Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917419E/981EE9860B2111EC8421494DC4F9AE02/596A25346CAF11EDAE46E940C4F9AE02.roa
File: 596A25346CAF11EDAE46E940C4F9AE02.roa (raw, json)
Hash identifier: y4Jskb7s/iCDzoDiabJy5BLg3ucmlhG5T8y+cgnfmVc=
Subject key identifier: FC:AA:0F:FF:B5:50:42:C4:5A:13:4C:E7:08:EE:E6:29:2E:82:52:CF
Certificate issuer: /CN=A917419E/serialNumber=1445489FDD50AA44AC1D2A3C3A166E06C662AFD5
Certificate serial: 0354
Authority key identifier: 14:45:48:9F:DD:50:AA:44:AC:1D:2A:3C:3A:16:6E:06:C6:62:AF:D5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FEVIn91QqkSsHSo8OhZuBsZir9U.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917419E/981EE9860B2111EC8421494DC4F9AE02/596A25346CAF11EDAE46E940C4F9AE02.roa
Signing time: Fri 25 Nov 2022 10:53:10 +0000
ROA not before: Fri 25 Nov 2022 10:53:10 +0000
ROA not after: Fri 01 Dec 2023 00:00:00 +0000
asID: 142031
IP address blocks: 2407:d340:7129::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 852 (0x354)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917419E
Validity
Not Before: Nov 25 10:53:10 2022 GMT
Not After : Dec 1 00:00:00 2023 GMT
Subject: CN=63809e95-c15f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:01:95:a1:da:21:f8:b6:32:2f:e6:f0:93:d5:
26:da:84:42:bf:1f:ec:45:57:cc:c2:ab:4f:68:e7:
bd:e1:3c:54:0a:92:b1:0b:c1:a1:d3:20:15:34:2d:
c6:85:2f:ed:8a:48:40:d2:85:e4:2f:f4:d8:3c:d1:
b6:bd:1a:1d:74:98:fb:4f:fd:89:7e:87:dc:1f:a8:
0c:bc:2e:21:ab:bc:fd:53:d2:31:77:88:51:45:18:
1d:b3:d1:bc:bc:d9:85:f1:07:32:1f:37:86:81:48:
6c:4e:41:9d:4c:b6:7e:6c:a2:2c:b8:8d:9a:ee:bd:
b0:11:76:4a:82:99:17:e1:81:ec:13:ce:d9:af:c9:
14:34:1a:4c:c1:24:dc:53:73:22:91:2d:29:0c:43:
af:33:dc:28:4e:c9:4f:7e:59:c3:77:e9:cc:7a:7f:
54:38:4d:77:70:d3:d5:e8:d4:7e:ce:bf:fd:11:40:
22:75:4a:1e:a4:a8:d8:e7:92:2b:29:14:cb:75:6b:
94:2a:5d:6e:f0:bd:09:07:f1:c6:6b:fe:01:aa:77:
ee:ef:ed:a6:23:00:3a:9b:77:c0:86:31:9a:06:7a:
55:b8:aa:2e:aa:74:4c:54:9e:af:67:d1:68:f6:13:
7e:26:9a:2a:ac:6b:08:c8:c5:dd:fc:ee:cf:d7:4c:
4e:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:AA:0F:FF:B5:50:42:C4:5A:13:4C:E7:08:EE:E6:29:2E:82:52:CF
X509v3 Authority Key Identifier:
keyid:14:45:48:9F:DD:50:AA:44:AC:1D:2A:3C:3A:16:6E:06:C6:62:AF:D5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917419E/981EE9860B2111EC8421494DC4F9AE02/FEVIn91QqkSsHSo8OhZuBsZir9U.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FEVIn91QqkSsHSo8OhZuBsZir9U.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917419E/981EE9860B2111EC8421494DC4F9AE02/596A25346CAF11EDAE46E940C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2407:d340:7129::/48
