Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91623B9/78CEACBC2B3611ECAD595B7CC4F9AE02/6762893A976211EFA4D0606CC4F9AE02.roa
File: 6762893A976211EFA4D0606CC4F9AE02.roa (raw, json)
Hash identifier: /gYeqqbk6WlA+N6Yv/cuDVmH4COmNboDX4ybOjU2VTk=
Subject key identifier: 34:25:44:DA:80:2A:E1:E6:61:BD:D8:B4:58:D1:84:34:D6:8B:CD:00
Certificate issuer: /CN=A91623B9/serialNumber=98E1ECBD45D7879F9BC9439F4C6C2F2714AD36F5
Certificate serial: 049F
Authority key identifier: 98:E1:EC:BD:45:D7:87:9F:9B:C9:43:9F:4C:6C:2F:27:14:AD:36:F5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mOHsvUXXh5-byUOfTGwvJxStNvU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91623B9/78CEACBC2B3611ECAD595B7CC4F9AE02/6762893A976211EFA4D0606CC4F9AE02.roa
Signing time: Sun 08 Dec 2024 23:43:00 +0000
ROA not before: Sun 08 Dec 2024 23:43:00 +0000
ROA not after: Sat 31 Jan 2026 00:00:00 +0000
asID: 139660
IP address blocks: 2001:df7:c380::/48 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1183 (0x49f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91623B9
Validity
Not Before: Dec 8 23:43:00 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=67562f04-a9c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:63:6c:80:10:6e:23:69:0d:49:79:c1:ad:9f:
df:08:8a:cb:98:e4:aa:9e:30:e9:c2:2c:b5:df:c6:
6d:91:c5:7a:6e:5c:f8:2f:92:19:5a:46:b2:88:84:
50:bc:c5:5b:b4:ec:65:ea:6f:58:fa:7b:78:e3:1c:
e0:22:41:a6:6e:04:93:ce:64:b5:3f:7f:55:ce:ff:
a3:ee:01:6e:a6:df:67:6d:cd:f9:a5:2e:f8:ed:c4:
dc:a4:fb:ab:8d:e4:73:b1:51:de:2a:7d:b1:81:a3:
8b:0a:fe:64:7d:e8:62:8a:59:e2:e5:fc:cd:51:74:
28:85:87:10:e7:b1:ce:25:d9:99:a3:2c:c3:8d:93:
f8:4a:a7:7b:94:36:c4:60:d5:0a:3b:59:d1:eb:01:
24:62:03:d1:8a:c2:d8:66:f1:49:a4:bf:16:17:fb:
9e:3e:a6:de:01:10:41:bd:fb:ef:96:75:ac:33:ee:
cd:12:b1:58:56:c9:f3:7f:13:cf:2d:99:a7:f2:61:
0d:98:06:ca:22:7f:fa:c9:ca:99:d7:e3:d1:b8:a7:
d4:67:4b:f9:ae:f5:36:3a:df:a5:83:2e:4d:86:46:
00:36:f5:cc:1c:3a:15:9a:ce:b8:f2:d9:bd:a6:16:
69:b7:48:2c:96:65:2c:f0:d6:66:c0:75:ef:e4:39:
25:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:25:44:DA:80:2A:E1:E6:61:BD:D8:B4:58:D1:84:34:D6:8B:CD:00
X509v3 Authority Key Identifier:
keyid:98:E1:EC:BD:45:D7:87:9F:9B:C9:43:9F:4C:6C:2F:27:14:AD:36:F5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91623B9/78CEACBC2B3611ECAD595B7CC4F9AE02/mOHsvUXXh5-byUOfTGwvJxStNvU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mOHsvUXXh5-byUOfTGwvJxStNvU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91623B9/78CEACBC2B3611ECAD595B7CC4F9AE02/6762893A976211EFA4D0606CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:df7:c380::/48
Signature Algorithm: sha256WithRSAEncryption
c4:3a:45:82:94:bc:3d:62:40:b2:83:fa:24:54:51:56:fb:d0:
28:77:c5:7b:d8:df:3e:62:0f:a7:aa:e6:15:17:3e:a1:16:18:
d8:ba:55:79:d3:54:58:da:a7:e3:d4:57:4c:f9:00:0b:5d:d2:
15:a4:82:ec:1a:60:8c:03:8c:b2:22:82:73:1d:26:45:69:eb:
39:95:96:fe:ae:88:2f:55:07:d6:58:91:c9:5c:3c:87:f0:6f:
3c:60:3b:4d:81:17:79:e1:c7:dc:76:e1:ce:b9:58:ef:34:c4:
9a:eb:b9:22:cb:09:d9:b8:da:d4:72:f5:47:a6:28:b0:1c:72:
0c:d4:54:da:5b:cf:ad:94:4d:57:ba:fe:41:85:71:c6:22:92:
94:8b:48:6c:ed:57:17:5b:00:06:e1:61:0d:62:ba:5b:6c:b4:
2c:df:19:e4:f8:ad:9e:81:eb:43:4b:42:a1:ad:2e:b3:ee:46:
b8:43:59:2c:b1:b9:25:bb:dc:5a:1a:9b:ad:32:1e:ac:da:98:
47:33:1e:e7:bb:d5:12:fc:00:55:cf:a8:c9:28:b4:06:63:a6:
a6:ca:cd:dd:fd:04:de:bb:a5:7c:bd:ad:d6:09:0b:20:07:08:
e3:58:52:80:50:41:0a:c4:16:71:a4:43:4d:83:55:7f:f8:2f:
e2:cd:82:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 01:42:35 2025 by rpki-client