Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A495C/55918004E2AD11E9B4A27546C4F9AE02/6348B570ABD311EEA98BBA48C4F9AE02.roa
File: 6348B570ABD311EEA98BBA48C4F9AE02.roa (raw, json)
Hash identifier: xKn/Iqkuy/lkJBmMBbwUOcVmwfd+xE1RMMLIJtZ7lZI=
Subject key identifier: B8:FF:39:1D:95:E5:18:A2:E7:5D:6E:5D:02:4D:FF:1E:08:AC:4A:C1
Certificate issuer: /CN=A91A495C/serialNumber=78BEDBEDC0459B900C282892F13B1782A9560429
Certificate serial: 0C16
Authority key identifier: 78:BE:DB:ED:C0:45:9B:90:0C:28:28:92:F1:3B:17:82:A9:56:04:29
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eL7b7cBFm5AMKCiS8TsXgqlWBCk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A495C/55918004E2AD11E9B4A27546C4F9AE02/6348B570ABD311EEA98BBA48C4F9AE02.roa
Signing time: Fri 05 Jan 2024 14:28:12 +0000
ROA not before: Fri 05 Jan 2024 14:28:12 +0000
ROA not after: Mon 30 Sep 2024 00:00:00 +0000
asID: 136967
IP address blocks: 2403:1e40:1180::/41 maxlen: 48
2403:1e40:1a00::/41 maxlen: 48
2403:1e40:1a80::/41 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3094 (0xc16)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A495C, serialNumber=78BEDBEDC0459B900C282892F13B1782A9560429
Validity
Not Before: Jan 5 14:28:12 2024 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=659811fc-207a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:d7:76:05:ec:18:c6:c4:c5:e7:92:4d:4b:fe:
5a:f1:48:d5:08:88:e7:72:4d:0d:7e:f1:c4:64:e5:
81:33:67:1d:c9:3b:20:ef:68:5a:2c:6a:7a:3c:85:
64:e8:4e:1e:67:13:5b:ba:42:7f:5f:9b:95:3b:33:
64:94:b2:01:8c:dc:40:0d:ea:67:fb:b4:f3:7f:08:
0b:d3:44:76:c4:d3:96:26:e3:ae:60:8c:22:97:e2:
f2:60:34:ef:fc:0e:62:cd:c9:52:c2:56:0b:a9:61:
b0:d1:96:e8:4e:b4:6f:bf:a5:19:ef:f8:2f:3e:4a:
34:73:e4:90:ae:3e:0f:3f:d4:fe:6a:8c:ca:7a:60:
43:d9:f5:1f:06:7a:cb:c2:d4:2c:b7:82:04:d6:7d:
99:e6:ea:19:f4:f9:77:26:c3:e2:3f:4b:46:38:8e:
df:9a:7d:0f:e1:78:78:f7:af:c1:d4:68:a7:4f:60:
ee:e9:4f:3a:db:6d:fb:83:65:ec:3b:0a:3c:4a:5a:
a7:53:48:75:8a:65:3f:99:cc:27:a2:58:d6:48:ab:
f5:68:73:aa:f2:55:da:7c:55:45:ec:95:f0:92:61:
5b:71:d1:18:93:48:f8:24:dc:ef:12:67:26:cd:09:
bb:65:66:40:b6:22:e8:ce:94:dc:8f:63:15:ad:63:
7e:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:FF:39:1D:95:E5:18:A2:E7:5D:6E:5D:02:4D:FF:1E:08:AC:4A:C1
X509v3 Authority Key Identifier:
keyid:78:BE:DB:ED:C0:45:9B:90:0C:28:28:92:F1:3B:17:82:A9:56:04:29
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A495C/55918004E2AD11E9B4A27546C4F9AE02/eL7b7cBFm5AMKCiS8TsXgqlWBCk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eL7b7cBFm5AMKCiS8TsXgqlWBCk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A495C/55918004E2AD11E9B4A27546C4F9AE02/6348B570ABD311EEA98BBA48C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:1e40:1180::/41
2403:1e40:1a00::/40
Signature Algorithm: sha256WithRSAEncryption
3a:88:93:9e:b4:14:d1:b2:a1:93:16:65:4c:8a:8d:80:04:77:
80:f3:9b:8e:6b:51:92:bd:81:ca:1a:f8:2d:70:66:bc:a7:01:
f9:90:c0:0b:19:1c:06:bf:6e:03:84:a7:3b:ba:c2:97:78:97:
29:0f:d1:80:7b:4a:55:c0:7d:20:0c:1d:7b:05:01:f4:37:b0:
9b:d3:eb:3b:be:da:d7:b0:f4:b9:4f:be:a3:11:22:9a:b6:6c:
24:67:d9:e9:a2:e3:db:30:04:93:5a:59:b9:e7:8c:90:8e:ce:
2f:f8:f1:33:a5:7b:b5:2c:38:1a:c8:bd:52:c2:03:d8:db:3b:
33:13:1d:48:59:fb:eb:8e:b1:dd:bc:18:ed:c4:fb:65:5b:05:
f8:7e:2a:d9:8f:39:51:97:d0:23:8e:2a:32:43:6a:ce:05:d1:
00:7e:b9:fe:ef:60:bd:d1:ba:aa:89:d2:e1:03:cd:5b:e8:6e:
03:be:9e:09:7e:8d:19:f8:90:a8:d8:39:76:21:44:fc:07:7a:
a5:06:c2:ab:6f:f6:03:b4:aa:e1:62:c9:2e:88:21:54:92:c3:
bf:9e:82:05:cb:4c:5b:b7:05:a5:23:f9:be:54:6c:52:d6:6a:
83:c8:80:d2:e7:b3:52:79:46:0c:02:fd:10:a2:4e:14:9c:e8:
27:bf:5c:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 02:34:56 2025 by rpki-client