Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/AD5001146C6911EDB692846DC4F9AE02.roa
File: AD5001146C6911EDB692846DC4F9AE02.roa (raw, json)
Hash identifier: nlpEoyv9tnkdn4mvLFa4wTbu8ZlUGqt080qalQppySc=
Subject key identifier: 25:AD:8E:47:06:91:A8:03:20:9B:79:BC:32:EB:17:35:B5:CE:16:88
Certificate issuer: /CN=A917BAC5/serialNumber=E1088187F64094263DDA6749A95F73AA6C1AB063
Certificate serial: A5
Authority key identifier: E1:08:81:87:F6:40:94:26:3D:DA:67:49:A9:5F:73:AA:6C:1A:B0:63
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QiBh_ZAlCY92mdJqV9zqmwasGM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/AD5001146C6911EDB692846DC4F9AE02.roa
Signing time: Fri 25 Nov 2022 02:34:25 +0000
ROA not before: Fri 25 Nov 2022 02:34:25 +0000
ROA not after: Tue 31 Oct 2023 00:00:00 +0000
asID: 150154
IP address blocks: 2400:9ce0:1000::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 165 (0xa5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917BAC5, serialNumber=E1088187F64094263DDA6749A95F73AA6C1AB063
Validity
Not Before: Nov 25 02:34:25 2022 GMT
Not After : Oct 31 00:00:00 2023 GMT
Subject: CN=638029b1-ba67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:ea:a1:f4:c0:bc:30:fe:b5:00:d8:33:00:37:
8c:50:03:21:ed:3a:d2:f3:0d:b1:85:7d:f4:2c:7d:
f3:4f:7b:93:52:36:43:fc:22:27:0d:04:1c:b1:bb:
ba:f3:d3:b5:04:d9:2d:de:d3:81:cc:ff:74:7c:88:
35:90:9c:54:68:20:bd:57:d1:c1:63:56:48:52:6b:
c5:f1:2e:af:a9:f2:92:31:d4:c4:f1:dc:02:cb:03:
2e:72:d4:c7:4c:90:c7:80:17:9b:29:a2:dc:bd:c1:
63:1b:99:cc:39:b5:27:9a:dc:af:8d:60:9d:f7:94:
df:1b:01:39:1a:1c:65:29:59:09:a1:54:ff:67:9a:
b2:17:a9:ca:4d:5e:8f:7d:71:d6:b9:1c:4c:15:76:
8e:99:f5:d5:a4:09:61:2f:bf:db:a8:aa:02:1e:aa:
92:1e:e0:2d:f0:aa:89:2f:19:4e:6f:ff:68:8d:68:
3b:83:32:6a:98:13:6a:6a:56:15:54:d2:ee:fc:ac:
b3:8a:a8:ea:65:63:05:78:6b:d5:44:fa:8a:63:d8:
b7:b5:99:3a:30:5f:52:d7:38:4a:f7:ab:99:d4:02:
fd:2a:b9:e3:66:4d:0a:5c:5e:6a:2b:2e:26:18:06:
9c:fa:38:01:7c:1d:32:77:c5:19:4a:d3:fa:21:01:
97:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:AD:8E:47:06:91:A8:03:20:9B:79:BC:32:EB:17:35:B5:CE:16:88
X509v3 Authority Key Identifier:
keyid:E1:08:81:87:F6:40:94:26:3D:DA:67:49:A9:5F:73:AA:6C:1A:B0:63
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/4QiBh_ZAlCY92mdJqV9zqmwasGM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QiBh_ZAlCY92mdJqV9zqmwasGM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/AD5001146C6911EDB692846DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:9ce0:1000::/36
Signature Algorithm: sha256WithRSAEncryption
08:6d:51:b6:12:66:a9:34:c7:4f:ad:bc:d3:b6:0a:4d:ff:6e:
2a:19:81:1d:49:f7:2c:54:9b:e6:8c:a8:ae:72:fb:1e:cb:61:
0c:08:a8:24:c3:61:f6:52:da:22:8d:16:af:e6:6a:c6:07:c6:
c6:98:ee:3d:5f:d1:e4:8d:c7:2c:d0:c6:af:a3:78:35:9e:14:
15:ff:36:ca:6c:cd:bf:f6:df:48:0c:8a:23:83:94:54:62:1e:
4e:ae:6d:db:ed:aa:33:46:83:09:c6:15:35:2b:56:cc:e7:a8:
1f:44:d1:f8:fa:79:4c:f6:a9:dd:b1:1a:62:54:68:e2:74:34:
50:f1:d1:9f:38:ac:6e:d7:1f:5e:72:d1:73:b8:c9:6f:8a:6f:
40:f1:11:bb:71:40:40:c3:64:ba:76:07:46:a9:a6:f8:7b:eb:
a7:22:45:65:86:fd:08:d2:e8:94:2f:31:53:16:bb:90:96:b9:
32:a4:f9:76:b5:a6:d7:74:8f:aa:4c:86:54:57:26:1e:01:33:
96:69:98:43:0b:a4:81:cb:4f:2f:a2:6a:1b:24:dc:42:30:27:
76:39:c0:e4:fb:fc:86:aa:41:9b:0b:76:bd:35:d3:cb:04:1c:
6f:8d:46:08:ca:65:c5:fa:64:3b:01:17:bf:26:57:a4:00:44:
e2:5f:fe:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 15:24:00 2025 by rpki-client