Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/A5744DDCBF0411ECA0454044C4F9AE02.roa
File: A5744DDCBF0411ECA0454044C4F9AE02.roa (raw, json)
Hash identifier: Ji4F5oww0xfnxD6YNWHLV0EnVDCA0E8TiNMag5jGUq4=
Subject key identifier: C5:A0:AA:0A:78:85:AE:21:6A:A3:EA:89:11:1B:C3:DA:66:BD:82:9F
Certificate issuer: /CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60
Certificate serial: 0CE1
Authority key identifier: 36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/A5744DDCBF0411ECA0454044C4F9AE02.roa
Signing time: Mon 18 Apr 2022 10:45:22 +0000
ROA not before: Mon 18 Apr 2022 10:45:22 +0000
ROA not after: Fri 30 Sep 2022 00:00:00 +0000
asID: 149475
IP address blocks: 2404:f4c0:e666::/47 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3297 (0xce1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60
Validity
Not Before: Apr 18 10:45:22 2022 GMT
Not After : Sep 30 00:00:00 2022 GMT
Subject: CN=625d4142-68ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:cc:fe:64:b6:3a:4e:8a:79:5f:26:89:bc:b6:
61:c0:75:b4:77:6b:6c:61:ae:27:42:5b:d7:f3:7c:
a9:0a:93:3c:47:d7:71:9c:d8:0e:c8:0f:7b:29:2c:
19:0c:bb:22:ac:20:1e:90:83:75:5f:b9:15:16:68:
f7:ae:f9:ef:7c:24:eb:ad:f6:f8:68:e8:88:0e:10:
57:f3:7b:02:27:84:24:06:7c:8c:a2:a9:81:aa:6b:
17:b4:23:77:8e:f6:e9:28:db:16:9c:7e:ff:f2:a3:
4c:7c:5a:c6:81:61:0d:9e:2f:9b:d5:8a:2b:72:2e:
a8:a8:01:74:eb:ec:46:33:74:2c:30:1a:d3:c4:6f:
21:15:39:bf:cd:4b:63:3e:db:ab:d1:42:90:44:81:
80:78:37:7a:9c:98:70:f6:49:cd:24:85:69:52:b5:
70:09:51:1a:3a:9e:c8:e2:79:81:ce:d8:93:fc:51:
0f:c0:a2:e2:cd:3b:d0:8c:94:59:9d:8b:01:1f:0c:
20:7a:94:a0:c2:c4:fd:4e:f3:51:ff:40:ac:b0:b2:
bc:53:0f:31:5b:d7:b5:12:af:32:0d:93:ed:e9:a0:
c3:da:d3:cb:0d:7e:5c:82:ec:18:71:0a:3f:61:8b:
87:c5:0a:0e:0a:e1:bf:a0:a1:74:b8:80:e4:ed:e8:
ef:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:A0:AA:0A:78:85:AE:21:6A:A3:EA:89:11:1B:C3:DA:66:BD:82:9F
X509v3 Authority Key Identifier:
keyid:36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/A5744DDCBF0411ECA0454044C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:f4c0:e666::/47
Signature Algorithm: sha256WithRSAEncryption
31:93:e1:3b:ca:27:a9:61:7e:8a:c5:8b:b6:2c:a1:40:4e:28:
c3:0c:6f:bb:d9:1b:df:f2:ca:ce:9b:23:9b:b2:8f:fa:da:f7:
fe:a9:3e:31:36:9e:31:d3:e0:92:e3:0b:17:61:e8:e2:6d:24:
66:20:28:2d:1a:39:fb:88:9b:04:d1:d3:23:e4:e0:a5:13:dc:
b4:81:9b:ca:56:5e:79:88:f9:cc:fa:42:65:0b:ac:b3:6b:a6:
c7:01:55:1d:8b:47:5d:3c:b3:24:2f:84:c1:5c:55:8e:79:4f:
64:86:af:80:f9:e9:63:e0:29:d1:eb:41:a9:e6:e2:31:0e:0a:
8e:dd:8a:2d:13:26:3b:d7:55:f9:34:06:39:cd:ef:d4:9e:97:
57:a8:24:0e:9a:45:44:a8:56:4f:03:e9:e3:16:6f:4c:60:96:
72:bc:21:eb:8e:b1:bb:7e:c9:bf:7a:20:a8:bb:9a:00:34:3a:
71:ff:62:a7:69:07:a9:72:05:20:71:cc:96:ad:f1:fc:95:40:
e1:d0:7d:7d:9b:ce:ce:1f:9f:ea:f1:20:60:40:db:c7:13:ae:
7b:85:ab:38:99:34:ce:fe:c5:11:6c:7a:8b:22:b9:f3:a5:ae:
1a:96:59:52:da:89:bf:c1:55:a2:ff:6f:f0:a5:0f:93:dc:28:
40:71:0c:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:48 2023 by rpki-client on console-fra.rpki-client.org