Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9115854/36380FAAACC711E982890253C4F9AE02/FC9C5E6EE28211ECB19A3258C4F9AE02.roa
File: FC9C5E6EE28211ECB19A3258C4F9AE02.roa (raw, json)
Hash identifier: dZ7SqVSfU7dr29EcR/spEKXHQtNuaRFyyWF0Q0VeXd0=
Subject key identifier: 96:4D:73:F4:B5:3A:0F:CA:6D:C4:AB:55:00:64:62:B7:D1:DC:31:71
Certificate issuer: /CN=A9115854/serialNumber=9BA3951CCB5D83A9F3DC4A75BEA01FF5AFD71FFF
Certificate serial: 0B29
Authority key identifier: 9B:A3:95:1C:CB:5D:83:A9:F3:DC:4A:75:BE:A0:1F:F5:AF:D7:1F:FF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m6OVHMtdg6nz3Ep1vqAf9a_XH_8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9115854/36380FAAACC711E982890253C4F9AE02/FC9C5E6EE28211ECB19A3258C4F9AE02.roa
Signing time: Thu 02 Jun 2022 14:47:56 +0000
ROA not before: Thu 02 Jun 2022 14:47:56 +0000
ROA not after: Tue 31 Jan 2023 00:00:00 +0000
asID: 139336
IP address blocks: 2403:f940::/36 maxlen: 36
2403:f940:1000::/36 maxlen: 36
2403:f940:2000::/36 maxlen: 36
2403:f940:3000::/36 maxlen: 36
2403:f940:4000::/36 maxlen: 36
2403:f940:5000::/36 maxlen: 36
2403:f940:6000::/36 maxlen: 36
2403:f940:7000::/36 maxlen: 36
2403:f940:8000::/36 maxlen: 36
2403:f940:9000::/36 maxlen: 36
2403:f940:a000::/36 maxlen: 36
2403:f940:b000::/36 maxlen: 36
2403:f940:c000::/36 maxlen: 36
2403:f940:d000::/36 maxlen: 36
2403:f940:e000::/36 maxlen: 36
2403:f940:f000::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2857 (0xb29)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9115854/serialNumber=9BA3951CCB5D83A9F3DC4A75BEA01FF5AFD71FFF
Validity
Not Before: Jun 2 14:47:56 2022 GMT
Not After : Jan 31 00:00:00 2023 GMT
Subject: CN=6298cd9b-7242
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:65:5e:ee:6b:e0:c4:f5:a3:dc:7c:63:09:b3:
fd:50:30:eb:3c:5f:1d:1b:0c:4f:12:2c:35:5c:63:
a3:50:ec:91:99:bb:86:ee:54:1a:7e:f6:f4:bf:be:
e8:c0:23:4f:d5:bc:65:78:83:8b:af:3c:22:13:69:
39:76:ca:b1:52:a5:2b:56:0e:3d:4c:13:8d:c7:90:
bc:7f:df:db:d4:63:78:ae:1b:0d:7d:55:5a:54:22:
3f:c4:c8:cd:7e:62:09:0e:b2:48:cb:4f:36:64:7b:
1e:5f:d3:06:6b:93:b7:aa:cd:57:41:94:0e:a2:31:
6e:5f:3f:7b:cc:b2:56:49:f3:84:58:4a:c0:ac:94:
1f:56:94:f1:60:ac:f7:3a:bb:9c:ca:1d:c4:0e:64:
11:32:5a:74:1c:6b:c3:94:e0:b8:61:0f:9b:3b:20:
4e:d4:80:07:59:01:a8:1e:0e:41:d7:f3:12:ee:66:
ea:86:0d:c5:b1:f1:27:b7:9b:60:e6:8c:3d:ee:fa:
4b:5b:8b:ae:1a:8a:a5:b4:f6:14:cb:06:58:38:39:
df:1b:ee:43:ea:d1:d3:3a:7b:9a:19:c3:da:99:ab:
4e:f8:3a:f5:bb:da:e0:2d:cf:9d:12:fb:f8:37:92:
32:c3:6a:d7:0f:ad:b9:09:88:1d:c9:37:0c:7b:06:
38:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:4D:73:F4:B5:3A:0F:CA:6D:C4:AB:55:00:64:62:B7:D1:DC:31:71
X509v3 Authority Key Identifier:
keyid:9B:A3:95:1C:CB:5D:83:A9:F3:DC:4A:75:BE:A0:1F:F5:AF:D7:1F:FF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9115854/36380FAAACC711E982890253C4F9AE02/m6OVHMtdg6nz3Ep1vqAf9a_XH_8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m6OVHMtdg6nz3Ep1vqAf9a_XH_8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9115854/36380FAAACC711E982890253C4F9AE02/FC9C5E6EE28211ECB19A3258C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:f940::/32
Signature Algorithm: sha256WithRSAEncryption
b2:74:01:37:df:50:7c:1b:cc:ed:07:27:47:ac:8c:73:b3:5b:
21:4a:86:fd:20:da:89:ea:9b:57:c8:15:04:ed:07:61:32:fe:
68:9c:c8:84:cf:12:ea:1d:f7:8c:e5:67:a5:8d:33:99:b4:ee:
8c:a4:24:c8:87:7c:13:e7:4a:ab:dc:53:0e:47:f4:6d:7e:84:
d6:67:1b:6f:c9:1b:5e:55:aa:66:f5:72:8c:62:2a:56:c6:d1:
5d:39:84:a9:2b:b2:c9:cb:9b:69:c8:4e:ee:97:52:d1:cb:13:
50:aa:79:0c:65:40:ed:27:d7:4e:bb:df:62:ef:1d:33:bf:77:
1e:35:09:51:24:09:8c:8e:97:88:ea:39:c4:5d:e7:00:67:7b:
74:8f:b2:15:1f:a1:6a:08:ec:46:5d:f2:6a:a2:66:c3:c7:9a:
df:9a:7f:b5:32:b7:a8:5e:a7:bb:24:78:c4:c8:57:52:f1:48:
5f:cf:89:5e:db:34:28:9c:bb:50:a1:cf:ff:84:01:72:82:d9:
b5:97:45:77:75:f1:69:9f:90:63:25:0b:3e:3c:14:5c:19:22:
c9:65:1c:16:5e:75:d5:80:7e:74:0e:b5:b0:bb:2c:9f:e8:f1:
2e:eb:0c:83:cc:d8:38:c6:51:8f:aa:9d:a2:41:f1:96:28:9e:
bc:3d:39:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:50:55 2024 by rpki-client on console-fra.rpki-client.org