Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/AE3E17129AD611EA9A86E163C4F9AE02.roa
File: AE3E17129AD611EA9A86E163C4F9AE02.roa (raw, json)
Hash identifier: ycjwUWV97WUpbBrEeLQwE+5xUtxUbUFykLRKZk7zgww=
Subject key identifier: 2D:D6:0E:7C:00:C7:E6:BD:78:78:25:05:E3:E3:7D:0B:3C:47:E9:23
Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5
Certificate serial: 0CB4
Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/AE3E17129AD611EA9A86E163C4F9AE02.roa
Signing time: Sun 26 May 2024 21:33:00 +0000
ROA not before: Sun 26 May 2024 21:33:00 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 39753
IP address blocks: 2406:840:f100::/44 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3252 (0xcb4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917ED5C
Validity
Not Before: May 26 21:33:00 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=6653aa8c-e9b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:22:62:49:29:66:36:e0:a7:ae:74:68:91:70:
10:ee:78:5d:f7:f3:d0:93:b6:b3:aa:ad:5b:1e:50:
b6:7c:2a:ff:36:87:bf:bc:13:04:63:26:15:4d:01:
ba:ad:fe:44:4d:ef:73:a8:26:2f:a0:ec:c6:8d:82:
36:f1:05:ee:4a:f2:27:e7:7b:1a:6c:8a:64:bd:af:
95:58:59:ab:31:ff:ac:88:12:e4:88:07:64:0f:06:
3b:80:34:7a:5a:7d:79:13:18:27:cb:65:7a:64:57:
6b:35:91:50:8a:c9:df:28:b2:a7:6c:a1:30:ff:61:
e8:df:77:5d:7d:9c:91:9e:72:65:00:77:cf:b4:3d:
fa:a2:87:f0:f1:8b:79:df:ea:b5:95:7e:dd:e3:68:
4e:85:6b:4b:78:41:59:8d:fa:df:95:ba:4c:ff:bf:
39:95:98:ad:84:5c:f5:4d:46:dd:25:9d:5d:63:0a:
e7:88:88:33:13:8e:b0:10:50:3e:82:4d:69:92:f9:
70:5e:6b:d1:26:fe:a2:df:80:2e:18:b8:e2:ff:6c:
ca:27:1f:69:80:8d:7f:da:9f:5b:8d:82:dd:b1:93:
50:50:b1:9a:4d:78:62:ef:4e:52:a7:9c:bc:a0:a0:
9c:70:c9:f8:f2:f3:3f:d2:c5:f7:50:75:24:70:59:
5a:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:D6:0E:7C:00:C7:E6:BD:78:78:25:05:E3:E3:7D:0B:3C:47:E9:23
X509v3 Authority Key Identifier:
keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/AE3E17129AD611EA9A86E163C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:840:f100::/44
Signature Algorithm: sha256WithRSAEncryption
51:9f:5c:0a:f6:d4:49:95:44:cc:92:e4:6b:d6:0b:0c:ff:28:
05:bc:a4:37:00:89:4c:25:ef:bf:f5:2e:e2:cc:8a:ce:61:a0:
8e:b7:eb:19:4e:0d:08:c9:c1:87:7f:94:8c:a4:d0:d0:b2:27:
2e:04:2f:8a:bd:37:36:47:be:56:af:6a:30:c5:96:bc:e9:38:
19:27:0e:cc:3a:64:7d:c4:29:71:68:d3:c3:9f:d1:04:d6:ef:
96:39:42:fc:ca:52:ca:4a:73:61:0a:99:70:dd:1e:76:dc:4d:
c5:69:dd:c2:64:b2:76:a6:46:18:7f:e5:dc:ec:32:3d:ca:ef:
d9:e9:e9:eb:c2:54:f4:4a:8b:b5:18:f3:1b:17:9d:f3:eb:bd:
cb:fb:12:86:31:67:33:31:9c:16:5b:e0:6d:e9:96:b5:be:1b:
34:25:ab:bd:83:09:0a:14:79:07:34:89:c4:a5:ee:a8:31:c3:
ec:86:5c:cb:fe:73:0b:16:46:ca:71:0c:da:70:75:be:eb:72:
3a:46:37:ea:4e:db:9e:01:f4:0c:94:c7:e3:65:be:8a:72:8a:
b3:d7:eb:c1:80:48:8b:48:eb:e1:8c:39:90:31:90:bf:0a:32:
58:5e:3e:1f:fb:00:97:4c:99:fa:84:3d:3a:a2:c4:8c:37:a5:
fc:74:82:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 02:10:03 2025 by rpki-client