Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/3A1BB740A24211EA93B32670C4F9AE02.roa
File: 3A1BB740A24211EA93B32670C4F9AE02.roa (raw, json)
Hash identifier: GFVwAR5puaCchlUAsEHmdopXL/ego4QRiDhn2KQ3qqk=
Subject key identifier: 05:44:2D:20:10:AF:93:3B:E3:A2:B8:67:00:63:D3:D0:08:41:BD:80
Certificate issuer: /CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099
Certificate serial: 0C50
Authority key identifier: 9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/3A1BB740A24211EA93B32670C4F9AE02.roa
Signing time: Fri 27 Jan 2023 16:06:12 +0000
ROA not before: Fri 27 Jan 2023 16:06:12 +0000
ROA not after: Fri 01 Dec 2023 00:00:00 +0000
asID: 9886
IP address blocks: 2001:df1:4580::/48 maxlen: 48
2405:84c0::/32 maxlen: 32
2405:84c0:6e00::/40 maxlen: 48
2405:84c0:8000::/36 maxlen: 44
2405:84c0:9200::/44 maxlen: 44
2405:84c0:9210::/44 maxlen: 44
2405:84c0:9220::/44 maxlen: 44
2405:84c0:9300::/44 maxlen: 44
2405:84c0:9410::/44 maxlen: 48
2405:84c0:9450::/44 maxlen: 48
2405:84c0:9700::/44 maxlen: 44
2405:84c0:9710::/44 maxlen: 44
2405:84c0:9727::/48 maxlen: 48
2405:84c0:9800::/44 maxlen: 44
2405:84c0:9890::/44 maxlen: 44
2405:84c0:9900::/40 maxlen: 44
2405:84c0:9a00::/40 maxlen: 40
2405:84c0:9a00::/44 maxlen: 44
2405:84c0:9a10::/44 maxlen: 44
2405:84c0:9a20::/44 maxlen: 44
2405:84c0:9a30::/44 maxlen: 44
2405:84c0:9a40::/44 maxlen: 44
2405:84c0:9a50::/44 maxlen: 44
2405:84c0:9a60::/44 maxlen: 44
2405:84c0:9a70::/44 maxlen: 44
2405:84c0:9a80::/44 maxlen: 44
2405:84c0:9a90::/44 maxlen: 44
2405:84c0:9aa0::/44 maxlen: 44
2405:84c0:9ab0::/44 maxlen: 44
2405:84c0:9ac0::/44 maxlen: 44
2405:84c0:9ad0::/44 maxlen: 44
2405:84c0:9ae0::/44 maxlen: 44
2405:84c0:9af0::/44 maxlen: 44
2405:84c0:9b10::/44 maxlen: 48
2405:84c0:9c00::/40 maxlen: 40
2405:84c0:fa00::/40 maxlen: 40
2405:84c0:fb00::/44 maxlen: 44
2405:84c0:fe00::/40 maxlen: 48
2405:84c0:ff10::/44 maxlen: 44
2405:84c0:ff10::/48 maxlen: 48
2405:84c0:ff11::/48 maxlen: 48
2405:84c0:ff12::/48 maxlen: 48
2405:84c0:ff13::/48 maxlen: 48
2405:84c0:ff14::/48 maxlen: 48
2405:84c0:ff15::/48 maxlen: 48
2405:84c0:ff16::/48 maxlen: 48
2405:84c0:ff17::/48 maxlen: 48
2405:84c0:ff18::/48 maxlen: 48
2405:84c0:ff19::/48 maxlen: 48
2405:84c0:ff1a::/48 maxlen: 48
2405:84c0:ff1b::/48 maxlen: 48
2405:84c0:ff1c::/48 maxlen: 48
2405:84c0:ff1d::/48 maxlen: 48
2405:84c0:ff1e::/48 maxlen: 48
2405:84c0:ff1f::/48 maxlen: 48
