Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/AD0215902DCB11ECB9E6372DC4F9AE02.roa
File: AD0215902DCB11ECB9E6372DC4F9AE02.roa (raw, json)
Hash identifier: Nb/BOn1GaENv7We+W4uNr3BpbpUjRk8vC5VCc2ce/7Q=
Subject key identifier: 76:A2:E2:1A:AA:7B:10:FD:F4:1F:16:3D:ED:28:0F:56:E4:4B:9C:F5
Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93
Certificate serial: 24CA
Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/AD0215902DCB11ECB9E6372DC4F9AE02.roa
Signing time: Tue 02 Aug 2022 04:23:10 +0000
ROA not before: Tue 02 Aug 2022 04:23:10 +0000
ROA not after: Sat 30 Sep 2023 00:00:00 +0000
asID: 147300
IP address blocks: 2402:9e80:42::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9418 (0x24ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93
Validity
Not Before: Aug 2 04:23:10 2022 GMT
Not After : Sep 30 00:00:00 2023 GMT
Subject: CN=62e8a6ae-c359
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:ee:1d:9b:19:c1:12:6c:34:1e:2e:dc:48:c1:
5c:a2:5e:61:18:f0:f9:11:10:f5:6e:5e:2a:77:3b:
a1:cc:69:1d:f5:ae:06:ee:95:3f:69:d3:48:e4:9c:
93:4c:23:0e:2c:c0:c3:2d:0e:9b:ca:e9:7f:a4:b9:
c3:87:5d:d8:e8:d4:83:40:5e:6e:8d:d7:64:12:ba:
9d:fd:86:ea:92:c9:5b:ed:38:ed:89:3a:01:be:07:
18:b5:a0:ef:05:e5:95:35:ef:6f:2c:2e:5a:29:a6:
c2:f0:d3:7f:a7:c9:a7:a2:20:a0:8e:89:3d:65:05:
87:70:1f:8c:79:5f:c4:25:d9:af:21:99:83:f9:de:
6a:a2:d5:d8:c1:a5:11:87:82:42:1f:08:b6:9b:8c:
b0:18:dd:4b:bd:52:7d:f0:74:43:74:22:c2:ea:41:
1c:4a:e0:ba:b4:5a:90:db:11:97:26:fb:5d:bc:9e:
af:18:f7:68:09:56:c7:a6:5f:ba:c0:a2:1f:02:ab:
38:66:b2:63:4b:27:76:33:54:55:ab:22:09:52:64:
8b:f0:2d:38:ac:5d:2b:0e:e4:5c:d0:43:f9:ba:3d:
b0:e8:66:f5:d1:be:a5:49:6c:fc:f1:2f:fc:80:92:
c4:26:e1:46:75:36:22:4c:57:17:b9:cf:cf:32:6a:
e3:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:A2:E2:1A:AA:7B:10:FD:F4:1F:16:3D:ED:28:0F:56:E4:4B:9C:F5
X509v3 Authority Key Identifier:
keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/AD0215902DCB11ECB9E6372DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2402:9e80:42::/48
Signature Algorithm: sha256WithRSAEncryption
0b:46:7c:00:1f:71:e4:f4:8e:53:38:83:8b:f9:88:b7:17:c2:
a2:fe:bc:9f:5f:dd:c5:1b:71:ae:c9:71:17:2f:d4:33:cb:0f:
c2:0c:34:96:15:66:77:11:ae:64:7f:38:df:b4:87:2e:c6:a0:
e2:91:41:92:1d:93:14:02:a7:f0:d3:3d:da:34:4e:b1:db:2f:
d3:a8:67:12:4d:d8:a9:c0:b0:15:9f:2a:68:8a:77:77:a7:a5:
17:4a:14:a1:c0:64:5e:27:0a:39:a8:1a:1e:f5:f5:26:a5:ee:
50:96:4f:52:0b:a5:0a:9a:27:6d:3a:d2:72:50:f9:c0:b9:0a:
36:b4:05:55:a6:44:c5:8c:14:d3:fb:ce:a0:47:d1:d4:6e:a7:
67:5e:03:3c:3e:b0:28:c3:ee:36:03:5d:03:bc:5e:93:56:b8:
1e:bb:15:91:ea:a6:39:21:ce:00:32:95:0d:be:3c:2e:1a:70:
90:7c:a3:2b:23:ef:4d:c9:b8:46:42:27:bd:42:29:3f:91:58:
59:1c:72:1b:c0:98:92:95:4c:d8:03:97:7a:55:52:25:20:ca:
01:0e:a4:ef:12:0f:bf:3d:7d:09:3d:15:56:41:af:88:c8:85:
0d:d8:55:52:be:70:99:97:b8:d0:ee:98:fc:d8:7d:98:29:62:
79:3d:27:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:47 2024 by rpki-client on console-ams.rpki-client.org