Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9192B60/B32F3E7208E311ED83640C21C4F9AE02/4F31DB9CD49D11EDAD9A672FC4F9AE02.roa
File: 4F31DB9CD49D11EDAD9A672FC4F9AE02.roa (raw, json)
Hash identifier: D0FNJwBLfTloOIS/wuRwDSA2TmyAYHNPW3yQPm9gr2k=
Subject key identifier: B0:10:D8:AC:68:04:BD:9A:27:DF:90:0C:98:27:F0:55:57:EE:3E:D3
Certificate issuer: /CN=A9192B60/serialNumber=13E1899C23FEB07FE13162EB103CC3C038D70824
Certificate serial: F5
Authority key identifier: 13:E1:89:9C:23:FE:B0:7F:E1:31:62:EB:10:3C:C3:C0:38:D7:08:24
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E-GJnCP-sH_hMWLrEDzDwDjXCCQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9192B60/B32F3E7208E311ED83640C21C4F9AE02/4F31DB9CD49D11EDAD9A672FC4F9AE02.roa
Signing time: Thu 06 Apr 2023 17:06:03 +0000
ROA not before: Thu 06 Apr 2023 17:06:03 +0000
ROA not after: Sat 30 Sep 2023 00:00:00 +0000
asID: 140260
IP address blocks: 2001:df1:540::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 245 (0xf5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9192B60/serialNumber=13E1899C23FEB07FE13162EB103CC3C038D70824
Validity
Not Before: Apr 6 17:06:03 2023 GMT
Not After : Sep 30 00:00:00 2023 GMT
Subject: CN=642efbfa-952c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:9e:73:39:2a:2d:e0:1f:0c:06:90:3b:f7:e4:
f1:b7:29:8b:23:12:5d:b9:ea:a8:c3:37:a2:7e:60:
b6:b2:a0:50:8c:bb:37:58:b4:6a:71:be:cb:f7:73:
f5:b6:91:1f:1e:8d:7e:2a:93:8e:1f:5b:0b:9a:12:
83:24:f4:4c:81:a5:4d:8b:26:46:c6:0d:53:e3:33:
50:7f:0e:1a:8d:84:9a:5d:4c:3b:fd:9f:6e:7c:01:
0f:fb:13:ca:46:15:43:0a:0e:46:cd:a2:6a:69:75:
f7:03:2b:74:3c:56:44:86:43:b4:2c:58:3f:5c:52:
35:56:52:ee:b1:26:3b:df:45:c9:54:71:7f:f5:eb:
3f:62:37:7e:bb:f5:75:6f:e7:fa:1d:e3:43:c5:b0:
b2:93:e7:a3:03:0b:62:17:ab:f0:db:29:d1:9a:31:
7e:54:86:29:7e:2c:f3:27:ec:17:53:f2:19:db:09:
09:75:77:9e:7c:25:a3:de:eb:85:eb:d2:f1:0e:42:
1c:ad:69:28:90:b6:6a:47:7d:28:59:8a:d3:cf:4f:
59:4d:22:88:6e:6b:e2:07:4d:e5:a0:7b:7a:7c:56:
c0:2f:97:a8:c0:d0:ce:6b:ec:2e:57:bf:88:c1:e4:
cd:44:81:bd:56:04:ed:ea:9c:0d:19:e6:7d:9f:79:
cb:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:10:D8:AC:68:04:BD:9A:27:DF:90:0C:98:27:F0:55:57:EE:3E:D3
X509v3 Authority Key Identifier:
keyid:13:E1:89:9C:23:FE:B0:7F:E1:31:62:EB:10:3C:C3:C0:38:D7:08:24
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9192B60/B32F3E7208E311ED83640C21C4F9AE02/E-GJnCP-sH_hMWLrEDzDwDjXCCQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E-GJnCP-sH_hMWLrEDzDwDjXCCQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192B60/B32F3E7208E311ED83640C21C4F9AE02/4F31DB9CD49D11EDAD9A672FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:df1:540::/48
Signature Algorithm: sha256WithRSAEncryption
c3:0c:ac:40:e3:c2:c6:66:1b:94:15:7d:31:de:14:e7:b7:44:
ac:66:63:6d:91:36:31:4c:b0:91:23:f8:68:c5:df:7d:39:a3:
95:57:45:31:e2:6d:84:10:bf:8e:27:d6:8c:91:0c:c9:c8:a2:
b8:73:b0:f0:18:d6:07:3c:c0:3d:59:16:bd:af:20:bc:71:6b:
85:d3:0e:0c:de:80:4f:b3:be:b9:cb:94:76:37:91:50:88:0f:
fe:e0:96:6f:6a:dd:86:9b:13:7d:c4:38:19:3e:32:7e:8f:b7:
06:75:ad:3a:58:66:2d:1c:7f:0d:d3:77:b4:2e:6f:4a:1c:50:
52:08:63:8c:bb:06:cf:88:55:c5:3b:bb:65:58:8b:0a:94:f3:
3b:6d:23:3c:3d:e2:8e:13:0e:9e:13:8a:c5:7d:59:34:6c:c0:
55:2e:61:47:c2:10:a4:d8:75:5c:82:e9:e8:d9:10:31:e5:ef:
b2:de:95:1b:fe:67:9d:a0:ce:5b:ec:55:58:f2:4b:cd:63:c7:
e4:45:d3:07:7e:5f:33:5c:83:49:21:d3:e3:d0:81:b6:1e:35:
2a:b1:db:27:a8:ef:e1:f3:c9:30:72:85:d5:07:63:32:6b:47:
4b:d2:c1:fb:ba:03:a2:35:50:98:bb:05:e8:aa:08:3b:a7:92:
44:0f:3a:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:47 2024 by rpki-client on console-ams.rpki-client.org