Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/F79B0BF4C4CF11EAA8166F83C4F9AE02.roa
File: F79B0BF4C4CF11EAA8166F83C4F9AE02.roa (raw, json)
Hash identifier: 5tUpfuSyz6drh1wPoCEOAzcHLXju/KojUDoGJkdG2ws=
Subject key identifier: 11:A6:BC:A3:E2:B2:A1:AB:16:99:E4:C1:D6:57:BD:AB:03:0E:15:41
Certificate issuer: /CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00
Certificate serial: 13EA
Authority key identifier: C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/F79B0BF4C4CF11EAA8166F83C4F9AE02.roa
Signing time: Fri 18 Feb 2022 06:24:54 +0000
ROA not before: Fri 18 Feb 2022 06:24:54 +0000
ROA not after: Mon 01 May 2023 00:00:00 +0000
asID: 45922
IP address blocks: 175.45.65.0/24 maxlen: 24
175.45.68.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5098 (0x13ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00
Validity
Not Before: Feb 18 06:24:54 2022 GMT
Not After : May 1 00:00:00 2023 GMT
Subject: CN=620f3bb5-eb68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:d9:65:93:aa:8d:68:47:0e:8f:4a:71:0f:26:
2f:97:c6:e6:5e:c2:7c:06:94:66:db:99:80:bb:8b:
56:44:0e:34:d8:8c:e6:85:fb:22:9a:f1:cd:d2:87:
1b:ab:5e:41:93:d2:03:a5:94:79:c4:f4:25:b8:61:
86:1f:86:a2:6e:3e:d7:d5:79:9b:b9:7a:de:06:6b:
2c:eb:73:4d:e6:f2:91:61:38:55:da:a3:ef:77:a3:
3f:bd:ca:0b:8c:fe:7c:29:3a:11:ae:ea:f8:aa:a9:
48:01:4f:99:e9:c4:c6:6e:83:15:19:ad:13:ab:68:
41:e9:3e:de:bc:8e:e6:cf:55:9d:f3:52:d9:7c:2e:
df:b8:2e:12:fd:37:45:d4:d7:9f:38:96:c6:13:5a:
01:bc:05:59:e5:a1:59:d1:1d:0c:8c:f8:c7:d0:ea:
0b:2b:71:ba:2d:e0:ac:02:c2:ca:6a:49:f8:f2:0a:
e5:08:3d:45:e2:b3:f7:37:50:51:e3:aa:d0:6f:54:
72:e7:28:4d:ca:85:8f:fa:e2:84:34:eb:17:f7:c0:
08:17:02:3b:d9:ab:99:8a:52:53:3b:56:e8:5c:85:
13:13:92:27:8e:61:35:09:ca:08:38:65:4a:e9:7a:
44:38:14:c3:fe:c4:61:ef:a5:9d:0a:58:1c:c0:07:
9f:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:A6:BC:A3:E2:B2:A1:AB:16:99:E4:C1:D6:57:BD:AB:03:0E:15:41
X509v3 Authority Key Identifier:
keyid:C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/F79B0BF4C4CF11EAA8166F83C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
175.45.65.0/24
175.45.68.0/24
Signature Algorithm: sha256WithRSAEncryption
77:a0:15:b9:1f:bf:a2:84:c1:7e:af:ef:4c:13:1f:3e:a0:3b:
12:62:fa:d3:d3:9b:c6:d5:14:82:90:4c:1d:c7:fd:28:1a:49:
89:e5:93:e2:1e:10:60:f6:43:1b:a0:d8:41:7b:f9:88:ec:b7:
d4:9e:fa:42:27:35:65:3c:a3:ac:d5:1c:9a:b3:20:4f:37:af:
66:b2:7b:77:68:90:91:21:0f:1a:ce:b8:d5:4c:9a:3f:a9:d2:
da:63:a4:c7:7d:3e:b9:9f:a7:78:c0:35:6d:a3:2c:7b:f6:28:
70:fc:48:bd:70:bc:d2:a9:56:76:7f:60:b5:da:79:61:e7:e5:
dc:9e:2c:12:98:46:7e:0e:29:e2:20:53:71:b4:3e:7d:74:f4:
27:a4:32:3b:82:7f:ef:f1:1d:93:de:85:6c:09:aa:3c:d7:2c:
51:33:0c:6b:94:29:91:34:e3:0a:c2:45:16:61:b5:fc:17:5a:
88:85:7c:35:7a:e6:b8:64:92:eb:61:f0:38:d6:a0:fc:2e:08:
81:b1:ed:03:a9:d4:74:62:95:cb:d6:17:b3:06:6b:c6:33:22:
eb:e9:ff:de:b1:e9:79:d8:4b:77:cc:48:27:89:33:8b:a4:fd:
f8:c4:87:81:c5:22:cb:7d:1e:b6:ce:02:e9:f4:01:c1:2f:dc:
5c:93:2f:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:11 2023 by rpki-client on console-ams.rpki-client.org