Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/CE89D28E6E0C11ED8BF41547C4F9AE02.roa
File: CE89D28E6E0C11ED8BF41547C4F9AE02.roa (raw, json)
Hash identifier: xGWOHkA3t7E4yKa9qMDCIed6U1PO6Ckc+H6yzFaN0B0=
Subject key identifier: 11:EA:B5:62:88:8B:FD:84:FF:44:16:07:1C:FE:4A:CD:D6:E5:FF:15
Certificate issuer: /CN=A91F5216/serialNumber=A841BDC5AFA9E9A0A95B88546113CA745EE963B5
Certificate serial: 03
Authority key identifier: A8:41:BD:C5:AF:A9:E9:A0:A9:5B:88:54:61:13:CA:74:5E:E9:63:B5
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qEG9xa-p6aCpW4hUYRPKdF7pY7U.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/CE89D28E6E0C11ED8BF41547C4F9AE02.roa
Signing time: Sun 27 Nov 2022 04:34:41 +0000
ROA not before: Sun 27 Nov 2022 04:34:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56123
IP address blocks: 146.196.4.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F5216/serialNumber=A841BDC5AFA9E9A0A95B88546113CA745EE963B5
Validity
Not Before: Nov 27 04:34:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6382e8e0-9641
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d4:18:19:0e:ba:61:42:71:85:6e:06:b3:3b:
04:40:89:59:72:b3:2f:97:6a:82:b4:8a:51:f5:08:
4a:54:f4:22:35:5a:33:55:1a:2c:bf:94:23:20:f1:
e7:83:52:2c:ec:08:62:17:7b:48:24:6a:c3:66:ee:
35:26:61:62:24:b9:c8:aa:67:9a:02:9c:de:ed:60:
19:e5:2c:5a:30:0b:3e:cf:98:d8:4f:0d:5f:25:e3:
54:3d:77:30:64:c0:e7:cf:16:65:f4:8c:03:af:75:
1e:8b:86:03:99:c4:97:73:30:3e:ad:38:a6:24:fc:
27:fd:aa:77:d7:23:ad:1c:fe:a5:c5:79:22:8a:0d:
63:34:ec:4b:1d:b4:97:57:53:6d:7d:56:07:3e:b6:
09:eb:ca:46:38:7f:0d:ef:12:d0:ad:ce:6a:73:9a:
c9:0b:f6:df:d5:92:9a:69:de:cc:be:76:61:9e:b0:
0b:c3:37:fe:c4:7f:35:3f:23:f9:da:fc:8b:f4:fc:
a6:b7:24:c8:09:3d:eb:92:cb:40:25:1c:b6:28:19:
d0:c3:e8:bf:cf:16:bf:1c:02:9e:07:9d:48:99:02:
5d:17:f1:c5:c6:f6:81:50:31:3d:6b:13:84:13:6f:
3b:85:af:0b:62:b6:78:44:59:cc:f6:72:a8:2f:77:
79:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:EA:B5:62:88:8B:FD:84:FF:44:16:07:1C:FE:4A:CD:D6:E5:FF:15
X509v3 Authority Key Identifier:
keyid:A8:41:BD:C5:AF:A9:E9:A0:A9:5B:88:54:61:13:CA:74:5E:E9:63:B5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/qEG9xa-p6aCpW4hUYRPKdF7pY7U.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qEG9xa-p6aCpW4hUYRPKdF7pY7U.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/CE89D28E6E0C11ED8BF41547C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
146.196.4.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:48:9b:04:a0:3a:ae:26:8f:3d:5e:bc:6d:ee:f1:4b:68:62:
31:ef:a4:af:16:c7:5d:b7:04:c0:30:7c:74:68:83:f7:98:64:
99:26:ef:ff:c4:84:55:a4:d2:1f:9f:62:16:eb:fd:fa:c3:d7:
9d:63:f0:e1:e9:9f:8d:77:10:b1:77:fc:f1:45:31:d5:40:93:
a8:3e:1a:18:15:c2:81:95:31:12:38:07:de:8f:a3:e7:75:a2:
80:b8:50:95:76:41:36:e2:e4:b1:59:ac:f4:b9:b9:36:f1:89:
8a:7f:0e:11:8e:ec:c1:fc:ae:8d:2b:40:47:d8:ca:1d:56:3c:
86:3d:70:80:bb:68:59:b1:ee:fc:9b:53:41:1d:5a:55:bb:8f:
20:63:83:88:fe:93:13:13:29:e3:b2:16:16:88:cf:c9:e8:f7:
a2:55:b5:04:93:26:42:2d:d2:fe:06:4f:5b:c5:1b:53:f1:4c:
f0:c2:62:ff:4e:cd:e4:a8:f4:a4:5e:37:7c:97:e3:4e:23:d2:
c0:b0:a9:c1:48:2c:9f:42:95:a9:df:b3:7b:03:7e:10:00:06:
ee:73:ce:f3:bb:fe:5f:49:33:5b:46:74:b9:ef:6b:ea:fd:d9:
40:1f:94:91:1f:0b:6d:ba:45:0c:cf:41:45:ff:b8:eb:42:74:
b9:81:2a:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:48 2024 by rpki-client on console-fra.rpki-client.org