Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/BFF495F28FE811E98B967A66C4F9AE02.roa
File: BFF495F28FE811E98B967A66C4F9AE02.roa (raw, json)
Hash identifier: fIiPEunVO0T8P8ftQZgeG/lQPAoK0AFLmRjPuEoi9+M=
Subject key identifier: 8E:2A:10:22:CE:3C:A1:C9:1A:FC:F8:5D:F6:19:BC:F9:D0:D2:2F:29
Certificate issuer: /CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60
Certificate serial: 0DF7
Authority key identifier: 36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/BFF495F28FE811E98B967A66C4F9AE02.roa
Signing time: Wed 03 Aug 2022 19:06:11 +0000
ROA not before: Wed 03 Aug 2022 19:06:11 +0000
ROA not after: Sat 30 Sep 2023 00:00:00 +0000
asID: 209100
IP address blocks: 2404:f4c0:fc00::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3575 (0xdf7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60
Validity
Not Before: Aug 3 19:06:11 2022 GMT
Not After : Sep 30 00:00:00 2023 GMT
Subject: CN=62eac722-2bb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:66:94:9f:be:a7:28:87:98:f1:fa:f7:8b:e5:
92:fa:7c:7a:dc:72:6c:78:e9:94:b9:f4:8b:7a:4c:
6d:4a:2e:7c:2b:9b:b4:5c:ce:fd:af:f5:61:ef:bf:
63:d0:39:5f:fe:20:ad:b7:62:85:fd:f1:7c:d2:a8:
38:6a:69:99:bb:90:4a:e8:99:c7:a7:4f:08:08:33:
01:b4:9c:ae:b5:ef:ae:78:66:8c:69:6a:5f:c1:f6:
9f:be:9d:ea:f8:09:8d:42:55:21:a2:2b:0f:0f:b0:
78:15:53:0a:1c:a1:f1:80:14:3c:ff:37:fc:60:36:
61:40:b8:22:a0:e9:2c:e8:90:7e:01:10:46:9f:7a:
91:04:34:60:0c:dc:99:ef:73:18:e5:83:50:f7:e3:
d7:8b:98:fc:36:d5:3e:6d:a5:e6:fd:7c:36:94:cc:
0b:f6:1d:94:86:6a:cf:03:59:0e:de:c3:de:73:05:
36:ab:a1:b6:4b:ef:4f:99:c8:87:a4:0f:52:89:53:
ba:22:a5:00:81:7a:07:b0:f8:08:52:c9:5e:0d:3c:
32:36:1e:12:f2:85:6e:6b:d6:99:9b:cc:3d:b2:cc:
bd:08:10:cd:40:75:5d:8f:63:72:c2:7c:49:f5:94:
4d:ca:9d:a5:1a:a9:ac:af:04:19:e3:47:68:fa:51:
fb:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:2A:10:22:CE:3C:A1:C9:1A:FC:F8:5D:F6:19:BC:F9:D0:D2:2F:29
X509v3 Authority Key Identifier:
keyid:36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/BFF495F28FE811E98B967A66C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:f4c0:fc00::/44
Signature Algorithm: sha256WithRSAEncryption
cc:67:a0:cb:d6:1e:12:a8:be:5d:1e:c9:70:72:47:70:72:af:
0f:56:59:a2:e7:25:51:da:a0:e8:18:94:03:78:f4:dc:80:af:
03:73:ab:ee:0c:20:86:c2:3f:89:46:bc:e5:a1:31:a2:9f:30:
cb:c0:20:6f:ba:c8:4c:16:1c:90:19:6b:35:d2:31:37:60:14:
93:20:e5:6f:1d:36:36:0b:8f:39:fb:c8:4c:6e:0d:0a:d9:13:
90:bd:a7:cb:65:47:44:c8:14:b1:1f:15:63:5f:08:fa:68:d9:
28:91:36:5a:b7:ff:cf:ce:0f:41:01:0f:77:4b:06:2e:e5:c7:
58:3f:61:07:b5:c3:33:3d:f6:fc:3e:9e:89:69:24:73:40:0f:
59:27:cb:7a:3e:8f:62:98:8e:2c:1a:c3:a4:9c:1b:d0:da:30:
98:57:e7:42:ad:cd:5f:22:8f:12:21:96:e1:d2:88:b3:33:d5:
e5:40:63:91:69:18:d1:b5:0a:4c:12:20:01:da:e4:84:a6:ec:
f4:a0:00:69:80:dd:ee:c6:84:79:f1:f2:40:4f:e6:b7:98:87:
ef:af:63:3c:00:b4:f9:b8:9d:ab:c1:70:13:7b:18:98:74:ae:
56:b3:3b:23:36:5c:b7:25:05:e8:79:03:77:ab:59:e5:c1:94:
25:80:46:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:24 2024 by rpki-client on console-ams.rpki-client.org