Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/2487BC8C265F11EDB60D6437C4F9AE02.roa
File: 2487BC8C265F11EDB60D6437C4F9AE02.roa (raw, json)
Hash identifier: 3p50Q5EUVRzH5cMa05+rrHDk/Rb4t7HPXhpHLcimMWY=
Subject key identifier: 74:BA:43:F5:A2:3E:4F:A2:DF:89:6C:3F:B4:4B:7B:C7:B3:FB:C4:1F
Certificate issuer: /CN=A91618BC/serialNumber=1AEBCD82D7028343B745AD406739CDB92D4DFB77
Certificate serial: 023E
Authority key identifier: 1A:EB:CD:82:D7:02:83:43:B7:45:AD:40:67:39:CD:B9:2D:4D:FB:77
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GuvNgtcCg0O3Ra1AZznNuS1N-3c.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/2487BC8C265F11EDB60D6437C4F9AE02.roa
Signing time: Sat 27 Aug 2022 23:22:39 +0000
ROA not before: Sat 27 Aug 2022 23:22:39 +0000
ROA not after: Fri 31 Mar 2023 00:00:00 +0000
asID: 7480
IP address blocks: 2407:9240:2200::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 574 (0x23e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91618BC/serialNumber=1AEBCD82D7028343B745AD406739CDB92D4DFB77
Validity
Not Before: Aug 27 23:22:39 2022 GMT
Not After : Mar 31 00:00:00 2023 GMT
Subject: CN=630aa73f-ada9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:af:63:78:cd:db:cc:75:4e:d0:45:ec:23:38:
fa:83:44:28:be:ef:11:0a:50:01:2a:d6:8a:f9:dd:
c8:09:07:b8:a9:94:b2:7a:ef:08:90:a2:71:d3:87:
eb:56:7a:ae:10:b7:b6:02:ac:e9:ae:ba:47:26:f4:
4c:d8:30:f1:7c:bd:65:68:30:27:74:59:09:01:12:
5e:a4:6a:4d:00:db:00:5f:68:42:0b:de:bb:52:63:
87:1f:20:10:20:33:e1:e5:7a:91:e4:62:d7:9b:f8:
a8:33:52:b2:55:23:1e:76:7b:9c:cd:a9:b2:e5:13:
21:80:25:62:11:a5:ed:84:d6:fd:d2:0c:fa:c6:b8:
4d:8b:03:91:70:9b:31:b7:c8:d3:6a:4d:d7:4e:ac:
25:df:87:53:06:8d:2a:b1:ce:23:2b:a6:3e:f3:b0:
50:c2:fa:50:7a:d7:26:7d:14:0a:65:a3:ad:46:ce:
c0:e8:4c:e0:d0:27:57:97:26:42:8e:9c:29:0a:73:
67:12:49:20:b1:db:59:11:5f:00:87:b6:55:be:f2:
bb:b3:78:7c:07:6a:ae:ca:19:47:fb:19:90:9e:26:
71:7a:b1:e0:1d:25:87:99:88:33:f9:d9:10:08:55:
98:83:e1:58:f7:f0:92:80:e4:68:c0:16:0f:f8:ad:
a3:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:BA:43:F5:A2:3E:4F:A2:DF:89:6C:3F:B4:4B:7B:C7:B3:FB:C4:1F
X509v3 Authority Key Identifier:
keyid:1A:EB:CD:82:D7:02:83:43:B7:45:AD:40:67:39:CD:B9:2D:4D:FB:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/GuvNgtcCg0O3Ra1AZznNuS1N-3c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GuvNgtcCg0O3Ra1AZznNuS1N-3c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/2487BC8C265F11EDB60D6437C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2407:9240:2200::/48
Signature Algorithm: sha256WithRSAEncryption
a2:1f:d1:bf:61:c8:12:ab:ba:39:8d:ff:8d:ba:c8:30:45:5d:
69:d4:58:b9:79:b1:06:b1:cd:29:46:5c:51:43:9e:ca:77:47:
c6:73:88:9b:a8:9b:b3:27:e6:79:6e:29:1b:48:85:2b:d0:94:
55:b0:9a:4e:15:09:68:58:c6:f5:ec:a0:ee:f5:6a:27:41:6d:
3a:02:2d:06:02:64:e4:5a:f9:3e:c4:02:34:dc:e4:13:53:a9:
05:2a:78:18:9f:86:18:8e:7e:6c:51:c0:96:8c:c2:94:3a:9c:
db:a0:06:51:34:98:a4:ea:42:e7:c8:75:46:55:fb:ae:e3:ac:
77:0e:c2:40:6d:75:9d:7b:62:86:9b:92:dd:2c:ce:07:e7:e7:
76:ea:26:e5:22:a5:3c:23:19:37:2d:c5:9b:64:6a:03:61:d6:
48:20:a8:b0:1a:91:31:fa:79:aa:54:6a:88:f4:25:6c:75:f1:
b9:28:a5:30:8c:7c:7f:54:7c:d8:52:a7:28:23:b4:07:eb:c6:
7d:9e:47:33:1d:9d:52:fb:12:de:1b:95:15:9a:78:a2:57:bd:
54:56:5b:a5:a5:88:6e:2e:cb:11:90:78:c8:da:39:63:c1:72:
97:0b:67:e3:2f:e0:ac:e0:12:e5:2f:86:09:2d:b7:5d:d9:35:
d2:73:8f:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:41 2023 by rpki-client on console-ams.rpki-client.org