Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/BC030F32550B11ED93501D11C4F9AE02.roa
File: BC030F32550B11ED93501D11C4F9AE02.roa (raw, json)
Hash identifier: h4HLQJlWMkdVPvo8vUJN60snicaK45jWTvGLFoBStpE=
Subject key identifier: ED:16:24:A6:8D:98:DB:B3:24:E6:A8:8B:42:E7:5C:EB:9F:AC:60:34
Certificate issuer: /CN=A91A43EE/serialNumber=8EC333757E363A1711B00273250446FE1B4938DB
Certificate serial: 63
Authority key identifier: 8E:C3:33:75:7E:36:3A:17:11:B0:02:73:25:04:46:FE:1B:49:38:DB
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsMzdX42OhcRsAJzJQRG_htJONs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/BC030F32550B11ED93501D11C4F9AE02.roa
Signing time: Wed 26 Oct 2022 08:54:01 +0000
ROA not before: Wed 26 Oct 2022 08:54:01 +0000
ROA not after: Tue 31 Oct 2023 00:00:00 +0000
asID: 150296
IP address blocks: 2001:df1:bc0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99 (0x63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A43EE/serialNumber=8EC333757E363A1711B00273250446FE1B4938DB
Validity
Not Before: Oct 26 08:54:01 2022 GMT
Not After : Oct 31 00:00:00 2023 GMT
Subject: CN=6358f5a8-a153
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:4a:48:6d:80:36:98:0a:d2:b0:54:95:50:4c:
97:27:96:e2:ad:a8:ab:8b:c0:b2:62:55:75:ee:d9:
f5:20:0b:e9:a3:d0:f8:7f:b7:91:45:2b:97:a6:c6:
9a:2b:2d:6a:1e:e8:04:da:8d:69:d9:b0:47:94:39:
3e:94:82:58:e5:21:77:7f:cd:eb:46:22:ce:01:92:
5f:61:42:6e:c5:1f:58:6a:53:8d:28:51:15:64:be:
e8:8e:cd:c0:5d:b9:4b:af:c9:b0:4e:26:f4:07:bc:
86:60:8d:6c:77:a4:5d:6c:61:d8:0a:1f:52:3e:ff:
34:db:83:fb:5d:19:38:0c:c4:ba:40:d7:f3:2d:de:
ba:66:e6:50:b7:18:54:89:b7:e9:4e:42:0e:c2:1d:
c6:5c:7c:fe:49:00:98:29:f1:c0:cb:a8:c0:14:01:
2f:9f:c5:82:87:4f:49:0e:f3:0b:52:20:4c:c6:5a:
5f:cc:f0:69:ef:c3:71:62:12:5f:50:a0:7b:1b:7f:
9e:73:8c:6c:1e:41:8a:9b:c0:f7:be:9f:05:a7:9f:
e6:9e:ae:66:55:3f:f6:4e:04:84:01:44:96:47:8a:
0a:e1:a0:ad:07:e3:e3:19:55:7e:e3:4c:db:1a:01:
45:bf:86:8f:51:d2:ff:b2:6b:34:52:c3:0f:c1:32:
86:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:16:24:A6:8D:98:DB:B3:24:E6:A8:8B:42:E7:5C:EB:9F:AC:60:34
X509v3 Authority Key Identifier:
keyid:8E:C3:33:75:7E:36:3A:17:11:B0:02:73:25:04:46:FE:1B:49:38:DB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsMzdX42OhcRsAJzJQRG_htJONs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/BC030F32550B11ED93501D11C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:df1:bc0::/48
Signature Algorithm: sha256WithRSAEncryption
a7:ba:a4:19:10:83:d0:ae:15:46:a4:63:74:f2:b2:09:ad:63:
52:d5:0d:48:e6:71:56:3f:4b:d6:a4:e7:bf:4f:1e:43:64:cc:
