Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9190491/929BDBC237BE11EB83AE1844C4F9AE02/59C3EE36683611EBAF38B01FC4F9AE02.roa
File: 59C3EE36683611EBAF38B01FC4F9AE02.roa (raw, json)
Hash identifier: 1+jxf6thWYfAYYLkfgmBPO3HMtuISkV6ufCHk+IUOxQ=
Subject key identifier: DB:86:C6:A0:A5:0B:10:66:C9:1E:12:63:0C:DD:C5:FA:C1:15:6B:FB
Certificate issuer: /CN=A9190491/serialNumber=5FC3E86DAE43531588EB015D501E3171205F0851
Certificate serial: 06B3
Authority key identifier: 5F:C3:E8:6D:AE:43:53:15:88:EB:01:5D:50:1E:31:71:20:5F:08:51
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8Poba5DUxWI6wFdUB4xcSBfCFE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9190491/929BDBC237BE11EB83AE1844C4F9AE02/59C3EE36683611EBAF38B01FC4F9AE02.roa
Signing time: Tue 08 Oct 2024 22:31:18 +0000
ROA not before: Tue 08 Oct 2024 22:31:18 +0000
ROA not after: Mon 01 Dec 2025 00:00:00 +0000
asID: 13443
IP address blocks: 2405:2300:f000::/36 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1715 (0x6b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9190491
Validity
Not Before: Oct 8 22:31:18 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=6705b2b6-4c95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d3:e5:d8:cb:b0:e6:f1:b7:27:6c:50:ea:75:
6d:bf:04:53:f8:85:79:19:a3:82:20:6a:82:3d:84:
58:14:1c:9a:50:6c:cc:91:90:c2:ed:1e:dd:e3:ac:
71:2e:4b:d6:9b:8b:47:f4:3e:32:91:73:3e:a1:9e:
a0:16:79:3e:26:8a:c4:45:70:ae:21:54:65:f6:d2:
38:8d:8a:35:68:a5:a3:dd:58:e9:bc:fe:94:3e:d1:
55:af:6f:85:c7:99:eb:bf:be:d9:7c:0a:69:25:d5:
78:5e:b2:33:64:c4:c7:7f:d2:1a:6c:37:f8:6d:29:
2a:d1:37:6d:53:23:4e:49:01:06:13:e4:ca:1f:cb:
01:7b:54:a6:78:21:25:ff:1a:64:a7:7d:16:12:63:
a8:c1:f5:c6:74:87:4e:33:b2:b9:9b:e8:c6:2c:d0:
a9:2c:5d:f2:95:ed:70:ff:0f:ea:b4:74:b2:a8:4f:
c6:ed:74:2b:96:52:c2:96:d8:0b:a8:ae:46:cb:8d:
0b:bc:25:f3:95:03:4c:a1:0e:38:ce:aa:0a:04:bf:
81:2e:49:20:5c:07:c4:9e:ec:13:dd:e5:f0:65:09:
9e:0f:2a:41:b9:4c:72:f2:d8:e6:e1:63:cd:e7:8d:
df:c8:02:ee:85:2e:0d:90:bc:0c:91:89:22:3d:b2:
2f:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:86:C6:A0:A5:0B:10:66:C9:1E:12:63:0C:DD:C5:FA:C1:15:6B:FB
X509v3 Authority Key Identifier:
keyid:5F:C3:E8:6D:AE:43:53:15:88:EB:01:5D:50:1E:31:71:20:5F:08:51
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9190491/929BDBC237BE11EB83AE1844C4F9AE02/X8Poba5DUxWI6wFdUB4xcSBfCFE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8Poba5DUxWI6wFdUB4xcSBfCFE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9190491/929BDBC237BE11EB83AE1844C4F9AE02/59C3EE36683611EBAF38B01FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:2300:f000::/36
Signature Algorithm: sha256WithRSAEncryption
4a:f2:58:9f:17:f5:25:1d:44:4b:fc:55:d8:2d:e8:8b:00:a9:
87:08:fa:45:2c:31:d2:be:8b:9c:7a:6a:0d:7c:e0:6c:20:a0:
a2:20:aa:57:66:c6:56:f0:dc:0f:6b:80:53:9f:cd:39:ad:00:
f2:fe:83:66:38:49:49:c8:26:77:66:a0:86:c9:14:72:14:4e:
de:06:bc:a9:7a:1d:96:7a:94:f2:95:24:d3:57:19:14:85:4e:
ca:2b:ba:e8:73:0e:f1:55:55:0c:55:74:71:63:b6:d6:67:23:
2c:bb:55:c3:13:db:cf:28:37:b7:a7:57:06:f0:ae:b6:37:28:
9a:25:e9:65:f5:a6:2d:18:fe:7f:13:8c:da:a5:5b:e0:23:0f:
de:b5:bd:c6:da:b5:a6:b5:b4:52:64:28:1f:a5:8b:9e:fc:4e:
10:c2:84:d7:34:e7:b6:db:92:e8:aa:de:30:0f:43:d5:b4:5e:
76:f8:5c:bd:06:49:b8:3f:b0:0f:05:8a:2f:0c:a7:95:f6:d8:
78:ce:df:e2:99:0d:ed:04:d8:12:20:da:d9:d6:e7:0f:f3:d0:
80:a4:60:80:51:33:4e:79:d6:40:59:89:93:eb:77:41:62:1e:
53:77:ac:c1:78:05:8b:61:66:a6:25:f4:86:90:65:8e:de:ff:
66:0a:9f:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 02:20:38 2025 by rpki-client