Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/2D0C8BFEC07E11ECB0707F18C4F9AE02.roa
File: 2D0C8BFEC07E11ECB0707F18C4F9AE02.roa (raw, json)
Hash identifier: nu8bHPpyqcWRysDt93ZLATGiTjOiPye2CEBlifT8XeA=
Subject key identifier: D4:3B:EA:7A:29:0D:1C:ED:43:19:A6:30:CA:B6:A7:FD:92:3B:A6:83
Certificate issuer: /CN=A91EECAF/serialNumber=6EBD3A269785123ADC3F496639AEDFB10F30D618
Certificate serial: 08D6
Authority key identifier: 6E:BD:3A:26:97:85:12:3A:DC:3F:49:66:39:AE:DF:B1:0F:30:D6:18
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/br06JpeFEjrcP0lmOa7fsQ8w1hg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/2D0C8BFEC07E11ECB0707F18C4F9AE02.roa
Signing time: Tue 18 Oct 2022 21:27:46 +0000
ROA not before: Tue 18 Oct 2022 21:27:46 +0000
ROA not after: Sat 30 Dec 2023 00:00:00 +0000
asID: 136750
IP address blocks: 223.121.12.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2262 (0x8d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EECAF/serialNumber=6EBD3A269785123ADC3F496639AEDFB10F30D618
Validity
Not Before: Oct 18 21:27:46 2022 GMT
Not After : Dec 30 00:00:00 2023 GMT
Subject: CN=634f1a51-a5f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:a1:f0:83:34:32:bf:eb:35:f9:22:b3:94:51:
0a:d1:c4:05:b1:84:8f:9f:0d:d5:63:1b:58:bd:43:
ab:80:04:c5:8d:36:e2:38:4e:75:49:db:e4:25:bf:
26:cb:5a:d0:6d:46:3c:e1:5e:32:bb:b0:13:5e:49:
6e:1c:22:4c:5f:fe:2c:0a:87:cf:81:90:08:13:d0:
d6:5a:4e:7b:c5:af:f1:ef:53:9b:be:55:a7:32:c8:
ba:83:64:0f:dc:05:0d:4c:08:18:99:88:76:36:33:
29:88:fe:1a:1e:76:7e:11:a2:f0:6f:0a:26:df:87:
9f:2a:1d:b8:f4:69:c9:dd:3c:33:a2:ca:c0:2f:bf:
cf:46:2e:4c:1f:49:9e:f0:89:16:fe:31:7c:94:61:
82:ac:4d:56:d4:a6:d4:0a:47:84:5c:49:58:46:10:
be:66:6e:9e:4a:4a:37:13:bc:0f:3d:6f:25:cf:2a:
96:af:67:99:fb:94:b1:7d:ce:ac:09:ca:d7:76:2f:
22:f2:e1:f8:89:96:21:36:fd:52:a3:be:4c:9e:1c:
23:e2:ea:bb:dd:6e:ab:d0:7a:f6:b3:26:ed:bd:41:
7b:2d:28:db:62:33:64:39:75:30:73:38:1e:74:d2:
42:c0:8d:f8:f2:90:0f:18:b2:fb:31:70:3a:7a:89:
da:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:3B:EA:7A:29:0D:1C:ED:43:19:A6:30:CA:B6:A7:FD:92:3B:A6:83
X509v3 Authority Key Identifier:
keyid:6E:BD:3A:26:97:85:12:3A:DC:3F:49:66:39:AE:DF:B1:0F:30:D6:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/br06JpeFEjrcP0lmOa7fsQ8w1hg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/br06JpeFEjrcP0lmOa7fsQ8w1hg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/2D0C8BFEC07E11ECB0707F18C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
223.121.12.0/24
Signature Algorithm: sha256WithRSAEncryption
55:6f:91:12:8c:43:c5:4f:b0:92:bd:0a:c7:4b:9a:f4:aa:60:
2b:fc:4a:1a:18:39:cd:86:55:85:55:f2:ed:66:12:4a:e6:bf:
f3:ec:74:d5:82:54:38:31:28:cf:d1:82:81:66:32:b9:21:6f:
0b:3b:6f:8e:65:6b:e7:ac:01:b1:e0:ce:66:28:0e:66:b0:50:
be:b6:97:af:af:ff:f9:67:72:09:e3:00:82:bc:b8:3b:42:ac:
4e:73:8f:c4:ad:02:d5:1d:26:f1:06:b6:44:49:20:4b:88:7d:
48:27:18:c8:4d:9b:9c:5b:46:fd:65:1f:e9:8a:f1:47:9f:05:
c5:72:3a:71:c6:10:40:28:c0:31:93:9c:b1:4b:a8:db:61:54:
22:26:a6:b2:95:23:43:51:6e:af:40:56:6a:80:0c:bb:a8:af:
86:6e:20:94:a8:10:2c:e7:a8:5e:fd:e7:aa:1f:ce:91:56:34:
b8:05:67:34:70:29:4f:ab:d8:70:9f:c8:b6:50:5f:37:94:4a:
84:75:65:d4:4b:ac:5c:9b:d9:78:de:d1:1e:37:fc:2f:a9:f7:
d7:b0:ac:4a:0a:d6:53:f8:1b:4b:a5:b4:0c:5d:1a:e5:2b:72:
3b:87:2c:a8:15:a8:b4:a0:ce:d6:4f:57:28:0e:6c:17:08:dc:
45:90:7b:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:37 2024 by rpki-client on console-ams.rpki-client.org