Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/740B0596CD0C11EB99676E39C4F9AE02.roa
File: 740B0596CD0C11EB99676E39C4F9AE02.roa (raw, json)
Hash identifier: mRGLK8Hxxtv6SOCxs8giTp9N38rA07x9G446OdVr28w=
Subject key identifier: A3:32:19:26:D5:09:64:4D:60:B6:2A:F4:55:26:0A:B1:0A:1D:C3:29
Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5
Certificate serial: 04E7
Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/740B0596CD0C11EB99676E39C4F9AE02.roa
Signing time: Mon 14 Jun 2021 12:31:33 +0000
ROA not before: Mon 14 Jun 2021 12:31:33 +0000
ROA not after: Sat 30 Jul 2022 00:00:00 +0000
asID: 208266
IP address blocks: 2406:840:d002::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1255 (0x4e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5
Validity
Not Before: Jun 14 12:31:33 2021 GMT
Not After : Jul 30 00:00:00 2022 GMT
Subject: CN=60c74c25-262b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:a1:13:02:68:39:70:76:4d:65:6a:73:22:e9:
ca:b7:68:a5:96:91:33:7a:ec:20:bd:56:dc:54:3b:
e6:0f:81:2a:99:ce:8d:44:1e:ae:fd:33:28:67:4a:
ae:8a:00:12:ab:39:db:f4:a6:90:19:fa:60:b6:9e:
93:9c:d3:cb:77:21:d7:b9:a7:d9:7b:26:6e:51:e7:
71:fe:df:41:fe:2d:37:92:89:44:10:3e:2e:ff:cb:
37:85:d7:db:a4:a0:25:49:7b:8e:2f:7b:31:ca:98:
da:c5:b3:b5:79:df:c9:62:e2:45:63:eb:1f:fa:ec:
b3:f4:e3:ef:e6:c0:b5:61:c0:6b:e8:3d:d0:83:7d:
75:12:9b:6e:d1:71:e2:59:c8:16:2f:84:32:4e:f6:
2e:48:75:de:c3:36:16:5b:82:9f:14:71:01:b8:e0:
81:17:12:75:0a:52:df:ed:8d:25:3f:b9:98:b7:ba:
47:a7:40:a3:95:16:9f:40:fd:38:0b:03:c1:2f:c2:
63:f0:a0:e2:b8:01:c1:2c:3e:bb:44:42:4c:bd:14:
2d:08:c8:50:5b:56:ce:d5:04:de:5a:2c:0a:1c:04:
03:31:4f:a1:13:61:e1:d3:b5:d6:0b:de:a2:96:d9:
fe:77:81:4c:6a:57:98:5a:9d:cc:9e:72:db:b1:79:
82:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:32:19:26:D5:09:64:4D:60:B6:2A:F4:55:26:0A:B1:0A:1D:C3:29
X509v3 Authority Key Identifier:
keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/740B0596CD0C11EB99676E39C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:840:d002::/48
Signature Algorithm: sha256WithRSAEncryption
6d:33:2a:7d:76:24:02:b4:b6:96:7a:b3:ba:1d:d8:5a:21:1d:
aa:3f:76:2a:8e:1c:e9:8e:38:6a:88:d5:d3:37:d4:c1:3f:1b:
20:f3:58:8b:06:a4:ea:ca:a5:66:5d:e3:aa:46:b1:be:7b:4d:
24:ec:bc:33:32:7e:80:71:32:83:2f:2c:38:a4:f9:82:b2:6e:
11:a5:48:4e:ef:56:d4:e2:14:95:56:82:32:ea:84:9f:90:02:
d1:54:a8:b7:83:9a:74:89:de:f3:4e:e9:f9:38:7e:60:5f:39:
06:7f:c0:67:c1:d3:32:d3:43:6c:c9:43:13:19:9d:fb:b8:5d:
87:d0:9d:1c:55:89:70:f6:5b:4d:4b:94:4f:a5:1d:98:c4:4a:
d4:25:d3:12:1d:44:99:1e:c9:6d:1d:dd:6c:ed:19:d2:95:69:
f7:5d:13:a8:c8:3e:32:51:ea:15:7f:aa:17:ef:62:e6:28:29:
04:21:83:9a:7f:6b:cd:f2:0f:75:33:02:65:ac:1f:c4:92:b9:
48:19:27:bf:db:86:d3:7c:d1:6e:cd:80:bc:39:c4:35:45:3d:
b7:26:d0:b6:3b:ff:65:a6:95:f3:18:63:ab:0a:20:93:56:57:
c1:9b:c1:ed:59:11:e8:73:fb:cf:28:d1:0a:ad:05:d6:58:b4:
01:6b:eb:53
-----BEGIN CERTIFICATE-----
MIIFdDCCBFygAwIBAgICBOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE
RTExQ0ExQTUwHhcNMjEwNjE0MTIzMTMzWhcNMjIwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02MGM3NGMyNS0yNjJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA4KETAmg5cHZNZWpzIunKt2illpEzeuwgvVbcVDvmD4Eqmc6NRB6u/TMoZ0qu
igASqznb9KaQGfpgtp6TnNPLdyHXuafZeyZuUedx/t9B/i03kolEED4u/8s3hdfb
pKAlSXuOL3sxypjaxbO1ed/JYuJFY+sf+uyz9OPv5sC1YcBr6D3Qg311Eptu0XHi
WcgWL4QyTvYuSHXewzYWW4KfFHEBuOCBFxJ1ClLf7Y0lP7mYt7pHp0CjlRafQP04
CwPBL8Jj8KDiuAHBLD67REJMvRQtCMhQW1bO1QTeWiwKHAQDMU+hE2Hh07XWC96i
ltn+d4FMaleYWp3MnnLbsXmCqwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFKMyGSbV
CWRNYLYq9FUmCrEKHcMpMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2
MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv
YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNzQwQjA1OTZD
RDBDMTFFQjk5Njc2RTM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E
EzARMA8EAgACMAkDBwAkBghA0AIwDQYJKoZIhvcNAQELBQADggEBAG0zKn12JAK0
tpZ6s7od2FohHao/diqOHOmOOGqI1dM31ME/GyDzWIsGpOrKpWZd46pGsb57TSTs
vDMyfoBxMoMvLDik+YKybhGlSE7vVtTiFJVWgjLqhJ+QAtFUqLeDmnSJ3vNO6fk4
fmBfOQZ/wGfB0zLTQ2zJQxMZnfu4XYfQnRxViXD2W01LlE+lHZjEStQl0xIdRJke
yW0d3WztGdKVafddE6jIPjJR6hV/qhfvYuYoKQQhg5p/a83yD3UzAmWsH8SSuUgZ
J7/bhtN80W7NgLw5xDVFPbcm0LY7/2WmlfMYY6sKIJNWV8Gbwe1ZEehz+88o0Qqt
BdZYtAFr61M=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:45 2023 by rpki-client on console-ams.rpki-client.org