Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91449DF/04B7CF74F73A11EA815A1316C4F9AE02/5EDCF720152F11EE91050D3EC4F9AE02.roa
File: 5EDCF720152F11EE91050D3EC4F9AE02.roa (raw, json)
Hash identifier: IpoFn2k+JkRTn++1NmKX+pXP/ey+RyHb8Iv23d2nb1Y=
Subject key identifier: C5:93:4E:93:71:88:37:23:1D:37:25:A4:90:4E:AC:85:5B:72:C5:AB
Certificate issuer: /CN=A91449DF/serialNumber=53E38F1DB25A769ED2F4E35ADBF7EAC482C611A5
Certificate serial: 066C
Authority key identifier: 53:E3:8F:1D:B2:5A:76:9E:D2:F4:E3:5A:DB:F7:EA:C4:82:C6:11:A5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-OPHbJadp7S9ONa2_fqxILGEaU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91449DF/04B7CF74F73A11EA815A1316C4F9AE02/5EDCF720152F11EE91050D3EC4F9AE02.roa
Signing time: Tue 27 Jun 2023 21:12:50 +0000
ROA not before: Tue 27 Jun 2023 21:12:50 +0000
ROA not after: Sat 30 Dec 2023 00:00:00 +0000
asID: 800
IP address blocks: 2001:df4:d480::/48 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1644 (0x66c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91449DF
Validity
Not Before: Jun 27 21:12:50 2023 GMT
Not After : Dec 30 00:00:00 2023 GMT
Subject: CN=649b50d1-25b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:f8:53:8e:55:1d:27:0d:d5:b6:56:62:75:68:
aa:10:9d:76:15:89:ed:e4:13:00:15:bc:31:b1:1b:
1f:ac:56:65:81:32:d8:da:9e:cd:a0:02:b6:51:39:
7f:c4:e0:59:32:a0:25:63:60:f0:54:c6:f1:ba:0e:
2d:e5:4f:95:e8:25:58:73:32:49:c0:80:68:3c:22:
d0:aa:cd:53:68:bd:66:2a:84:e7:72:4b:30:34:36:
3a:e8:6b:70:91:82:2f:c9:61:9c:23:2d:b5:25:8c:
e3:4e:0d:b8:2f:19:28:cb:f2:1b:8f:68:70:e8:c6:
f9:9a:79:23:db:50:db:d0:67:29:28:9b:32:41:6b:
30:70:01:bd:8d:2d:c7:80:6e:2b:63:58:5a:7f:73:
7a:07:d1:e6:2d:93:59:b5:7d:3c:03:51:cd:52:93:
08:16:81:a7:e8:7c:12:56:ca:5f:85:d8:26:bf:18:
4f:a7:c0:4e:9e:c4:0f:24:4d:c8:1b:76:9c:d0:d9:
ee:c1:87:4c:21:a9:64:05:6a:1a:74:e9:34:5c:a7:
ae:fa:81:a8:a1:33:58:bb:fe:a7:5c:90:37:80:a6:
93:64:78:e2:42:7e:ee:8d:db:bb:0e:da:c1:28:89:
0e:32:bd:40:95:90:4f:63:83:7b:b6:f2:0d:d6:07:
1e:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:93:4E:93:71:88:37:23:1D:37:25:A4:90:4E:AC:85:5B:72:C5:AB
X509v3 Authority Key Identifier:
keyid:53:E3:8F:1D:B2:5A:76:9E:D2:F4:E3:5A:DB:F7:EA:C4:82:C6:11:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91449DF/04B7CF74F73A11EA815A1316C4F9AE02/U-OPHbJadp7S9ONa2_fqxILGEaU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-OPHbJadp7S9ONa2_fqxILGEaU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91449DF/04B7CF74F73A11EA815A1316C4F9AE02/5EDCF720152F11EE91050D3EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:df4:d480::/48
Signature Algorithm: sha256WithRSAEncryption
67:a5:ec:7a:54:1f:f8:3e:17:1b:3c:5f:70:4d:c5:a5:12:e9:
a8:6a:22:97:3a:8b:41:ce:0e:8d:58:f7:f9:ed:a4:73:50:9a:
e7:3c:25:e6:c1:2a:77:15:e1:ca:b8:be:60:f7:6e:7d:f6:08:
28:b6:0f:08:37:7a:00:54:bf:ee:fc:a3:8b:48:fc:b2:39:7c:
a2:d4:a9:5d:7a:cd:54:13:c4:ab:9d:84:25:36:63:fc:9e:c7:
24:bb:58:d2:a9:26:92:72:f2:e0:42:25:e1:e3:0d:8e:f2:7f:
e4:bc:d2:eb:05:9e:cb:bb:41:aa:2f:ab:3c:71:57:ec:2a:28:
31:bb:6b:df:3b:37:a4:fd:5d:0f:db:b1:92:89:af:ca:8c:67:
41:74:51:33:b7:16:a8:54:6d:bd:a9:df:d8:aa:86:c9:fd:37:
33:24:a4:e7:eb:fe:b0:3c:13:09:aa:1e:5d:ad:f2:35:5e:41:
74:e3:5c:50:b7:57:09:8e:40:fa:1e:a7:4c:b7:65:b2:bd:d1:
1a:e3:fd:c1:f2:72:f7:1d:f1:27:3f:d7:33:6b:0e:1e:7b:a4:
d5:15:53:b9:9d:c4:75:6d:4d:9b:0e:e9:10:a7:1f:fd:09:fb:
dc:84:cf:d1:24:4a:f1:5a:04:d4:2e:eb:dc:a2:2a:7b:02:6d:
a1:67:0c:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 02:10:01 2025 by rpki-client