Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/476977062DC811EEA7104148C4F9AE02.roa
File: 476977062DC811EEA7104148C4F9AE02.roa (raw, json)
Hash identifier: cWczU6JLa2BFOjQyl7aPAsbmRn9YwG8tF1pWO4e4Fyw=
Subject key identifier: FD:18:39:E1:28:82:3D:FB:24:9F:36:C8:E8:B4:C7:D5:B9:7B:35:A5
Certificate issuer: /CN=A91166FC/serialNumber=69408F6B1CA02816683CCE4C08E00493251944B2
Certificate serial: 08D8
Authority key identifier: 69:40:8F:6B:1C:A0:28:16:68:3C:CE:4C:08:E0:04:93:25:19:44:B2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aUCPaxygKBZoPM5MCOAEkyUZRLI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/476977062DC811EEA7104148C4F9AE02.roa
Signing time: Sat 29 Jul 2023 04:27:51 +0000
ROA not before: Sat 29 Jul 2023 04:27:51 +0000
ROA not after: Wed 01 May 2024 00:00:00 +0000
asID: 151635
IP address blocks: 2406:ebc0:10::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2264 (0x8d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91166FC/serialNumber=69408F6B1CA02816683CCE4C08E00493251944B2
Validity
Not Before: Jul 29 04:27:51 2023 GMT
Not After : May 1 00:00:00 2024 GMT
Subject: CN=64c49547-136b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:e8:40:e9:f2:52:49:45:34:36:69:78:99:f9:
90:b4:24:fb:92:9b:70:01:10:db:b4:55:24:fd:76:
f8:e9:e8:48:a6:49:0c:48:41:ae:b7:a5:a9:68:04:
e5:31:4a:34:c8:3b:29:f1:73:71:2a:bc:f2:df:8c:
e1:59:29:5d:03:21:cf:71:d4:d7:ac:6a:f2:4c:8d:
47:d3:e9:0c:0b:b7:38:77:4f:a5:b4:ad:cd:1c:cd:
47:9d:01:9c:b8:87:03:0b:98:f9:1e:4e:e0:99:58:
4a:2f:d8:84:44:86:a4:e7:aa:53:fe:2d:40:1d:5a:
f0:c4:f6:99:49:51:96:af:29:82:09:2e:f6:e1:2a:
a1:4a:4d:cd:f6:ec:67:6a:f2:a8:c1:71:c3:e1:96:
b8:fe:a4:74:a3:2f:23:2a:03:a1:78:41:d1:72:a0:
68:f2:d3:d8:79:39:d2:ce:b3:32:a0:9d:64:a2:08:
4b:ce:1a:ef:9e:25:70:30:07:54:96:ce:c2:e1:cb:
58:c4:f8:25:3e:2b:d4:9f:49:c3:61:4b:46:ec:8f:
7e:b8:d4:df:2a:c1:52:84:6d:65:f9:9f:e2:1d:5b:
4a:8f:38:93:ee:0c:5d:4e:9a:ad:3d:4a:00:17:e3:
f8:c8:b2:03:96:51:9a:1f:19:b1:7d:8e:38:1e:e6:
0e:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:18:39:E1:28:82:3D:FB:24:9F:36:C8:E8:B4:C7:D5:B9:7B:35:A5
X509v3 Authority Key Identifier:
keyid:69:40:8F:6B:1C:A0:28:16:68:3C:CE:4C:08:E0:04:93:25:19:44:B2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aUCPaxygKBZoPM5MCOAEkyUZRLI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/476977062DC811EEA7104148C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:ebc0:10::/48
Signature Algorithm: sha256WithRSAEncryption
73:38:46:db:d7:92:94:d4:77:19:8c:a9:40:c1:c0:3f:22:66:
