Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/A481B40ABF0411ECA0454044C4F9AE02.roa
File: A481B40ABF0411ECA0454044C4F9AE02.roa (raw, json)
Hash identifier: pL0b9CLPyb2TaV0lnW+kUiYKZ0QJ8mijZVroepx+EFE=
Subject key identifier: CB:A4:D5:55:B2:D1:1B:AD:0F:05:76:6E:A9:83:6C:02:6E:27:91:D2
Certificate issuer: /CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60
Certificate serial: 0CE0
Authority key identifier: 36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/A481B40ABF0411ECA0454044C4F9AE02.roa
Signing time: Mon 18 Apr 2022 10:45:21 +0000
ROA not before: Mon 18 Apr 2022 10:45:21 +0000
ROA not after: Fri 30 Sep 2022 00:00:00 +0000
asID: 14618
IP address blocks: 2404:f4c0:e666::/47 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3296 (0xce0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60
Validity
Not Before: Apr 18 10:45:21 2022 GMT
Not After : Sep 30 00:00:00 2022 GMT
Subject: CN=625d4140-77b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:89:3a:09:d8:fb:06:5a:1a:ba:cd:b3:21:9a:
97:1e:2c:d2:6e:b5:d3:83:e0:52:dd:8e:fa:38:3d:
10:45:8f:d7:a1:89:12:a2:03:0f:a7:3d:44:a2:5e:
4b:c9:fb:b9:fc:31:32:18:90:d9:0a:7f:9a:c7:b3:
95:2d:3e:c8:66:45:d3:1c:ac:cf:42:6a:86:45:2a:
78:b8:78:9f:89:dd:42:74:8f:f0:ad:67:90:57:d5:
12:58:50:a5:5f:83:92:82:b6:62:f9:d7:3c:8f:1a:
51:ad:92:e9:b9:ec:e4:a8:ca:99:eb:8f:77:b7:2a:
a7:ab:cf:72:81:6b:6b:0b:5d:9a:7a:6e:fb:08:31:
41:f6:13:cd:4f:7a:69:62:2e:45:ea:ac:f9:5e:26:
24:a2:9e:ff:75:7a:98:bb:df:2e:1f:0b:da:1c:2a:
de:1f:36:30:8a:51:fc:c3:da:cb:4b:2d:a3:8c:b7:
91:d9:48:15:15:26:e6:e8:ab:d2:58:ec:a6:39:6a:
be:7d:f9:d9:ad:3a:62:a2:22:a1:71:b2:36:76:b1:
6b:28:f5:91:1c:1e:50:84:f9:8d:41:7f:36:ba:fc:
bd:09:20:ee:f2:5d:bc:83:6e:27:a7:ac:22:48:3a:
df:98:09:79:e5:0f:ce:60:10:11:b4:94:b7:13:d5:
58:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:A4:D5:55:B2:D1:1B:AD:0F:05:76:6E:A9:83:6C:02:6E:27:91:D2
X509v3 Authority Key Identifier:
keyid:36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/A481B40ABF0411ECA0454044C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:f4c0:e666::/47
Signature Algorithm: sha256WithRSAEncryption
77:a7:da:a5:ea:0e:f7:56:d8:16:ef:d1:03:b5:a4:b6:aa:7e:
92:f2:73:63:49:c0:a4:23:67:41:ab:35:e5:fb:c8:98:95:18:
64:88:c7:06:aa:6f:ae:03:78:ba:90:2a:0b:bd:46:00:6d:43:
7d:08:8f:60:96:36:36:20:58:3e:f0:bb:ba:1f:9a:c1:27:4a:
8b:16:df:38:72:c4:b7:cb:e5:08:0d:49:82:f5:84:66:91:8b:
aa:01:b8:da:59:83:93:2a:4b:82:4c:d1:a1:45:71:7f:03:3f:
cc:73:3b:67:21:05:fd:0e:26:74:d4:59:f8:74:23:7e:fe:7b:
0b:33:9c:53:02:4e:b0:2f:83:d8:5f:7c:a4:a8:30:d2:ab:1d:
4f:7a:f5:db:83:99:75:7d:3e:d6:f0:49:77:07:d4:02:ef:85:
35:f3:90:60:89:f6:c3:d2:f5:3f:ed:69:90:d0:b6:f6:f7:00:
62:a6:67:ac:e1:77:7a:96:7c:19:fc:3e:b0:9c:6d:80:a8:0d:
3a:27:b4:59:11:91:c4:27:d8:46:c7:9a:f6:bb:13:96:73:cf:
bb:70:57:d1:87:83:7f:b4:66:7d:dd:c3:e9:58:b8:f0:e3:ef:
f8:f0:d9:f7:d8:f2:a8:1d:b5:d4:4c:64:4a:b7:15:ed:99:c1:
ae:70:e2:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:48 2023 by rpki-client on console-fra.rpki-client.org