Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/13B569D89B7C11EFA635C368C4F9AE02.roa
File: 13B569D89B7C11EFA635C368C4F9AE02.roa (raw, json)
Hash identifier: sxjjQHkdMrEO0Ivw8SpdSnlcj4b+0XYC5QyAKOnagj4=
Subject key identifier: D2:C1:3C:6F:F1:8E:B7:CE:48:A4:D7:A7:D0:2B:04:08:1B:0C:80:EA
Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5
Certificate serial: 0DD1
Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/13B569D89B7C11EFA635C368C4F9AE02.roa
Signing time: Sun 01 Dec 2024 12:49:53 +0000
ROA not before: Sun 01 Dec 2024 12:49:53 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 215750
IP address blocks: 2406:840:9600::/44 maxlen: 48
2406:840:9610::/44 maxlen: 48
2406:840:9620::/44 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3537 (0xdd1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917ED5C
Validity
Not Before: Dec 1 12:49:53 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=674c5b71-c2f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:f1:02:5a:05:26:80:e6:b7:e1:c9:56:25:d5:
5d:dd:04:40:82:9f:b5:79:b3:f9:c7:e5:22:83:5c:
07:ac:2d:39:4a:14:d9:93:d8:91:62:fb:46:59:e5:
a6:69:ee:39:8c:d9:06:35:37:59:6f:d9:d3:98:64:
6c:21:95:30:17:4c:63:a9:72:3c:d5:83:5d:70:17:
1f:f4:70:5b:82:66:4e:cf:e8:ff:c9:e5:62:00:1d:
25:42:e2:b4:60:b8:5d:fb:b4:de:10:c5:68:ae:b0:
fc:c2:21:36:29:83:1f:ff:c3:e4:a5:6a:46:5f:af:
8e:a6:9c:0b:eb:30:b8:2e:1a:c4:18:4e:d2:6e:29:
40:e1:64:e6:01:f8:d9:9a:10:f3:65:05:03:0c:a8:
1f:5d:ff:09:8c:3e:ad:ac:8e:36:bd:1b:be:54:c5:
e5:30:cd:94:5a:82:3f:39:5d:70:df:c2:65:06:78:
ba:51:99:ae:ff:cc:dc:25:30:33:82:5c:c2:24:58:
eb:60:81:d7:99:64:16:0b:61:4e:12:68:55:7a:a9:
8e:13:47:8a:cf:63:a4:1a:89:a0:2d:32:c0:bc:97:
32:8f:7c:19:34:4b:94:a9:32:ce:14:4e:5a:eb:42:
86:cb:26:40:a5:e9:e8:d4:92:fa:c4:0e:00:8a:d1:
a9:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:C1:3C:6F:F1:8E:B7:CE:48:A4:D7:A7:D0:2B:04:08:1B:0C:80:EA
X509v3 Authority Key Identifier:
keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/13B569D89B7C11EFA635C368C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:840:9600::-2406:840:962f:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
58:b9:80:e1:2f:11:18:25:fc:99:23:2e:06:e4:b0:b5:93:38:
bf:1f:ff:51:35:47:d5:23:10:4a:1c:ea:07:f9:1e:7d:b5:5b:
86:62:90:5a:78:d2:81:1f:31:b2:66:dd:07:eb:64:27:40:42:
a1:88:8c:93:c5:88:9a:54:8a:90:69:96:c8:d3:22:1b:ec:5d:
b0:5a:22:95:fc:70:c7:de:64:e3:17:c1:ac:bb:86:7c:e5:ea:
3d:33:3e:e6:bd:e4:4f:25:55:25:74:ef:a2:47:c6:77:2a:dc:
8e:0a:8d:e3:3a:35:e3:b8:59:66:1f:7f:32:4d:0d:72:7e:87:
48:04:09:00:61:16:ab:70:ac:88:76:ad:26:34:e1:12:77:6b:
6a:09:98:92:e8:c7:ca:a0:8a:64:a3:2f:23:26:b0:fc:6d:04:
f7:52:79:12:f6:65:1e:eb:34:bf:51:fb:47:8a:c6:ec:54:eb:
d5:c6:dd:1e:13:f9:e3:96:dc:ba:b6:02:d2:82:c5:dc:3a:b9:
85:8c:8c:a5:b4:bd:f8:82:3b:f4:b5:29:ae:5c:b5:72:d7:78:
1b:d6:2c:33:6f:3b:f1:c4:1b:5d:fb:c3:5d:b6:50:92:4d:42:
a1:11:2b:8f:7d:5f:65:40:93:c8:f2:94:e6:d6:4d:7f:33:15:
28:23:38:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 02:13:29 2025 by rpki-client