:4d:f4:7f:23:0a:d2:32:84:b7:ff:b7:ed:b0:33:
45:0c:c9:9d:ef:c9:1b:6e:c9:97:ac:0f:bd:94:c0:
84:34:a1:7e:d5:92:28:02:2b:ed:49:49:7f:08:f8:
f1:2f:92:22:9b:0d:dd:19:7a:e5:b3:fd:ed:9c:12:
5b:ae:f2:9b:7c:67:6e:16:c4:f4:ec:47:b9:87:8a:
4d:fc:48:ce:a8:bb:19:9b:4d:a9:47:0d:14:f3:eb:
2f:8f:2f:4e:f0:09:35:db:2e:a3:b5:58:9d:b0:8b:
12:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:67:A6:D9:24:41:51:11:A7:95:47:3F:4E:4F:40:D5:BA:89:00:3F
X509v3 Authority Key Identifier:
keyid:58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/D8D623522B0E11EB888BF158C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
117.121.243.0/24
Signature Algorithm: sha256WithRSAEncryption
18:c7:95:a6:12:21:6c:e9:6f:c5:b7:2c:f9:34:ba:83:33:b6:
1b:a7:5e:28:3b:8c:46:09:60:29:c1:fa:6f:20:83:c3:f7:9f:
99:a6:f6:35:01:c5:02:d2:17:71:8f:c7:0c:b9:01:c0:96:57:
fa:4a:91:53:d7:b3:22:7e:f4:8a:2e:0e:6b:7d:13:2f:d1:26:
75:f9:03:48:a3:25:fb:02:54:3f:e0:db:be:2a:73:8e:42:a0:
ae:b2:98:72:c8:e8:72:a8:75:a3:64:0e:03:40:7a:18:e7:60:
7d:10:fe:45:78:4c:58:c0:80:cd:b6:11:12:00:8d:16:1c:a3:
d8:d6:52:db:a8:46:87:8f:f0:26:c2:22:3e:e7:e6:51:3f:83:
d3:2d:25:dc:dc:fc:ae:26:6e:f6:16:68:d1:1e:ae:2e:d9:74:
d5:07:60:2e:46:a2:24:35:e5:08:e6:25:1e:b1:12:8d:33:c9:
82:72:f7:e6:49:b5:d1:d3:31:b2:f4:af:43:e3:3a:a9:c7:46:
0a:56:ac:81:17:b6:28:6e:6a:77:21:9a:42:ed:df:a5:f2:6b:
1b:29:03:3c:8a:28:49:24:fa:7b:98:da:40:2e:ac:c1:57:52:
91:b4:c5:f8:2b:45:71:52:1d:80:37:91:3a:42:20:24:c9:0b:
d8:0c:7f:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:11 2023 by rpki-client on console-ams.rpki-client.org