Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/3F7FC42ABB1611EDA6120655C4F9AE02.roa
File: 3F7FC42ABB1611EDA6120655C4F9AE02.roa (raw, json)
Hash identifier: ae9lOXYzJykHUqeGx5ttAnr8PbJFP5G3dRx1YJkNnA0=
Subject key identifier: 45:5C:23:6B:21:D6:FA:68:69:F0:9B:88:4B:ED:E3:08:15:EC:34:69
Certificate issuer: /CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099
Certificate serial: 0C6F
Authority key identifier: 9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/3F7FC42ABB1611EDA6120655C4F9AE02.roa
Signing time: Thu 09 Mar 2023 17:06:37 +0000
ROA not before: Thu 09 Mar 2023 17:06:37 +0000
ROA not after: Fri 01 Dec 2023 00:00:00 +0000
asID: 9886
IP address blocks: 2001:df1:4580::/48 maxlen: 48
2405:84c0::/32 maxlen: 32
2405:84c0:6000::/36 maxlen: 44
2405:84c0:8000::/36 maxlen: 44
2405:84c0:9200::/44 maxlen: 44
2405:84c0:9210::/44 maxlen: 44
2405:84c0:9220::/44 maxlen: 44
2405:84c0:9300::/44 maxlen: 44
2405:84c0:9410::/44 maxlen: 48
2405:84c0:9450::/44 maxlen: 48
2405:84c0:9700::/44 maxlen: 44
2405:84c0:9710::/44 maxlen: 44
2405:84c0:9727::/48 maxlen: 48
2405:84c0:9800::/44 maxlen: 44
2405:84c0:9890::/44 maxlen: 44
2405:84c0:9900::/40 maxlen: 44
2405:84c0:9a00::/40 maxlen: 40
2405:84c0:9a00::/44 maxlen: 44
2405:84c0:9a10::/44 maxlen: 44
2405:84c0:9a20::/44 maxlen: 44
2405:84c0:9a30::/44 maxlen: 44
2405:84c0:9a40::/44 maxlen: 44
2405:84c0:9a50::/44 maxlen: 44
2405:84c0:9a60::/44 maxlen: 44
2405:84c0:9a70::/44 maxlen: 44
2405:84c0:9a80::/44 maxlen: 44
2405:84c0:9a90::/44 maxlen: 44
2405:84c0:9aa0::/44 maxlen: 44
2405:84c0:9ab0::/44 maxlen: 44
2405:84c0:9ac0::/44 maxlen: 44
2405:84c0:9ad0::/44 maxlen: 44
2405:84c0:9ae0::/44 maxlen: 44
2405:84c0:9af0::/44 maxlen: 44
2405:84c0:9b10::/44 maxlen: 48
2405:84c0:9c00::/40 maxlen: 40
2405:84c0:9d00::/40 maxlen: 48
2405:84c0:9e00::/40 maxlen: 48
2405:84c0:9f00::/40 maxlen: 48
2405:84c0:fa00::/40 maxlen: 40
2405:84c0:fb00::/44 maxlen: 44
2405:84c0:fe00::/40 maxlen: 48
2405:84c0:ff10::/44 maxlen: 44
2405:84c0:ff10::/48 maxlen: 48
2405:84c0:ff11::/48 maxlen: 48
2405:84c0:ff12::/48 maxlen: 48
2405:84c0:ff13::/48 maxlen: 48
2405:84c0:ff14::/48 maxlen: 48
2405:84c0:ff15::/48 maxlen: 48
2405:84c0:ff16::/48 maxlen: 48
2405:84c0:ff17::/48 maxlen: 48
2405:84c0:ff18::/48 maxlen: 48
2405:84c0:ff19::/48 maxlen: 48
2405:84c0:ff1a::/48 maxlen: 48
2405:84c0:ff1b::/48 maxlen: 48
2405:84c0:ff1c::/48 maxlen: 48
2405:84c0:ff1d::/48 maxlen: 48
