Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A916E554/7E053E9098CF11E986179A86C4F9AE02/B85EF7C4DF2D11EB95546923C4F9AE02.roa
File: B85EF7C4DF2D11EB95546923C4F9AE02.roa (raw, json)
Hash identifier: jlN2kUF1+YkOkbCW3P7XNN89IDPwxqxleyNwa3e2wB0=
Subject key identifier: 38:03:18:E6:A3:A1:8A:83:EA:A5:E1:40:1F:4C:FB:76:6F:39:18:F0
Certificate issuer: /CN=A916E554/serialNumber=F3FC3E8FE3FCD86CAF0F71AF6FB4231EC571BAF6
Certificate serial: 08F8
Authority key identifier: F3:FC:3E:8F:E3:FC:D8:6C:AF:0F:71:AF:6F:B4:23:1E:C5:71:BA:F6
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8_w-j-P82GyvD3Gvb7QjHsVxuvY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916E554/7E053E9098CF11E986179A86C4F9AE02/B85EF7C4DF2D11EB95546923C4F9AE02.roa
Signing time: Wed 07 Jul 2021 14:15:03 +0000
ROA not before: Wed 07 Jul 2021 14:15:03 +0000
ROA not after: Fri 30 Sep 2022 00:00:00 +0000
asID: 64271
IP address blocks: 2001:df0:c280::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2296 (0x8f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916E554/serialNumber=F3FC3E8FE3FCD86CAF0F71AF6FB4231EC571BAF6
Validity
Not Before: Jul 7 14:15:03 2021 GMT
Not After : Sep 30 00:00:00 2022 GMT
Subject: CN=60e5b6e6-0c9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:61:b3:65:a0:8f:80:b4:0d:83:42:01:2f:7f:
fe:05:b7:78:0c:23:f3:13:08:60:33:6d:12:56:fa:
00:aa:91:eb:7a:9c:8b:28:31:ab:1d:d0:43:76:b1:
4a:b5:25:c3:2c:27:bf:47:c5:33:04:cb:a1:a0:21:
d6:52:94:a8:23:a2:20:54:37:f4:18:3b:67:90:50:
8f:05:bd:5b:59:29:a6:1a:3f:57:d6:c5:10:d2:92:
e7:62:32:40:74:2d:2a:51:c2:c3:56:c2:43:07:2f:
ca:d1:a6:b8:95:18:78:6b:81:59:cd:41:df:4c:ec:
c1:11:b4:96:7e:11:5f:ee:12:49:da:c4:d8:56:1a:
6b:ad:8f:5c:0b:e0:db:36:92:b3:2f:95:f0:ed:a9:
2f:2a:7d:45:77:60:f8:82:9a:2f:c5:d7:f2:0d:8d:
76:d3:f0:a1:46:31:67:cf:7b:86:ae:9c:bb:2c:10:
af:78:b3:af:1f:88:8a:9f:c9:45:3a:6a:28:58:74:
ce:71:90:8a:f4:fa:eb:d4:91:47:f9:84:6d:6e:2f:
54:52:be:fb:61:c6:69:3a:08:27:a4:d7:0b:2a:21:
df:1b:d0:d3:76:d8:ac:df:d4:14:1a:a5:a8:85:77:
d6:92:24:4c:04:6b:e1:51:ae:07:14:f2:1a:d2:29:
75:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:03:18:E6:A3:A1:8A:83:EA:A5:E1:40:1F:4C:FB:76:6F:39:18:F0
X509v3 Authority Key Identifier:
keyid:F3:FC:3E:8F:E3:FC:D8:6C:AF:0F:71:AF:6F:B4:23:1E:C5:71:BA:F6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916E554/7E053E9098CF11E986179A86C4F9AE02/8_w-j-P82GyvD3Gvb7QjHsVxuvY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8_w-j-P82GyvD3Gvb7QjHsVxuvY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916E554/7E053E9098CF11E986179A86C4F9AE02/B85EF7C4DF2D11EB95546923C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:df0:c280::/48
Signature Algorithm: sha256WithRSAEncryption
9e:5f:6d:8b:bd:02:7f:e2:07:14:1e:c4:9d:3f:a5:b5:c4:9d:
ff:b7:57:2b:b2:d2:3e:eb:a6:53:fd:10:1c:59:61:c8:22:bb:
55:e1:3e:cf:7c:72:c5:ee:5e:37:55:05:bf:f3:fe:4d:a7:a3:
91:a2:58:d5:8c:1f:25:ce:d0:bf:c4:60:49:f3:01:52:74:98:
79:f3:4c:52:10:44:b7:34:a6:1f:71:ec:59:0a:e0:10:29:24:
26:8f:57:c0:1c:5e:e9:bd:9b:4f:dc:63:bd:b8:93:39:ac:45:
93:d7:ac:62:8a:0a:20:28:f5:04:67:67:c4:f3:4b:20:e2:5e:
26:02:89:b5:27:cf:da:52:a0:d7:f1:95:07:59:06:27:5c:93:
e2:ba:ea:65:fa:ef:7f:80:2c:d2:5e:0b:98:8e:b9:36:f0:fb:
20:c0:64:8f:51:b5:da:b5:03:65:71:43:92:17:ee:9a:9a:0e:
d8:6d:e7:d8:2a:05:67:3b:80:17:b4:1c:cb:d3:1e:9e:ea:82:
46:17:fa:d1:54:7e:e5:5b:ca:47:73:da:05:28:51:83:dd:de:
88:8a:d7:ae:3c:6b:b9:e2:15:fb:a6:c2:d6:4c:9c:7e:ea:ce:
4f:ff:5c:b1:6f:87:8e:0f:08:36:fa:b1:a0:03:ed:b8:50:61:
a0:8b:e6:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:43 2023 by rpki-client on console-ams.rpki-client.org