Signature Algorithm: sha256WithRSAEncryption
c1:54:16:27:f0:f0:27:2e:cf:35:33:ba:70:c4:a4:36:94:b0:
bf:22:81:4e:4b:7d:59:4c:ab:c4:c8:6d:23:17:ca:d0:a2:f9:
10:96:ce:91:c1:25:98:95:c7:32:e1:34:aa:55:af:1d:fd:c0:
16:bd:32:c7:04:1d:be:1a:3e:b6:8a:aa:3a:60:69:d8:89:a5:
da:90:76:74:db:66:00:39:7c:06:f4:f4:40:d1:0c:23:29:02:
97:e2:bc:e0:33:ed:03:6e:eb:32:c8:e2:41:aa:bd:f8:eb:45:
98:00:ef:d8:ac:15:e2:3e:80:65:8e:12:1c:5d:f8:b8:d6:09:
d6:03:5c:10:40:0e:26:e0:cb:49:a3:66:d4:8e:ae:28:0a:44:
b3:34:e9:16:3d:c1:1d:77:d1:6d:fc:51:65:33:7e:a0:7e:17:
1f:a5:1d:63:61:0a:59:74:cc:68:c9:59:4d:d5:06:b3:c9:b9:
6c:c3:6d:01:d8:74:48:b6:ef:89:1e:c5:67:cc:eb:5c:21:14:
99:87:70:8f:8e:89:43:17:06:0e:14:ab:34:d6:d6:a3:37:cc:
cf:39:f1:18:53:80:76:02:a4:3f:5c:8b:7d:a8:27:89:d8:e7:
77:f7:5f:2b:84:15:83:07:68:64:89:e2:1c:0e:75:e5:f3:1a:
36:8c:95:ad
-----BEGIN CERTIFICATE-----
MIIFdDCCBFygAwIBAgICA1QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NzQxOUUxMTAvBgNVBAUTKDE0NDU0ODlGREQ1MEFBNDRBQzFEMkEzQzNBMTY2RTA2
QzY2MkFGRDUwHhcNMjIxMTI1MTA1MzEwWhcNMjMxMjAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02MzgwOWU5NS1jMTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA7wGVodoh+LYyL+bwk9Um2oRCvx/sRVfMwqtPaOe94TxUCpKxC8Gh0yAVNC3G
hS/tikhA0oXkL/TYPNG2vRoddJj7T/2JfofcH6gMvC4hq7z9U9Ixd4hRRRgds9G8
vNmF8QcyHzeGgUhsTkGdTLZ+bKIsuI2a7r2wEXZKgpkX4YHsE87Zr8kUNBpMwSTc
U3MikS0pDEOvM9woTslPflnDd+nMen9UOE13cNPV6NR+zr/9EUAidUoepKjY55Ir
KRTLdWuUKl1u8L0JB/HGa/4Bqnfu7+2mIwA6m3fAhjGaBnpVuKouqnRMVJ6vZ9Fo
9hN+JpoqrGsIyMXd/O7P10xOnwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFPyqD/+1
UELEWhNM5wju5ikuglLPMB8GA1UdIwQYMBaAFBRFSJ/dUKpErB0qPDoWbgbGYq/V
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDE5RS85ODFFRTk4NjBC
MjExMUVDODQyMTQ5NERDNEY5QUUwMi9GRVZJbjkxUXFrU3NIU284T2hadUJzWmly
OVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0ZFVkluOTFRcWtTc0hTbzhPaFp1QnNaaXI5VS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NzQxOUUvOTgxRUU5ODYwQjIxMTFFQzg0MjE0OTREQzRGOUFFMDIvNTk2QTI1MzQ2
Q0FGMTFFREFFNDZFOTQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E
EzARMA8EAgACMAkDBwAkB9NAcSkwDQYJKoZIhvcNAQELBQADggEBAMFUFifw8Ccu
zzUzunDEpDaUsL8igU5LfVlMq8TIbSMXytCi+RCWzpHBJZiVxzLhNKpVrx39wBa9
MscEHb4aPraKqjpgadiJpdqQdnTbZgA5fAb09EDRDCMpApfivOAz7QNu6zLI4kGq
vfjrRZgA79isFeI+gGWOEhxd+LjWCdYDXBBADibgy0mjZtSOrigKRLM06RY9wR13
0W38UWUzfqB+Fx+lHWNhCll0zGjJWU3VBrPJuWzDbQHYdEi274kexWfM61whFJmH
cI+OiUMXBg4UqzTW1qM3zM858RhTgHYCpD9ci32oJ4nY53f3XyuEFYMHaGSJ4hwO
deXzGjaMla0=
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:37:45 2025 by rpki-client