Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917419E/981EE9860B2111EC8421494DC4F9AE02/159F6C308DE111ED9456ED3BC4F9AE02.roa
File: 159F6C308DE111ED9456ED3BC4F9AE02.roa (raw, json)
Hash identifier: Ns/1secY5Kg5drJrbPf7T7KEqJOo3P3H8Ng0qiFLacU=
Subject key identifier: 05:06:01:9E:4C:0B:FF:03:EB:18:25:AA:C7:E0:0B:AF:7A:BF:87:09
Certificate issuer: /CN=A917419E/serialNumber=1445489FDD50AA44AC1D2A3C3A166E06C662AFD5
Certificate serial: 0389
Authority key identifier: 14:45:48:9F:DD:50:AA:44:AC:1D:2A:3C:3A:16:6E:06:C6:62:AF:D5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FEVIn91QqkSsHSo8OhZuBsZir9U.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917419E/981EE9860B2111EC8421494DC4F9AE02/159F6C308DE111ED9456ED3BC4F9AE02.roa
Signing time: Fri 06 Jan 2023 16:42:19 +0000
ROA not before: Fri 06 Jan 2023 16:42:19 +0000
ROA not after: Fri 01 Dec 2023 00:00:00 +0000
asID: 6302
IP address blocks: 2407:d340:7800::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 905 (0x389)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917419E/serialNumber=1445489FDD50AA44AC1D2A3C3A166E06C662AFD5
Validity
Not Before: Jan 6 16:42:19 2023 GMT
Not After : Dec 1 00:00:00 2023 GMT
Subject: CN=63b84f6b-9086
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:4f:f4:08:50:27:85:f5:7c:c5:8b:92:cc:06:
66:8e:56:f2:6a:ce:c1:a5:5c:02:29:48:64:2a:9b:
3e:d5:d1:ad:ed:e5:41:eb:73:b6:d9:77:37:e0:27:
26:64:b6:06:18:07:e0:b9:c0:37:79:28:69:77:3f:
55:6d:79:e5:a6:db:79:32:c1:f7:77:93:64:98:28:
ca:de:60:0a:4c:08:5c:58:60:0d:1c:2d:8b:36:89:
b2:54:3a:ae:a5:15:02:bb:d3:ec:fb:d9:8d:da:a4:
46:a0:d1:bb:62:8f:ba:6c:03:69:be:11:9b:4a:50:
28:21:23:e8:10:49:3e:9e:95:64:72:51:c5:b9:f9:
21:0b:2f:86:1d:57:ef:62:3b:31:6d:6a:13:e5:ac:
07:67:24:8e:8d:f4:31:cd:4f:4f:4e:7b:fd:aa:4c:
54:e1:0a:42:ae:e4:5e:ed:42:4e:13:40:d7:9d:82:
06:5f:08:6b:9b:8b:82:c9:0a:6d:40:f1:f6:60:02:
9a:28:ed:75:b2:0c:ad:fc:67:20:49:2f:f5:60:4c:
dd:5e:26:ee:5e:1d:51:f9:44:25:34:80:66:ad:92:
43:36:79:49:f9:1e:6d:05:6e:bf:2f:66:e5:8e:d3:
a2:e1:00:a7:a9:d2:ae:00:b7:6a:3c:8b:f9:b9:8b:
1a:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:06:01:9E:4C:0B:FF:03:EB:18:25:AA:C7:E0:0B:AF:7A:BF:87:09
X509v3 Authority Key Identifier:
keyid:14:45:48:9F:DD:50:AA:44:AC:1D:2A:3C:3A:16:6E:06:C6:62:AF:D5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917419E/981EE9860B2111EC8421494DC4F9AE02/FEVIn91QqkSsHSo8OhZuBsZir9U.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FEVIn91QqkSsHSo8OhZuBsZir9U.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917419E/981EE9860B2111EC8421494DC4F9AE02/159F6C308DE111ED9456ED3BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2407:d340:7800::/40
Signature Algorithm: sha256WithRSAEncryption
4b:e0:bf:e4:e2:b8:c5:f1:8c:3d:ff:b1:95:ec:a3:e3:9b:f7:
76:d7:54:cb:a3:59:21:fc:32:3c:81:e2:2b:1a:20:3d:85:6f:
42:5a:63:1d:e4:d6:8c:2e:60:c5:76:4b:fd:f4:37:fc:07:dd:
dd:d0:45:6d:9f:3d:71:a5:89:31:b0:f8:5a:9b:84:3c:30:64:
c2:c5:b8:4b:c4:f9:21:ef:92:92:03:b2:7e:05:d0:ac:df:7b:
36:cf:d5:36:a2:b2:0e:95:09:d3:5e:eb:bd:6c:ea:ad:f7:6d:
af:ca:30:06:c1:a3:a9:21:13:73:30:c9:e9:ca:76:00:8c:75:
1a:4e:67:04:1a:c6:a3:d3:13:3e:6f:df:a5:88:41:46:da:60:
63:84:25:2c:6e:b6:c2:6d:14:c2:76:6e:87:e0:1e:28:21:96:
fb:d6:e1:2a:95:2a:cc:c0:6d:3f:54:42:5c:4a:b3:27:ee:4a:
6d:24:3d:6b:fb:34:a0:75:ab:f4:72:20:30:26:d3:4f:74:c3:
7d:19:f7:65:0e:1c:0f:ea:37:23:75:57:7a:ba:e0:5f:52:07:
b0:e6:14:6e:a0:bb:e0:95:7b:d7:bb:4f:e0:a7:f9:3f:74:db:
a3:4b:55:d8:08:d8:9d:e0:8b:e8:94:c5:87:a6:51:ac:50:7a:
e8:9d:9f:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:35:40 2023 by rpki-client on console.sobornost.net