2405:84c0:ff1e::/48 maxlen: 48
2405:84c0:ff1f::/48 maxlen: 48
2405:84c0:ff30::/44 maxlen: 48
2405:84c0:ff60::/44 maxlen: 44
2405:84c0:ff90::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3183 (0xc6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099
Validity
Not Before: Mar 9 17:06:37 2023 GMT
Not After : Dec 1 00:00:00 2023 GMT
Subject: CN=640a121c-715b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:e4:f3:f8:5d:5d:1c:0b:d6:86:00:17:c9:a5:
0b:95:25:ba:d5:48:9c:a1:5c:8c:0d:3c:a8:83:7d:
9e:34:21:98:b1:43:31:e8:c9:ab:35:38:b6:b1:db:
d9:95:eb:ca:d0:f8:c4:32:90:dd:e3:49:b8:ea:65:
57:5f:ec:a0:a0:2e:75:24:a9:93:31:42:e2:72:85:
57:e3:e5:5a:2e:c0:91:1c:62:8b:b3:f0:ea:8d:52:
ca:ba:6f:53:c2:a8:13:65:a1:fa:f3:ee:d5:28:1d:
7d:45:ae:5a:de:68:f8:c5:9b:d1:84:3e:30:f2:2f:
45:13:b2:b7:a3:7e:b2:9b:8a:01:5d:1e:81:85:14:
5c:6a:7a:c8:58:0d:00:92:25:95:07:15:b4:2b:27:
9a:d7:85:b3:74:64:3d:e3:71:d8:cd:be:d3:aa:27:
6a:aa:19:b9:1b:b6:ed:64:e4:63:ea:7b:97:0f:cf:
eb:8d:5d:c3:7a:d8:62:8d:ff:dd:37:8f:3c:de:b6:
fd:f3:99:f8:73:3d:64:5f:57:3a:06:dd:d4:9c:a8:
7f:92:ab:70:2f:5b:be:ba:d4:6c:4a:42:08:2e:d2:
8d:9e:98:37:b2:5c:7a:3f:bd:1b:9c:4c:bc:61:e2:
b5:5a:d9:8a:ab:e0:12:f1:a7:93:8b:44:6b:bf:53:
7a:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:5C:23:6B:21:D6:FA:68:69:F0:9B:88:4B:ED:E3:08:15:EC:34:69
X509v3 Authority Key Identifier:
keyid:9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/3F7FC42ABB1611EDA6120655C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:df1:4580::/48
2405:84c0::/32
Signature Algorithm: sha256WithRSAEncryption
b8:3f:fe:d4:42:ba:82:ed:31:11:74:ae:34:c2:6e:2d:30:68:
4f:a8:28:3a:3e:ee:e9:33:36:d2:8c:0e:1c:2b:28:09:c0:3a:
e4:6d:91:dd:41:84:93:b6:79:2a:2e:54:fb:4b:05:57:24:e6:
d1:e8:56:c5:ee:50:d3:5d:74:ea:d8:49:b8:48:13:b8:58:4c:
c7:be:fe:8c:86:42:68:11:9d:fb:6d:92:ce:73:de:20:bd:fa:
95:39:4a:a0:58:c7:be:f5:f0:57:5f:c5:4b:83:8b:61:64:c2:
21:41:9b:57:3b:66:29:23:9c:f2:8c:36:52:72:7f:22:e8:3b:
f6:d2:3f:f3:c0:91:c3:c3:0b:fa:6c:12:4e:d0:70:7d:7d:fb:
db:55:ce:eb:b6:70:36:36:f6:6c:f9:b0:f7:42:dd:6e:b6:99:
f0:ab:aa:62:2a:10:d7:eb:d2:6c:37:fe:bd:bf:a2:d6:c5:4e:
18:e1:2e:3a:e1:83:34:7f:31:35:f0:dc:39:df:58:e5:d4:8d:
9f:98:bc:6b:1d:22:0d:03:d2:a6:a5:14:1d:ac:18:24:3f:73:
20:5c:b0:bb:58:86:32:e4:02:16:a0:50:4a:94:3e:51:c2:6c:
62:82:bf:1f:e8:7e:8b:07:1c:b4:ca:9b:f9:06:35:1b:a7:6b:
02:cf:4d:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:53 2024 by rpki-client on console-ams.rpki-client.org