Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/53F34A6EACC011EB9DC04F72C4F9AE02.roa
File: 53F34A6EACC011EB9DC04F72C4F9AE02.roa (raw, json)
Hash identifier: cPXbT5BYA38TYh2leaWOBT0ZPRBJTDbTQvaT033DRiQ=
Subject key identifier: A6:C1:98:9E:E3:89:01:1C:E1:24:9E:76:B9:3A:C7:63:ED:7B:C7:CA
Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5
Certificate serial: 07FF
Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/53F34A6EACC011EB9DC04F72C4F9AE02.roa
Signing time: Wed 11 May 2022 10:11:01 +0000
ROA not before: Wed 11 May 2022 10:11:01 +0000
ROA not after: Sun 30 Jul 2023 00:00:00 +0000
asID: 141011
IP address blocks: 2406:840:e240::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2047 (0x7ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5
Validity
Not Before: May 11 10:11:01 2022 GMT
Not After : Jul 30 00:00:00 2023 GMT
Subject: CN=627b8bb5-f184
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:26:e4:ac:94:ee:4f:5f:ea:ea:4b:1b:7e:c3:
7b:69:d7:0e:24:fa:2c:95:a8:82:96:a2:e9:f9:89:
e9:26:60:2f:4a:0a:03:cc:6c:83:83:ff:23:33:b5:
b7:9b:82:e7:33:4c:5a:ea:d7:24:ed:c1:a4:3b:3c:
92:9d:2f:2d:39:0e:60:af:e0:3b:7b:c9:ea:09:9b:
ce:a4:a9:d0:5c:24:18:9a:24:f7:59:14:90:01:47:
cd:c8:77:00:e3:20:f5:19:80:ec:81:b6:6e:1d:0a:
68:ee:8f:6f:2e:ba:44:92:49:66:c6:d4:e3:67:b3:
cd:b0:df:4f:a4:2a:aa:27:05:4e:c4:50:48:73:b0:
ad:19:82:f6:7a:08:66:9d:23:0a:b9:7f:da:8f:2a:
86:ff:3e:aa:68:20:58:ee:4e:93:da:f2:af:58:c6:
f4:e6:d6:e1:6c:8e:ca:06:f7:14:8a:9f:ee:0a:07:
c4:b3:83:dd:88:42:cf:0a:2b:cf:83:45:ee:7a:70:
db:0f:ed:c9:dd:11:54:52:ca:b8:e8:12:9b:8f:59:
34:30:dc:06:78:eb:da:53:21:63:93:2e:4c:8d:3f:
ea:1d:19:9c:33:7b:b7:52:6b:bb:90:39:31:c5:c0:
6b:da:b8:64:f4:d0:6e:83:9a:a4:13:96:61:18:a3:
81:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:C1:98:9E:E3:89:01:1C:E1:24:9E:76:B9:3A:C7:63:ED:7B:C7:CA
X509v3 Authority Key Identifier:
keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/53F34A6EACC011EB9DC04F72C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:840:e240::/44
Signature Algorithm: sha256WithRSAEncryption
03:61:a8:2f:e4:9e:15:a2:17:2d:c9:65:4d:97:ab:27:e3:0e:
a9:43:1c:86:7e:7d:c0:11:77:55:aa:b0:c7:69:c8:49:ab:7f:
7b:4f:1b:1a:24:bd:14:41:a3:4b:43:4c:e4:4c:a2:17:bf:8f:
37:c3:a3:61:f9:83:06:17:89:1a:bb:99:da:db:02:88:63:8e:
66:9f:2a:d1:9f:d1:7c:36:a4:85:86:4e:84:4e:dc:b4:d2:c2:
49:36:91:a8:43:c3:50:b4:2a:21:db:02:86:70:64:6a:38:51:
bd:4c:7d:3c:14:46:50:ea:b3:07:4f:03:c1:77:2c:30:a5:9d:
d8:b2:4c:b8:68:d5:72:91:04:80:84:9b:6f:ea:5a:8d:73:68:
85:82:48:78:fd:6b:09:ef:19:32:7a:91:24:22:ef:9e:da:19:
24:dd:23:c4:4d:ab:6f:65:f6:0c:49:eb:c1:0a:8c:5a:91:23:
b7:83:23:bc:22:2f:d2:b7:7e:7a:e7:2d:09:5e:08:73:e2:df:
38:84:cd:18:31:1d:a9:f9:16:2b:ad:e0:27:23:1c:85:3c:2d:
8d:7a:00:19:6a:0b:63:f4:27:51:5c:d0:ff:32:a1:53:eb:58:
a9:0d:fd:bf:a7:0c:68:88:5f:ac:ac:6d:5a:cb:c9:7e:d9:16:
4c:90:af:9c
-----BEGIN CERTIFICATE-----
MIIFdDCCBFygAwIBAgICB/8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE
RTExQ0ExQTUwHhcNMjIwNTExMTAxMTAxWhcNMjMwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02MjdiOGJiNS1mMTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAxybkrJTuT1/q6ksbfsN7adcOJPoslaiClqLp+YnpJmAvSgoDzGyDg/8jM7W3
m4LnM0xa6tck7cGkOzySnS8tOQ5gr+A7e8nqCZvOpKnQXCQYmiT3WRSQAUfNyHcA
4yD1GYDsgbZuHQpo7o9vLrpEkklmxtTjZ7PNsN9PpCqqJwVOxFBIc7CtGYL2eghm
nSMKuX/ajyqG/z6qaCBY7k6T2vKvWMb05tbhbI7KBvcUip/uCgfEs4PdiELPCivP
g0XuenDbD+3J3RFUUsq46BKbj1k0MNwGeOvaUyFjky5MjT/qHRmcM3u3Umu7kDkx
xcBr2rhk9NBug5qkE5ZhGKOBuwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFKbBmJ7j
iQEc4SSedrk6x2Pte8fKMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2
MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv
YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNTNGMzRBNkVB
Q0MwMTFFQjlEQzA0RjcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E
EzARMA8EAgACMAkDBwQkBghA4kAwDQYJKoZIhvcNAQELBQADggEBAANhqC/knhWi
Fy3JZU2XqyfjDqlDHIZ+fcARd1WqsMdpyEmrf3tPGxokvRRBo0tDTORMohe/jzfD
o2H5gwYXiRq7mdrbAohjjmafKtGf0Xw2pIWGToRO3LTSwkk2kahDw1C0KiHbAoZw
ZGo4Ub1MfTwURlDqswdPA8F3LDClndiyTLho1XKRBICEm2/qWo1zaIWCSHj9awnv
GTJ6kSQi757aGSTdI8RNq29l9gxJ68EKjFqRI7eDI7wiL9K3fnrnLQleCHPi3ziE
zRgxHan5Fiut4CcjHIU8LY16ABlqC2P0J1Fc0P8yoVPrWKkN/b+nDGiIX6ysbVrL
yX7ZFkyQr5w=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:23 2024 by rpki-client on console-ams.rpki-client.org