Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/47084E867DC111EB8869B313C4F9AE02.roa
File: 47084E867DC111EB8869B313C4F9AE02.roa (raw, json)
Hash identifier: rgNYZ6Tl6NqdDPlK0KFkq9+YZhpq6gOQjm7JuImz60M=
Subject key identifier: 18:35:D4:B1:29:3B:B3:71:50:84:FD:03:9E:CE:25:27:3C:E5:3B:E2
Certificate issuer: /CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099
Certificate serial: 08D2
Authority key identifier: 9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/47084E867DC111EB8869B313C4F9AE02.roa
Signing time: Wed 01 Sep 2021 20:05:59 +0000
ROA not before: Wed 01 Sep 2021 20:05:59 +0000
ROA not after: Thu 01 Dec 2022 00:00:00 +0000
asID: 211686
IP address blocks: 2405:84c0:fcf5::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2258 (0x8d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A4C60
Validity
Not Before: Sep 1 20:05:59 2021 GMT
Not After : Dec 1 00:00:00 2022 GMT
Subject: CN=612fdd26-daf0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:96:69:54:25:1a:8f:01:b8:eb:cb:58:0e:46:
71:85:34:13:01:38:c3:65:27:e4:dc:8a:4c:cd:4f:
2b:a9:1b:2d:1b:19:27:92:76:90:22:05:5c:98:0e:
2b:29:74:0a:54:3a:48:eb:38:22:7d:f0:55:c5:af:
8d:43:e1:d0:18:49:39:a1:de:ce:88:9b:30:4e:06:
99:29:4a:44:49:03:2b:9e:e2:5a:8b:49:4d:5d:73:
17:09:a9:3a:5d:d9:b6:83:f2:23:f4:39:2f:ce:03:
6e:0d:38:e3:b0:09:56:9b:75:17:44:5f:32:9b:07:
9c:cc:61:81:3d:ec:c3:54:43:9f:7a:04:c0:9f:bd:
f9:4b:87:af:ab:e8:a4:85:64:2e:10:f7:65:48:28:
db:f0:f4:29:dd:b2:30:6a:2e:a0:91:0e:23:bb:ad:
3a:15:65:c1:fe:02:4e:a8:5b:29:84:5e:93:99:2d:
41:42:02:d4:de:91:af:5a:82:c4:fd:20:48:80:ff:
f9:30:ac:b5:69:25:30:5b:1c:00:f3:0a:97:99:5a:
50:1d:47:4f:0e:e8:de:20:67:e4:68:cc:75:77:40:
32:40:ec:d3:5b:fd:1d:51:74:cb:a3:2d:1c:62:01:
99:ab:9b:75:80:a2:ca:4e:bd:80:b7:5a:0f:30:76:
b8:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:35:D4:B1:29:3B:B3:71:50:84:FD:03:9E:CE:25:27:3C:E5:3B:E2
X509v3 Authority Key Identifier:
keyid:9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/47084E867DC111EB8869B313C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:84c0:fcf5::/48
Signature Algorithm: sha256WithRSAEncryption
3f:01:78:25:85:52:0e:78:af:e0:a8:4d:7c:a4:5c:75:78:ac:
b9:e2:e5:7e:26:a8:8d:66:37:5c:e7:6e:5a:30:d6:4f:58:92:
b6:29:fc:ac:a1:82:1e:f1:2e:f5:21:4e:f0:ed:d9:56:b8:f1:
c2:7e:ad:f8:f3:3b:9c:19:f0:f2:da:a8:d0:13:e8:12:08:b9:
