Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/1A42FC665A6F11ED847D743CC4F9AE02.roa
File: 1A42FC665A6F11ED847D743CC4F9AE02.roa (raw, json)
Hash identifier: w4sLQIy7SwRJXQIxlgJRk6CSGDm20pyn2TovbIvK3oc=
Subject key identifier: FB:60:6D:13:65:F0:B4:F7:DE:45:5B:0E:DA:76:D7:90:96:B5:65:C3
Certificate issuer: /CN=A91C0BDE/serialNumber=A4B50BECD8BBA285587128D5919283DBE1690918
Certificate serial: 06DF
Authority key identifier: A4:B5:0B:EC:D8:BB:A2:85:58:71:28:D5:91:92:83:DB:E1:69:09:18
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/1A42FC665A6F11ED847D743CC4F9AE02.roa
Signing time: Wed 02 Nov 2022 05:27:55 +0000
ROA not before: Wed 02 Nov 2022 05:27:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 138622
IP address blocks: 2405:eec0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1759 (0x6df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C0BDE/serialNumber=A4B50BECD8BBA285587128D5919283DBE1690918
Validity
Not Before: Nov 2 05:27:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6361ffdb-7fd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a8:a9:8d:7a:a5:2a:1a:e7:21:ac:4f:5f:ef:
4e:8f:8f:96:8f:63:a7:94:ca:78:c4:98:53:de:6d:
27:1d:6a:9b:7a:11:fd:b3:05:0b:d0:98:02:6f:e2:
ed:02:e7:2d:75:89:9e:93:ed:34:2c:32:0b:4a:87:
7d:d5:0e:6a:ee:c2:34:3b:f8:ea:fa:92:02:df:79:
a5:77:7c:64:f4:d2:e7:ab:70:b6:0b:ce:d8:f8:9d:
06:7f:d1:9a:b7:35:22:d1:69:35:76:64:63:8e:35:
88:3d:e2:6f:fb:f9:a4:32:c5:56:41:11:e2:da:ab:
96:eb:2b:f8:d0:22:8d:86:13:a9:94:43:7b:2d:0c:
79:3e:b6:d4:4a:eb:86:d7:5e:d0:b9:f0:c0:0d:09:
bc:9e:d3:48:36:8d:bb:43:88:eb:32:79:f7:fc:d6:
8f:a3:12:7f:86:22:1e:d9:9e:71:1b:4e:a9:76:8a:
7f:13:b4:f4:59:91:69:fb:a4:3a:3c:3a:9d:35:ff:
15:f3:11:07:e4:2f:4c:3d:0c:cf:07:bc:d2:4e:66:
7c:c1:42:1e:c6:3b:5a:72:cc:fc:08:78:f1:2f:18:
30:2c:c8:8c:d0:c7:30:e3:42:83:cb:46:44:bb:88:
cb:3a:61:24:dc:8e:13:19:af:e9:8f:e3:b2:c2:b8:
4e:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:60:6D:13:65:F0:B4:F7:DE:45:5B:0E:DA:76:D7:90:96:B5:65:C3
X509v3 Authority Key Identifier:
keyid:A4:B5:0B:EC:D8:BB:A2:85:58:71:28:D5:91:92:83:DB:E1:69:09:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/1A42FC665A6F11ED847D743CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:eec0::/32
Signature Algorithm: sha256WithRSAEncryption
9e:bd:24:38:d6:16:61:c6:19:ad:0f:3a:54:53:a7:08:8e:2f:
4e:31:e1:7e:6c:2f:ce:34:8d:79:ef:7e:74:fd:69:77:20:e4:
80:8a:d7:64:d9:3f:d5:8f:19:c6:22:be:36:c9:cc:0a:7b:8f:
f5:10:43:6a:c7:72:4d:09:03:a5:4b:f0:61:52:9c:c6:12:f3:
a5:ca:91:6f:6c:c3:72:f3:0f:7b:30:22:3c:b5:15:aa:88:a0:
ba:81:cf:85:0b:5d:70:41:82:01:a1:a0:9a:87:b4:34:c3:9f:
d9:d3:c9:96:82:50:96:43:bd:34:d4:f0:76:78:e2:15:c9:da:
14:f4:0b:26:2d:88:0d:2f:7a:f6:0d:19:8a:55:03:09:7d:11:
b0:74:e1:70:65:c2:6d:05:ca:e1:b3:86:d5:8e:45:a9:06:cb:
69:d5:3b:90:93:82:f6:bd:b2:25:39:81:82:5f:dc:0c:17:b6:
af:4a:f1:dd:d5:d1:89:31:fc:64:16:cc:c0:46:33:a3:3a:f0:
e7:d0:c0:c9:f1:5e:3e:78:58:70:2e:c5:dd:f6:32:ee:cb:60:
9f:d6:9c:c7:02:40:e5:5a:63:36:34:09:3e:4d:83:da:17:ec:
aa:08:95:4c:de:98:1d:c9:4e:33:4b:20:63:7a:a7:1b:0a:fe:
9e:ba:af:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:06 2023 by rpki-client on console-fra.rpki-client.org