2405:84c0:ff30::/44 maxlen: 48
2405:84c0:ff60::/44 maxlen: 44
2405:84c0:ff90::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3152 (0xc50)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099
Validity
Not Before: Jan 27 16:06:12 2023 GMT
Not After : Dec 1 00:00:00 2023 GMT
Subject: CN=63d3f674-38ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:48:4b:6a:78:90:b4:84:92:f1:6e:40:aa:09:
0b:f0:81:00:ea:b1:c7:c5:bd:fd:75:35:ba:18:c2:
ef:0b:da:b5:d7:44:2f:19:f0:54:74:c5:8c:ef:58:
65:f7:d4:a3:fd:9f:22:13:e2:f3:e0:9b:64:84:4c:
2d:9f:e0:e3:d9:ac:b2:2f:80:ed:53:07:7f:8f:69:
ab:35:ef:49:5e:3d:b3:34:23:52:cb:60:e7:36:7c:
44:a6:ce:40:f6:13:f3:09:68:00:27:ca:90:77:37:
2b:42:b9:2a:da:e7:e3:bf:3a:c6:5a:63:10:15:15:
9d:dd:09:7c:b0:93:cb:ce:a8:9b:47:18:8b:46:62:
9e:1b:4c:95:e7:6f:1c:6e:06:84:92:0e:3d:f2:36:
c1:a7:7e:7a:76:ea:75:dd:79:75:de:38:51:92:ea:
d1:76:d0:75:c2:c1:86:b7:73:12:5c:09:60:2a:93:
af:5d:f6:72:5d:ea:73:6e:8a:5f:3d:43:d3:e0:7a:
94:0c:c0:9d:b1:ad:e0:41:4e:24:35:d9:57:76:58:
9e:e6:96:65:06:5d:af:3f:bb:b5:a8:96:ba:f7:b9:
8e:c6:58:48:ad:08:58:74:e1:ae:29:eb:d5:c6:c4:
dc:a0:50:3f:57:01:cd:fa:66:bd:b9:a4:3e:74:b4:
55:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:44:2D:20:10:AF:93:3B:E3:A2:B8:67:00:63:D3:D0:08:41:BD:80
X509v3 Authority Key Identifier:
keyid:9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/3A1BB740A24211EA93B32670C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:df1:4580::/48
2405:84c0::/32
Signature Algorithm: sha256WithRSAEncryption
31:e2:37:38:15:17:53:6d:8c:70:a9:41:68:d7:ae:46:5c:2c:
1d:fc:a1:7d:3f:8f:2f:5c:74:15:31:08:2a:6c:bd:8d:f3:ab:
ef:66:58:7f:b4:c6:3a:47:26:c2:82:e1:2f:b4:37:71:99:6c:
55:23:a1:e8:b5:45:a4:e8:d5:d4:e3:6d:85:b4:8c:51:a9:a0:
72:52:6c:77:70:36:b9:32:9a:3a:00:a0:6b:53:67:71:b5:12:
eb:fd:0b:26:a3:a5:d0:9f:7a:a7:5e:e9:c1:46:3d:6b:77:f0:
50:98:e4:f6:50:bb:7f:73:8a:54:66:20:4c:5e:cb:1c:b3:48:
12:c0:33:05:6a:98:e4:85:87:40:75:6b:6f:1e:36:9c:6d:d5:
fe:f4:e2:3d:6b:31:f0:5d:a4:c9:27:af:d0:b8:97:2b:8b:67:
21:49:c1:ee:df:48:e9:49:f3:22:4c:a9:fc:0d:c3:0d:03:c1:
25:5e:ae:eb:31:22:68:e1:40:cd:02:33:32:3b:4d:eb:9f:a1:
40:1a:a5:a0:7d:66:6a:33:91:54:69:e1:e2:7d:be:64:98:21:
d1:19:fc:f8:07:12:cb:19:57:47:bf:3c:18:cc:0e:8c:11:3e:
4c:8c:65:0a:cb:3d:ba:f8:ab:74:23:ec:9a:59:67:59:5d:74:
24:3d:63:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:53 2024 by rpki-client on console-ams.rpki-client.org