Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91447E7/FE4469D2130111EDADCE5C7DC4F9AE02/551D611230DC11ED9DD6496CC4F9AE02.roa
File: 551D611230DC11ED9DD6496CC4F9AE02.roa (raw, json)
Hash identifier: TU3TbYkhiT0sjsUoiJD/Knf3NiY+sPZLjjvcanJwa4I=
Subject key identifier: 91:4F:BB:BC:91:DD:98:D1:6A:AE:6E:DC:37:7C:0B:73:61:C9:8F:44
Certificate issuer: /CN=A91447E7/serialNumber=E77B87146805E2604B49EEF2B4A438CBD2A51424
Certificate serial: 56
Authority key identifier: E7:7B:87:14:68:05:E2:60:4B:49:EE:F2:B4:A4:38:CB:D2:A5:14:24
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/53uHFGgF4mBLSe7ytKQ4y9KlFCQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91447E7/FE4469D2130111EDADCE5C7DC4F9AE02/551D611230DC11ED9DD6496CC4F9AE02.roa
Signing time: Sat 10 Sep 2022 07:44:00 +0000
ROA not before: Sat 10 Sep 2022 07:44:00 +0000
ROA not after: Sat 30 Sep 2023 00:00:00 +0000
asID: 60445
IP address blocks: 2001:df0:c940::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86 (0x56)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91447E7/serialNumber=E77B87146805E2604B49EEF2B4A438CBD2A51424
Validity
Not Before: Sep 10 07:44:00 2022 GMT
Not After : Sep 30 00:00:00 2023 GMT
Subject: CN=631c4040-7527
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:7a:28:e7:90:45:d4:e9:00:8c:33:99:c1:7b:
c3:6f:c3:6e:b6:25:26:65:ee:54:03:8e:ac:78:a6:
b2:b3:04:d1:7e:a4:14:99:ac:72:ea:28:43:fd:85:
10:d8:b5:81:c6:f1:f9:2f:b9:d3:38:8d:3a:18:03:
d8:17:df:62:bd:b1:31:0e:12:9a:48:e0:b9:8b:c0:
2a:e3:83:8d:8c:55:d6:d9:08:b7:bc:48:09:07:8f:
a0:32:aa:dc:52:a1:38:6e:5e:9d:be:0c:03:03:97:
32:0f:fa:0c:ac:ea:84:e1:cd:ac:4f:a9:c2:6c:b9:
36:15:31:7e:c1:ae:13:fe:71:df:d1:77:f4:ab:d9:
07:ff:3d:3c:d3:be:24:16:9a:2d:de:be:5b:3b:2c:
e2:8f:7d:1f:88:da:a0:2e:60:6a:a9:23:7c:40:c9:
f2:82:9b:b4:bc:dc:b8:e0:9f:07:d0:99:08:b3:ad:
67:b4:00:73:8d:18:06:07:54:73:95:37:53:18:29:
3d:81:27:54:30:a4:33:11:3f:61:a3:7a:9e:91:9b:
2d:54:82:82:b9:67:51:ff:87:17:51:2e:76:fa:ac:
81:65:20:fa:40:29:8e:44:a6:44:10:b9:0d:51:34:
75:d5:dd:6a:eb:23:2f:7d:0b:52:f5:47:06:10:3b:
b2:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:4F:BB:BC:91:DD:98:D1:6A:AE:6E:DC:37:7C:0B:73:61:C9:8F:44
X509v3 Authority Key Identifier:
keyid:E7:7B:87:14:68:05:E2:60:4B:49:EE:F2:B4:A4:38:CB:D2:A5:14:24
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91447E7/FE4469D2130111EDADCE5C7DC4F9AE02/53uHFGgF4mBLSe7ytKQ4y9KlFCQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/53uHFGgF4mBLSe7ytKQ4y9KlFCQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91447E7/FE4469D2130111EDADCE5C7DC4F9AE02/551D611230DC11ED9DD6496CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:df0:c940::/48
