Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/3E019A8A781F11EE9787607FC4F9AE02.roa
File: 3E019A8A781F11EE9787607FC4F9AE02.roa (raw, json)
Hash identifier: MmoithzQc+7aD/fKFzNXBrTo3ZTdHs6/Vo1FnF1dX0E=
Subject key identifier: 8A:5C:AF:6E:50:3B:3B:AD:3C:37:BF:1E:22:F2:3D:F4:05:52:32:1C
Certificate issuer: /CN=A91D83D0/serialNumber=C4E4F0DA010AF58637CC59628471E998B7243C52
Certificate serial: 07C2
Authority key identifier: C4:E4:F0:DA:01:0A:F5:86:37:CC:59:62:84:71:E9:98:B7:24:3C:52
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/3E019A8A781F11EE9787607FC4F9AE02.roa
Signing time: Tue 31 Oct 2023 18:56:48 +0000
ROA not before: Tue 31 Oct 2023 18:56:48 +0000
ROA not after: Wed 29 May 2024 00:00:00 +0000
asID: 398791
IP address blocks: 2407:1c00:6200::/40 maxlen: 48
2407:1c00:6300::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1986 (0x7c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D83D0/serialNumber=C4E4F0DA010AF58637CC59628471E998B7243C52
Validity
Not Before: Oct 31 18:56:48 2023 GMT
Not After : May 29 00:00:00 2024 GMT
Subject: CN=65414def-584f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:8c:68:69:cb:63:ca:ec:2f:c2:aa:53:be:5b:
f3:58:6e:26:d0:06:46:73:6c:b0:0f:13:4c:b2:64:
f6:79:dd:51:da:8e:69:04:75:a7:1b:be:5e:31:a0:
df:fe:3b:d1:6e:46:e6:5c:c8:57:8a:61:73:8e:73:
9e:27:98:cb:4c:a9:89:3c:25:74:cf:55:3b:59:e0:
73:8b:51:e3:2c:1f:5c:b0:67:29:59:6b:ef:c0:f3:
d8:35:c0:e4:59:1e:02:f7:59:79:e5:14:66:67:41:
0f:a8:c8:69:11:7a:ff:b6:de:59:18:a1:00:f4:a3:
13:71:84:ca:a6:85:80:9b:1f:a7:de:d7:bb:bc:a8:
42:9d:95:b1:aa:79:e4:57:2c:be:20:90:cb:a2:e5:
35:1e:17:57:9d:c3:ee:6e:05:93:16:fb:9a:93:7d:
aa:6f:4b:27:a1:23:14:1b:ed:26:92:aa:9b:ca:0b:
1d:ef:ab:87:44:01:bb:33:cf:1e:b2:d6:94:20:87:
1f:86:a6:bd:9c:57:12:63:f4:d9:c4:66:2f:3b:95:
81:3f:59:89:76:4e:38:50:6a:0d:44:62:b5:ac:23:
43:4d:fa:4c:7a:d4:ba:f2:bc:86:dd:78:10:59:f4:
3d:5e:73:b1:5e:87:3f:ee:e4:5c:e4:71:d1:d7:8f:
be:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:5C:AF:6E:50:3B:3B:AD:3C:37:BF:1E:22:F2:3D:F4:05:52:32:1C
X509v3 Authority Key Identifier:
keyid:C4:E4:F0:DA:01:0A:F5:86:37:CC:59:62:84:71:E9:98:B7:24:3C:52
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/3E019A8A781F11EE9787607FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2407:1c00:6200::/39
Signature Algorithm: sha256WithRSAEncryption
a1:2a:d9:55:be:cb:88:4d:22:c4:b5:c8:f1:02:58:ca:d4:10:
9f:62:c2:8b:45:da:db:6b:fa:58:5d:28:a1:d0:30:54:c0:89:
18:f7:46:b1:30:f9:72:cc:7e:8e:17:ae:6a:94:7d:e3:95:54:
2e:69:d8:79:aa:bb:4c:44:a6:b1:21:14:a3:d7:25:23:3a:d4:
95:5a:5b:64:7f:a6:df:4f:e5:d8:78:f7:65:1f:2b:e6:d2:0f:
4c:03:e9:5e:d4:ab:f6:0c:6b:19:24:99:b0:8b:51:75:b8:d4:
eb:a2:fe:55:22:91:5d:9e:32:7d:09:b7:0b:c2:96:41:a8:e4:
50:4b:fd:91:bd:27:7d:b7:7d:d3:b9:c0:73:c2:6e:a9:cd:ce:
e7:ca:e8:c8:11:3f:10:16:7c:7c:96:4d:18:51:7e:14:9e:1d:
fa:11:67:75:24:68:9f:cf:1c:bb:93:36:9c:f6:fa:3e:50:42:
35:7f:2b:0e:03:1c:a7:26:02:f5:c9:01:df:cd:b2:4c:42:e9:
ef:a7:5d:f0:7a:e8:2b:ad:56:c0:ae:c5:f1:35:d8:ee:7c:28:
f6:84:49:34:2a:c2:27:91:0a:95:45:8b:8d:da:86:43:2a:db:
0e:cb:a7:c3:94:c4:89:c5:72:3e:14:f0:6b:ed:c1:0c:07:85:
f2:e1:0c:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:30 2024 by rpki-client on console-ams.rpki-client.org