Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/AD0215902DCB11ECB9E6372DC4F9AE02.roa
File: AD0215902DCB11ECB9E6372DC4F9AE02.roa (raw, json)
Hash identifier: f2tpx3MOI/6kFHFQMNWdNFL21NEbaubABfDy/txs1EI=
Subject key identifier: 61:53:EF:3A:2A:7E:41:41:E1:48:26:57:83:6A:A2:24:48:EE:97:4F
Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93
Certificate serial: 263E
Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/AD0215902DCB11ECB9E6372DC4F9AE02.roa
Signing time: Sun 06 Aug 2023 16:13:11 +0000
ROA not before: Sun 06 Aug 2023 16:13:11 +0000
ROA not after: Mon 30 Sep 2024 00:00:00 +0000
asID: 147300
IP address blocks: 2402:9e80:42::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9790 (0x263e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911C28D
Validity
Not Before: Aug 6 16:13:11 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=64cfc697-ad6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:43:3b:1a:97:4a:bf:3d:24:f3:ce:63:e4:9e:
b4:8f:98:ad:09:00:35:2d:6b:ce:b0:d3:43:8c:19:
5f:8e:d5:4c:51:d0:7f:9b:55:0c:fe:b1:51:60:0b:
04:51:dc:d0:ea:2d:43:0c:6c:8e:36:db:0d:51:06:
ef:a1:ee:34:6a:39:a9:e4:ab:e8:58:37:0c:23:c7:
47:6c:3b:4a:e2:83:1d:65:e3:c5:b2:b0:b6:96:16:
11:29:85:e5:5a:5d:4a:8c:87:0e:6d:da:b1:5b:99:
ac:d1:8c:ca:04:1b:03:1e:c1:7d:a3:a6:5d:44:78:
cc:e7:ad:f4:c2:e5:8b:9f:1f:fe:cc:23:26:00:a5:
20:4b:31:4a:39:cc:b6:e8:86:43:4c:f0:25:76:a2:
32:d4:2f:00:2e:a0:05:44:f0:4f:04:74:91:68:b3:
61:29:a3:0f:99:14:53:ef:32:e9:ac:43:41:5d:31:
dd:f5:e7:d7:78:85:3d:fd:8a:cf:21:a2:9a:e2:fe:
8b:26:0f:c8:01:e3:d6:56:85:85:e5:28:24:d2:0e:
01:2b:b7:f0:18:ca:8d:cf:13:fb:65:fc:06:14:78:
f4:66:b4:be:20:8e:62:83:64:a3:a9:93:b5:81:c8:
77:e0:b0:ff:9f:ac:48:60:7a:8a:5d:4d:8c:29:1b:
f8:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:53:EF:3A:2A:7E:41:41:E1:48:26:57:83:6A:A2:24:48:EE:97:4F
X509v3 Authority Key Identifier:
keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/AD0215902DCB11ECB9E6372DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2402:9e80:42::/48
Signature Algorithm: sha256WithRSAEncryption
c9:f3:a3:32:a9:b4:fb:3a:17:19:25:55:26:74:32:fb:6a:72:
24:12:c1:0c:35:19:b8:d7:25:45:99:c0:ee:d3:fb:63:69:06:
88:d2:70:88:75:34:1a:3f:c2:fd:e8:b5:ae:46:0b:9a:13:d7:
3c:40:e8:41:d8:35:4e:b4:91:39:31:68:ed:34:ed:e7:8b:1d:
d9:b2:00:4d:3f:3b:94:cc:ee:5f:92:37:10:2d:3c:7b:6c:58:
65:97:f5:e6:87:bd:45:d4:8d:a4:02:2e:f3:dc:8a:fd:d8:2e:
1d:1a:c1:1e:c1:03:69:7d:e6:f1:a7:18:6d:00:2d:e2:ae:59:
ba:3a:db:fb:91:4a:82:a4:78:01:28:04:be:e0:02:34:26:09:
16:17:c1:c3:46:41:54:3b:3a:d0:82:5e:4b:a0:9d:19:3d:9b:
1f:13:66:e6:39:da:17:34:1f:3b:26:78:1a:02:90:9d:f7:90:
da:5d:b0:49:dc:a5:4e:9a:82:39:5a:2f:dd:d9:e0:a8:eb:82:
c6:13:45:7f:3a:ab:ce:f5:0e:0e:1c:cc:70:3e:d2:f6:da:d6:
7a:37:3d:cc:08:3c:c4:75:79:7a:8a:51:40:df:21:cf:dd:a7:
cf:9c:c3:63:fb:e7:0d:5b:bf:6c:fd:e0:aa:7b:69:14:e0:62:
4c:51:a8:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 01:40:44 2025 by rpki-client