Signature Algorithm: sha256WithRSAEncryption
33:f1:ed:dd:1f:90:f5:85:8e:24:43:fb:24:e7:3a:a4:3f:bd:
2c:cf:8c:ac:eb:b9:66:a1:f6:fc:a6:00:db:7b:01:41:74:36:
7d:c3:44:c6:b1:3e:0b:8f:11:7d:7f:69:f2:10:5c:21:cc:68:
e1:ff:ec:c3:98:bd:73:b1:72:33:dc:b4:f6:49:3b:04:9f:65:
bf:23:89:bb:be:c2:fa:97:ad:96:e5:46:81:18:a6:fe:2b:16:
d8:fc:a8:7a:7f:12:ac:7d:61:e9:72:16:f6:35:83:21:1f:35:
7e:ef:91:3a:d1:e2:31:a7:c3:a9:5a:b3:2d:c3:a9:4c:6d:51:
92:df:bd:e2:9b:72:ac:ab:ba:b2:b0:ea:ef:a4:b7:17:5c:20:
17:e4:85:fe:8c:19:4d:7a:52:ff:d1:1d:c0:a6:d8:71:2f:6e:
04:ee:b2:47:ff:34:ba:53:5f:47:e8:36:d2:9e:2a:32:17:18:
49:65:b5:f4:de:97:42:d0:c5:fc:bf:37:31:77:ec:02:41:92:
1c:49:f7:f2:7c:8d:6d:e4:56:e2:34:3b:2e:17:f8:5c:1f:27:
6c:40:67:ab:ec:88:2c:e0:69:1c:50:d3:8a:17:fd:04:79:f3:
1b:7c:c8:4b:ff:cc:85:c3:29:8e:96:ec:90:d3:d3:4e:27:1b:
81:36:2c:32
-----BEGIN CERTIFICATE-----
MIIFczCCBFugAwIBAgIBVjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0
NDdFNzExMC8GA1UEBRMoRTc3Qjg3MTQ2ODA1RTI2MDRCNDlFRUYyQjRBNDM4Q0JE
MkE1MTQyNDAeFw0yMjA5MTAwNzQ0MDBaFw0yMzA5MzAwMDAwMDBaMBgxFjAUBgNV
BAMTDTYzMWM0MDQwLTc1MjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDHeijnkEXU6QCMM5nBe8Nvw262JSZl7lQDjqx4prKzBNF+pBSZrHLqKEP9hRDY
tYHG8fkvudM4jToYA9gX32K9sTEOEppI4LmLwCrjg42MVdbZCLe8SAkHj6AyqtxS
oThuXp2+DAMDlzIP+gys6oThzaxPqcJsuTYVMX7BrhP+cd/Rd/Sr2Qf/PTzTviQW
mi3evls7LOKPfR+I2qAuYGqpI3xAyfKCm7S83LjgnwfQmQizrWe0AHONGAYHVHOV
N1MYKT2BJ1QwpDMRP2Gjep6Rmy1UgoK5Z1H/hxdRLnb6rIFlIPpAKY5EpkQQuQ1R
NHXV3WrrIy99C1L1RwYQO7LJAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUkU+7vJHd
mNFqrm7cN3wLc2HJj0QwHwYDVR0jBBgwFoAU53uHFGgF4mBLSe7ytKQ4y9KlFCQw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ0N0U3L0ZFNDQ2OUQyMTMw
MTExRURBRENFNUM3REM0RjlBRTAyLzUzdUhGR2dGNG1CTFNlN3l0S1E0eTlLbEZD
US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvNTN1SEZHZ0Y0bUJMU2U3eXRLUTR5OUtsRkNRLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw
C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0
NDdFNy9GRTQ0NjlEMjEzMDExMUVEQURDRTVDN0RDNEY5QUUwMi81NTFENjExMjMw
REMxMUVEOURENjQ5NkNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v
cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT
MBEwDwQCAAIwCQMHACABDfDJQDANBgkqhkiG9w0BAQsFAAOCAQEAM/Ht3R+Q9YWO
JEP7JOc6pD+9LM+MrOu5ZqH2/KYA23sBQXQ2fcNExrE+C48RfX9p8hBcIcxo4f/s
w5i9c7FyM9y09kk7BJ9lvyOJu77C+petluVGgRim/isW2Pyoen8SrH1h6XIW9jWD
IR81fu+ROtHiMafDqVqzLcOpTG1Rkt+94ptyrKu6srDq76S3F1wgF+SF/owZTXpS
/9EdwKbYcS9uBO6yR/80ulNfR+g20p4qMhcYSWW19N6XQtDF/L83MXfsAkGSHEn3
8nyNbeRW4jQ7Lhf4XB8nbEBnq+yILOBpHFDTihf9BHnzG3zIS//MhcMpjpbskNPT
TicbgTYsMg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:04 2024 by rpki-client on console-fra.rpki-client.org