Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/9F82A8D45B3E11EDA645054FC4F9AE02.roa
File: 9F82A8D45B3E11EDA645054FC4F9AE02.roa (raw, json)
Hash identifier: mX5pTI4AusdBKS+zpvxsoO5+ANS82RvDDXrZdfasAQA=
Subject key identifier: 94:8F:17:38:3E:4F:97:C8:A1:4E:74:EA:80:AB:6A:E6:A8:EB:7D:BC
Certificate issuer: /CN=A917B4BF/serialNumber=8035090A057327E1200593C20C88C519A45C9ECB
Certificate serial: 01FC
Authority key identifier: 80:35:09:0A:05:73:27:E1:20:05:93:C2:0C:88:C5:19:A4:5C:9E:CB
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDUJCgVzJ-EgBZPCDIjFGaRcnss.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/9F82A8D45B3E11EDA645054FC4F9AE02.roa
Signing time: Thu 03 Nov 2022 06:13:24 +0000
ROA not before: Thu 03 Nov 2022 06:13:24 +0000
ROA not after: Sun 28 May 2023 00:00:00 +0000
asID: 149500
IP address blocks: 2400:58a0:1000::/44 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 508 (0x1fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917B4BF/serialNumber=8035090A057327E1200593C20C88C519A45C9ECB
Validity
Not Before: Nov 3 06:13:24 2022 GMT
Not After : May 28 00:00:00 2023 GMT
Subject: CN=63635c04-1040
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:7f:0d:94:7f:8f:2e:1a:b9:37:62:d4:d7:86:
7a:12:92:68:fc:fc:aa:c4:57:da:6c:cf:5e:ab:a8:
67:b8:87:8a:b5:46:41:30:b3:50:8a:8e:28:9f:2f:
02:8a:d5:d5:ec:32:81:1c:76:2a:b0:46:be:4e:f4:
26:2c:0f:ec:e9:3d:8d:bf:52:80:94:d7:a7:94:6f:
d2:0c:51:83:f6:b4:0f:b3:78:74:ec:2d:5c:e4:06:
69:2c:a4:be:f5:3e:67:c4:1c:a0:1d:1c:30:de:c5:
ae:3a:11:86:5d:83:b4:2c:63:4a:89:11:6b:21:75:
52:2b:bd:f0:b7:cf:d5:16:b3:66:5b:1e:af:39:3d:
a3:2a:96:9f:ac:ea:f0:04:41:c9:05:41:87:b1:78:
2d:cc:c6:51:f2:b2:be:af:0c:5f:d2:bc:66:7b:97:
ab:67:f4:14:64:6d:4d:e2:1b:88:7f:9a:2e:44:7a:
c0:40:22:8e:16:a0:67:ce:f9:ec:a0:c5:49:e3:7b:
f1:2a:43:f3:a4:95:ee:b7:2d:64:33:af:6a:5b:d7:
73:91:73:6d:63:cb:fd:eb:ac:30:ce:03:2c:2d:a2:
46:91:e5:2a:8d:fc:f5:24:b0:69:fd:5a:02:09:b0:
3d:09:e5:6a:54:54:c2:a8:57:12:2b:4c:63:45:cc:
e3:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:8F:17:38:3E:4F:97:C8:A1:4E:74:EA:80:AB:6A:E6:A8:EB:7D:BC
X509v3 Authority Key Identifier:
keyid:80:35:09:0A:05:73:27:E1:20:05:93:C2:0C:88:C5:19:A4:5C:9E:CB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/gDUJCgVzJ-EgBZPCDIjFGaRcnss.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDUJCgVzJ-EgBZPCDIjFGaRcnss.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/9F82A8D45B3E11EDA645054FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:58a0:1000::/44
Signature Algorithm: sha256WithRSAEncryption
