Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/5B85EA1691B211EC838CA523C4F9AE02.roa
File: 5B85EA1691B211EC838CA523C4F9AE02.roa (raw, json)
Hash identifier: LBtegl7cubfSiuaECOWA8II9maVFnzBdfOTZ5O4JVgg=
Subject key identifier: B1:C2:5E:02:7B:EB:EF:16:E4:CC:E0:F4:C7:93:5B:FF:BD:25:9D:A4
Certificate issuer: /CN=A91618BC/serialNumber=1AEBCD82D7028343B745AD406739CDB92D4DFB77
Certificate serial: B5
Authority key identifier: 1A:EB:CD:82:D7:02:83:43:B7:45:AD:40:67:39:CD:B9:2D:4D:FB:77
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GuvNgtcCg0O3Ra1AZznNuS1N-3c.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/5B85EA1691B211EC838CA523C4F9AE02.roa
Signing time: Sat 19 Feb 2022 18:32:57 +0000
ROA not before: Sat 19 Feb 2022 18:32:57 +0000
ROA not after: Fri 31 Mar 2023 00:00:00 +0000
asID: 209557
IP address blocks: 2407:9240:2200::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 181 (0xb5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91618BC/serialNumber=1AEBCD82D7028343B745AD406739CDB92D4DFB77
Validity
Not Before: Feb 19 18:32:57 2022 GMT
Not After : Mar 31 00:00:00 2023 GMT
Subject: CN=621137d9-c5e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:66:93:89:2e:ae:64:1e:7c:af:53:bb:fb:a5:
de:ab:3d:ac:c0:d6:93:bf:84:eb:66:2e:46:7a:43:
18:b4:85:4b:a2:72:10:59:42:97:52:92:ba:c7:e9:
93:1b:7a:65:a6:19:42:df:ac:b3:13:3a:2a:79:1a:
af:e0:ed:73:d7:69:c9:b5:79:21:e3:6b:c2:dd:a8:
7d:e3:f8:12:3f:e5:88:93:62:c9:ed:7e:bc:67:8d:
c8:75:44:45:75:d0:cb:d0:49:05:f0:22:2a:b6:6e:
a2:fe:d7:30:21:d5:4b:7b:92:43:b0:64:3b:0d:cd:
f2:18:33:c3:de:30:f7:87:73:c7:df:b2:91:ea:8e:
00:8a:5d:70:08:58:5f:2c:f3:03:ef:6f:b1:db:73:
7b:20:22:19:15:07:50:19:21:3f:eb:1e:16:75:65:
a9:37:24:3c:77:c0:48:4c:57:4d:6a:bc:4c:da:af:
a6:51:2a:94:d9:c0:ff:56:d6:eb:8c:ac:39:97:29:
f6:9b:82:64:19:19:0f:d4:11:65:db:5b:56:78:33:
c0:85:91:7e:7a:83:d0:d6:94:48:b1:8c:4e:1f:a1:
9a:72:a0:49:de:a5:b0:ac:29:cf:b4:0c:f4:5e:53:
23:fb:55:be:8e:a6:a7:4a:81:05:63:3d:92:09:15:
00:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:C2:5E:02:7B:EB:EF:16:E4:CC:E0:F4:C7:93:5B:FF:BD:25:9D:A4
X509v3 Authority Key Identifier:
keyid:1A:EB:CD:82:D7:02:83:43:B7:45:AD:40:67:39:CD:B9:2D:4D:FB:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/GuvNgtcCg0O3Ra1AZznNuS1N-3c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GuvNgtcCg0O3Ra1AZznNuS1N-3c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/5B85EA1691B211EC838CA523C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2407:9240:2200::/40
Signature Algorithm: sha256WithRSAEncryption
7b:d0:ef:49:0e:55:c2:59:85:6d:b5:36:2b:1b:f6:26:ed:c1:
71:ba:7c:7f:bc:23:b6:a7:24:ae:e4:e1:a0:0a:16:67:d0:b3:
18:68:8f:f2:a6:82:0e:b2:bc:96:90:28:ee:4b:42:1e:9e:22:
f7:3c:a9:dd:5a:cc:42:eb:31:e5:12:36:28:55:29:69:62:76:
8d:f4:01:09:0d:de:63:cd:6a:fd:5d:5d:5e:f2:b0:45:c4:05:
13:58:b9:db:c6:f4:7e:41:3b:07:47:a9:2a:33:0d:34:43:3f:
7e:00:34:aa:0d:ec:16:90:87:b9:71:27:c1:21:94:67:ba:21:
ff:3c:ff:b0:10:b4:0a:90:12:7f:d3:ed:1e:b1:9a:31:6a:38:
0e:a1:57:d1:da:ae:15:f8:6c:0a:c0:0e:88:8a:b7:11:a9:9c:
03:9e:0e:7b:11:b2:a1:fa:6a:e3:3b:7e:9b:0c:eb:25:be:15:
7d:a9:52:a4:9d:17:8f:fb:d7:2c:1a:6d:df:a5:86:3d:40:8a:
c2:79:b5:59:81:fe:6f:56:f8:a9:d9:67:b9:3e:76:c4:9d:fc:
8d:e8:f2:b2:f1:c1:51:aa:b5:9d:fc:d7:5e:1a:e3:6b:09:a7:
83:b0:f3:2d:2e:40:d7:b6:ce:b2:44:6e:7b:53:c6:6a:de:5f:
0a:b1:09:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:41 2023 by rpki-client on console-ams.rpki-client.org