eb:a7:48:a4:25:ed:56:14:ad:e7:62:a8:18:a3:38:96:9f:84:
d2:84:ae:b5:80:9f:46:ca:45:db:20:44:f7:4f:24:c6:64:a2:
08:c0:05:7e:d1:06:6a:cf:dc:84:c9:8b:9b:cc:12:8f:05:f9:
09:ac:57:7c:52:21:04:05:34:04:46:bc:b9:99:db:50:a7:68:
3b:94:8c:0f:97:b1:b5:3d:0f:59:2a:57:06:26:71:cb:2c:c9:
25:82:f3:07:12:46:32:d4:b9:00:91:a7:ee:bd:da:af:a4:9d:
7f:ae:8a:07:ac:58:a3:8f:e7:c0:72:8a:b3:4d:78:43:55:34:
0f:de:05:b6:03:e4:85:c7:e4:8b:6f:36:24:b5:d4:a2:57:cb:
b1:b7:16:9a:46:58:35:be:32:35:07:b6:af:3a:85:98:5b:a8:
9d:8f:f4:af:83:f3:9f:e9:7f:36:d0:ef:dd:4b:d0:7c:f5:32:
34:a9:d5:ff:2d:43:05:d0:de:66:84:eb:65:15:ad:ea:96:1c:
b9:94:91:52:ed:11:f3:d9:b2:03:88:49:e1:2c:ea:de:6b:24:
87:f4:1d:ce
-----BEGIN CERTIFICATE-----
MIIFczCCBFugAwIBAgIBYzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB
NDNFRTExMC8GA1UEBRMoOEVDMzMzNzU3RTM2M0ExNzExQjAwMjczMjUwNDQ2RkUx
QjQ5MzhEQjAeFw0yMjEwMjYwODU0MDFaFw0yMzEwMzEwMDAwMDBaMBgxFjAUBgNV
BAMTDTYzNThmNWE4LWExNTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCUSkhtgDaYCtKwVJVQTJcnluKtqKuLwLJiVXXu2fUgC+mj0Ph/t5FFK5emxpor
LWoe6ATajWnZsEeUOT6UgljlIXd/zetGIs4Bkl9hQm7FH1hqU40oURVkvuiOzcBd
uUuvybBOJvQHvIZgjWx3pF1sYdgKH1I+/zTbg/tdGTgMxLpA1/Mt3rpm5lC3GFSJ
t+lOQg7CHcZcfP5JAJgp8cDLqMAUAS+fxYKHT0kO8wtSIEzGWl/M8Gnvw3FiEl9Q
oHsbf55zjGweQYqbwPe+nwWnn+aermZVP/ZOBIQBRJZHigrhoK0H4+MZVX7jTNsa
AUW/ho9R0v+yazRSww/BMoYHAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQU7RYkpo2Y
27Mk5qiLQudc65+sYDQwHwYDVR0jBBgwFoAUjsMzdX42OhcRsAJzJQRG/htJONsw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE0M0VFLzAxRTRFNjk2MjND
QjExRURBOEUzNTgzRUM0RjlBRTAyL2pzTXpkWDQyT2hjUnNBSnpKUVJHX2h0Sk9O
cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvanNNemRYNDJPaGNSc0FKekpRUkdfaHRKT05zLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw
C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB
NDNFRS8wMUU0RTY5NjIzQ0IxMUVEQThFMzU4M0VDNEY5QUUwMi9CQzAzMEYzMjU1
MEIxMUVEOTM1MDFEMTFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v
cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT
MBEwDwQCAAIwCQMHACABDfELwDANBgkqhkiG9w0BAQsFAAOCAQEAp7qkGRCD0K4V
RqRjdPKyCa1jUtUNSOZxVj9L1qTnv08eQ2TM66dIpCXtVhSt52KoGKM4lp+E0oSu
tYCfRspF2yBE908kxmSiCMAFftEGas/chMmLm8wSjwX5CaxXfFIhBAU0BEa8uZnb
UKdoO5SMD5extT0PWSpXBiZxyyzJJYLzBxJGMtS5AJGn7r3ar6Sdf66KB6xYo4/n
wHKKs014Q1U0D94FtgPkhcfki282JLXUolfLsbcWmkZYNb4yNQe2rzqFmFuonY/0
r4Pzn+l/NtDv3UvQfPUyNKnV/y1DBdDeZoTrZRWt6pYcuZSRUu0R89myA4hJ4Szq
3mskh/Qdzg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:36 2024 by rpki-client on console-fra.rpki-client.org