a7:1e:00:a9:76:94:ea:ab:ad:36:24:1d:07:af:c7:a7:3b:1b:
33:d5:2d:f7:1f:8a:3e:8f:c9:c8:2f:07:bd:a5:da:23:b6:f6:
95:f2:6e:88:b5:f0:0b:95:2b:07:27:c2:43:65:5f:9c:e9:d7:
a3:f5:07:20:e6:f0:76:00:62:21:2a:ca:46:e4:ea:04:62:5d:
69:ac:10:6f:d0:cd:22:56:1e:df:27:fb:dd:15:da:27:07:fd:
2e:2f:31:41:87:60:46:b1:3b:e7:b2:91:c6:b7:be:42:1f:74:
ce:db:e4:6b:8a:5e:f6:a6:a8:a1:da:b3:d0:11:df:a6:1c:cb:
f6:6c:b4:af:b2:12:17:e6:74:59:76:5b:69:a4:58:63:71:23:
f5:ff:86:ad:1d:a6:30:61:38:01:b7:fd:92:a4:c5:62:5d:b9:
d5:1f:13:ca:3d:db:f2:06:5c:e2:1f:43:f3:2a:9e:4a:82:f7:
b1:43:45:5e:ef:30:ef:64:bd:7e:0d:2e:df:e4:50:4b:33:76:
eb:ea:6a:6c:17:6c:01:68:b4:f9:4f:2d:2c:d9:8e:70:e7:b2:
2f:44:c1:8c:6d:48:49:b0:cb:44:0e:33:17:21:21:51:e3:5c:
64:b1:4e:bf:e1:a7:b2:c6:90:87:a6:42:0f:2d:1b:74:0a:fc:
c3:d9:cf:31
-----BEGIN CERTIFICATE-----
MIIFdDCCBFygAwIBAgICAfwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
N0I0QkYxMTAvBgNVBAUTKDgwMzUwOTBBMDU3MzI3RTEyMDA1OTNDMjBDODhDNTE5
QTQ1QzlFQ0IwHhcNMjIxMTAzMDYxMzI0WhcNMjMwNTI4MDAwMDAwWjAYMRYwFAYD
VQQDEw02MzYzNWMwNC0xMDQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAvn8NlH+PLhq5N2LU14Z6EpJo/PyqxFfabM9eq6hnuIeKtUZBMLNQio4ony8C
itXV7DKBHHYqsEa+TvQmLA/s6T2Nv1KAlNenlG/SDFGD9rQPs3h07C1c5AZpLKS+
9T5nxBygHRww3sWuOhGGXYO0LGNKiRFrIXVSK73wt8/VFrNmWx6vOT2jKpafrOrw
BEHJBUGHsXgtzMZR8rK+rwxf0rxme5erZ/QUZG1N4huIf5ouRHrAQCKOFqBnzvns
oMVJ43vxKkPzpJXuty1kM69qW9dzkXNtY8v966wwzgMsLaJGkeUqjfz1JLBp/VoC
CbA9CeVqVFTCqFcSK0xjRczjsQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFJSPFzg+
T5fIoU506oCrauao6328MB8GA1UdIwQYMBaAFIA1CQoFcyfhIAWTwgyIxRmkXJ7L
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRCRi9COENDNjkzQzg1
NUMxMUVDOEUzQ0JCNTFDNEY5QUUwMi9nRFVKQ2dWekotRWdCWlBDRElqRkdhUmNu
c3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2dEVUpDZ1Z6Si1FZ0JaUENESWpGR2FSY25zcy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
N0I0QkYvQjhDQzY5M0M4NTVDMTFFQzhFM0NCQjUxQzRGOUFFMDIvOUY4MkE4RDQ1
QjNFMTFFREE2NDUwNTRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E
EzARMA8EAgACMAkDBwQkAFigEAAwDQYJKoZIhvcNAQELBQADggEBAKceAKl2lOqr
rTYkHQevx6c7GzPVLfcfij6PycgvB72l2iO29pXyboi18AuVKwcnwkNlX5zp16P1
ByDm8HYAYiEqykbk6gRiXWmsEG/QzSJWHt8n+90V2icH/S4vMUGHYEaxO+eykca3
vkIfdM7b5GuKXvamqKHas9AR36Ycy/ZstK+yEhfmdFl2W2mkWGNxI/X/hq0dpjBh
OAG3/ZKkxWJdudUfE8o92/IGXOIfQ/MqnkqC97FDRV7vMO9kvX4NLt/kUEszduvq
amwXbAFotPlPLSzZjnDnsi9EwYxtSEmwy0QOMxchIVHjXGSxTr/hp7LGkIemQg8t
G3QK/MPZzzE=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:47 2023 by rpki-client on console-fra.rpki-client.org