9a:91:3d:f4:19:26:d8:12:8a:c0:e7:9d:31:4f:90:93:2d:88:
78:b3:c2:51:48:b8:1f:df:b4:8e:50:1d:3d:f7:da:5f:60:88:
64:61:d7:f5:96:8b:66:f7:04:25:54:21:09:19:ee:35:a1:53:
e0:d1:5d:4b:1c:12:b3:76:34:db:f5:80:79:16:d9:68:01:6a:
d2:e8:c4:c2:65:be:6f:15:3c:be:d7:8d:cd:77:e1:cd:10:eb:
99:bc:51:e2:df:2a:75:6c:46:50:06:7d:a4:98:5a:77:ff:a3:
d2:05:d2:4d:36:f3:3b:19:90:91:fb:6c:b0:14:62:be:f1:3f:
ad:00:ff:cd:2e:9c:ca:7d:51:63:2d:a1:02:67:2f:5e:34:45:
18:38:57:90:46:3c:7a:37:da:d2:db:5e:67:3a:50:86:88:c6:
61:75:b5:2d:f8:ec:7e:91:e1:08:f4:07:eb:12:4a:1f:4b:f0:
67:09:c8:e3:b8:b0:b7:cf:53:b0:c4:6a:33:08:d0:b8:68:0f:
83:f3:3d:15:0f:32:40:47:06:38:cd:19:03:e1:42:ee:ca:b7:
85:32:ef:9d:a1:9f:9a:52:c0:98:cc:07:b9:4e:20:bb:4a:5b:
d3:5e:36:be
-----BEGIN CERTIFICATE-----
MIIFdDCCBFygAwIBAgICCNgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MTY2RkMxMTAvBgNVBAUTKDY5NDA4RjZCMUNBMDI4MTY2ODNDQ0U0QzA4RTAwNDkz
MjUxOTQ0QjIwHhcNMjMwNzI5MDQyNzUxWhcNMjQwNTAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NGM0OTU0Ny0xMzZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA0OhA6fJSSUU0Nml4mfmQtCT7kptwARDbtFUk/Xb46ehIpkkMSEGut6WpaATl
MUo0yDsp8XNxKrzy34zhWSldAyHPcdTXrGryTI1H0+kMC7c4d0+ltK3NHM1HnQGc
uIcDC5j5Hk7gmVhKL9iERIak56pT/i1AHVrwxPaZSVGWrymCCS724SqhSk3N9uxn
avKowXHD4Za4/qR0oy8jKgOheEHRcqBo8tPYeTnSzrMyoJ1koghLzhrvniVwMAdU
ls7C4ctYxPglPivUn0nDYUtG7I9+uNTfKsFShG1l+Z/iHVtKjziT7gxdTpqtPUoA
F+P4yLIDllGaHxmxfY44HuYOIwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFP0YOeEo
gj37JJ82yOi0x9W5ezWlMB8GA1UdIwQYMBaAFGlAj2scoCgWaDzOTAjgBJMlGUSy
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjZGQy9BQjFGNEVDQTcy
OUExMUVBQUJCRjkxNDFDNEY5QUUwMi9hVUNQYXh5Z0tCWm9QTTVNQ09BRWt5VVpS
TEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2FVQ1BheHlnS0Jab1BNNU1DT0FFa3lVWlJMSS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
MTY2RkMvQUIxRjRFQ0E3MjlBMTFFQUFCQkY5MTQxQzRGOUFFMDIvNDc2OTc3MDYy
REM4MTFFRUE3MTA0MTQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E
EzARMA8EAgACMAkDBwAkBuvAABAwDQYJKoZIhvcNAQELBQADggEBAHM4RtvXkpTU
dxmMqUDBwD8iZpqRPfQZJtgSisDnnTFPkJMtiHizwlFIuB/ftI5QHT332l9giGRh
1/WWi2b3BCVUIQkZ7jWhU+DRXUscErN2NNv1gHkW2WgBatLoxMJlvm8VPL7Xjc13
4c0Q65m8UeLfKnVsRlAGfaSYWnf/o9IF0k028zsZkJH7bLAUYr7xP60A/80unMp9
UWMtoQJnL140RRg4V5BGPHo32tLbXmc6UIaIxmF1tS347H6R4Qj0B+sSSh9L8GcJ
yOO4sLfPU7DEajMI0LhoD4PzPRUPMkBHBjjNGQPhQu7Kt4Uy752hn5pSwJjMB7lO
ILtKW9NeNr4=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:46 2024 by rpki-client on console-ams.rpki-client.org