Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD125/7A142D00D95E11E787A1A766C4F9AE02/4898BB6CFA6811E7903A4C4AC4F9AE02.roa
File: 4898BB6CFA6811E7903A4C4AC4F9AE02.roa (raw, json)
Hash identifier: BdEuWC1WYaaXSyROuIrv6OCJmPTqmREvb3chFG9mkds=
Subject key identifier: 3D:3D:FB:8D:03:B5:20:A5:B0:AE:29:D9:77:CD:79:61:25:C0:9A:E8
Certificate issuer: /CN=A91DD125/serialNumber=CE9056B4C65DE3857D4D0E1DB0023D60B6F7D30C
Certificate serial: 1608
Authority key identifier: CE:90:56:B4:C6:5D:E3:85:7D:4D:0E:1D:B0:02:3D:60:B6:F7:D3:0C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zpBWtMZd44V9TQ4dsAI9YLb30ww.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DD125/7A142D00D95E11E787A1A766C4F9AE02/4898BB6CFA6811E7903A4C4AC4F9AE02.roa
Signing time: Tue 14 Feb 2023 17:44:27 +0000
ROA not before: Tue 14 Feb 2023 17:44:27 +0000
ROA not after: Sun 31 Mar 2024 00:00:00 +0000
asID: 137411
IP address blocks: 2402:28c0:fff9::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5640 (0x1608)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DD125/serialNumber=CE9056B4C65DE3857D4D0E1DB0023D60B6F7D30C
Validity
Not Before: Feb 14 17:44:27 2023 GMT
Not After : Mar 31 00:00:00 2024 GMT
Subject: CN=63ebc87b-a18c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:d5:d5:9c:04:1d:d4:74:aa:de:d8:02:6c:75:
cd:12:a6:00:4f:6d:63:77:42:15:44:70:d9:44:29:
e3:2d:a8:23:c4:c1:1e:d6:d5:48:c9:9a:c6:28:2b:
91:23:b0:06:5a:5f:28:02:0a:ec:22:3f:3e:e2:33:
77:44:91:8f:d9:df:dc:07:a2:08:93:90:81:55:a3:
d7:b0:f7:27:63:72:43:fc:17:7b:6a:6c:04:00:f7:
da:21:49:b0:94:2a:19:86:46:43:3e:c6:47:be:d6:
1c:9d:24:03:40:68:e3:37:41:ab:86:34:b4:44:f6:
67:4f:4d:90:ec:c6:55:d7:24:f9:f9:70:80:08:5e:
f1:3c:d3:06:12:33:39:02:72:6d:88:ea:0c:49:7b:
01:d3:d0:f4:d5:60:e3:ca:c6:57:98:15:f6:fc:f1:
bb:cc:7f:84:af:7f:98:36:f5:29:6f:94:16:bd:83:
8f:bd:3d:73:a6:62:95:56:1e:5a:2b:c8:0b:98:88:
db:a8:95:44:05:7e:4d:05:16:5c:5b:b4:1c:0f:11:
74:91:9b:76:08:64:46:5f:02:39:93:3e:09:3e:07:
5b:95:9d:94:33:bd:cb:71:30:d6:aa:09:a6:f6:9c:
aa:02:c1:8d:88:d6:76:82:83:ae:58:8f:19:89:9a:
28:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:3D:FB:8D:03:B5:20:A5:B0:AE:29:D9:77:CD:79:61:25:C0:9A:E8
X509v3 Authority Key Identifier:
keyid:CE:90:56:B4:C6:5D:E3:85:7D:4D:0E:1D:B0:02:3D:60:B6:F7:D3:0C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DD125/7A142D00D95E11E787A1A766C4F9AE02/zpBWtMZd44V9TQ4dsAI9YLb30ww.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zpBWtMZd44V9TQ4dsAI9YLb30ww.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD125/7A142D00D95E11E787A1A766C4F9AE02/4898BB6CFA6811E7903A4C4AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2402:28c0:fff9::/48
Signature Algorithm: sha256WithRSAEncryption
6d:bd:41:a7:46:7a:c7:9a:d2:19:eb:62:d9:83:38:fc:b0:4a:
0f:c4:70:d1:73:fa:98:5a:b4:73:55:41:05:58:ba:26:ad:e3:
ff:5a:49:2b:5c:d9:d8:05:33:aa:25:87:5c:bd:73:b2:54:8b:
f7:b0:3c:d7:da:6d:2d:9a:1d:4b:23:a7:6f:0f:13:97:76:b6:
51:06:58:59:f9:6e:ce:6c:18:f0:65:90:c0:7f:9b:47:53:e8:
9a:2a:e6:e0:c0:e7:5e:bc:80:cc:fe:fd:05:1b:2a:02:84:9f:
e2:24:9f:dc:93:34:8f:7b:6d:02:06:58:4d:dc:7b:98:d1:07:
10:3d:62:bb:08:05:61:88:26:04:28:51:7c:16:20:3b:71:94:
77:f7:62:9e:b1:2c:20:eb:ac:9d:92:fa:63:12:10:d5:2e:2f:
64:b7:e8:34:7c:30:f0:28:05:9d:de:f1:dc:4f:05:83:bc:27:
45:63:1d:bc:a3:62:8f:0c:48:4b:d9:ab:ce:74:74:2a:42:4a:
dc:d9:44:84:43:77:31:51:c2:e0:5e:f6:22:97:e0:16:89:e0:
f0:95:ad:52:75:6f:a8:e6:fd:8b:8b:39:97:8c:cf:2a:a4:22:
5f:8d:c3:0e:7d:ea:ac:4c:0c:f3:33:0d:24:93:b7:2a:bc:6c:
e2:32:88:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:43 2024 by rpki-client on console-fra.rpki-client.org