6f:ae:6b:1c:84:ea:27:a3:22:8a:fc:a9:21:04:75:9b:68:31:
07:5b:c1:4e:0a:8c:94:18:2f:e2:db:6d:d3:24:9f:20:d0:99:
86:77:e3:98:b5:a2:d9:86:94:81:38:d5:39:41:a7:1a:a4:16:
3c:e7:7e:f1:24:a2:52:79:91:5e:38:70:8f:3e:be:42:72:d3:
4a:54:82:24:6f:74:76:02:bf:e9:73:a1:57:64:20:7d:cc:0c:
5b:cc:d2:bf:88:94:fc:06:84:34:73:e4:aa:26:d6:dd:51:3a:
bd:c7:3a:8f:79:05:d0:82:b4:7f:49:63:b7:7a:3b:e5:08:7f:
8d:a3:cf:2b:09:d6:59:8d:61:ce:5f:1e:95:96:df:6b:75:1d:
68:57:71:d7:df:44:21:7a:06:12:bb:93:bc:4e:8f:26:82:6b:
53:0c:90:6b:26:b1:d4:0e:32:83:1b:17:ad:a7:d1:f5:9c:dc:
2c:3a:35:01
-----BEGIN CERTIFICATE-----
MIIFdDCCBFygAwIBAgICCNIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QTRDNjAxMTAvBgNVBAUTKDlFRjlFNDM3NkUzNjY1MzI3NUM3OTYzNTk4RDZCNDVC
NzBBRjgwOTkwHhcNMjEwOTAxMjAwNTU5WhcNMjIxMjAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02MTJmZGQyNi1kYWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAwJZpVCUajwG468tYDkZxhTQTATjDZSfk3IpMzU8rqRstGxknknaQIgVcmA4r
KXQKVDpI6zgiffBVxa+NQ+HQGEk5od7OiJswTgaZKUpESQMrnuJai0lNXXMXCak6
Xdm2g/Ij9DkvzgNuDTjjsAlWm3UXRF8ymweczGGBPezDVEOfegTAn735S4evq+ik
hWQuEPdlSCjb8PQp3bIwai6gkQ4ju606FWXB/gJOqFsphF6TmS1BQgLU3pGvWoLE
/SBIgP/5MKy1aSUwWxwA8wqXmVpQHUdPDujeIGfkaMx1d0AyQOzTW/0dUXTLoy0c
YgGZq5t1gKLKTr2At1oPMHa4jwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFBg11LEp
O7NxUIT9A57OJSc85TviMB8GA1UdIwQYMBaAFJ755DduNmUydceWNZjWtFtwr4CZ
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEM2MC9CNTI2RkY3NEQ4
NDExMUU5QTQ1MjE0MTNDNEY5QUUwMi9udm5rTjI0MlpUSjF4NVkxbU5hMFczQ3Zn
SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL252bmtOMjQyWlRKMXg1WTFtTmEwVzNDdmdKay5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QTRDNjAvQjUyNkZGNzREODQxMTFFOUE0NTIxNDEzQzRGOUFFMDIvNDcwODRFODY3
REMxMTFFQjg4NjlCMzEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E
EzARMA8EAgACMAkDBwAkBYTA/PUwDQYJKoZIhvcNAQELBQADggEBAD8BeCWFUg54
r+CoTXykXHV4rLni5X4mqI1mN1znblow1k9YkrYp/Kyhgh7xLvUhTvDt2Va48cJ+
rfjzO5wZ8PLaqNAT6BIIuW+uaxyE6iejIor8qSEEdZtoMQdbwU4KjJQYL+LbbdMk
nyDQmYZ345i1otmGlIE41TlBpxqkFjznfvEkolJ5kV44cI8+vkJy00pUgiRvdHYC
v+lzoVdkIH3MDFvM0r+IlPwGhDRz5Kom1t1ROr3HOo95BdCCtH9JY7d6O+UIf42j
zysJ1lmNYc5fHpWW32t1HWhXcdffRCF6BhK7k7xOjyaCa1MMkGsmsdQOMoMbF62n
0fWc3Cw6NQE=
-----END CERTIFICATE-----
Generated at Sun Feb 16 21:02:38 2025 by rpki-client