Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917419E/981EE9860B2111EC8421494DC4F9AE02/A00CD0A8BB2A11ED893CD968C4F9AE02.roa
File: A00CD0A8BB2A11ED893CD968C4F9AE02.roa (raw, json)
Hash identifier: 5sM4yEzvgnbkTkMRlQcK9JRt+nCUS6dvirox43KjgVU=
Subject key identifier: FF:43:3A:2C:30:FA:97:51:2D:9D:27:A2:DB:A4:BF:60:9F:D5:AC:9E
Certificate issuer: /CN=A917419E/serialNumber=1445489FDD50AA44AC1D2A3C3A166E06C662AFD5
Certificate serial: 03C5
Authority key identifier: 14:45:48:9F:DD:50:AA:44:AC:1D:2A:3C:3A:16:6E:06:C6:62:AF:D5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FEVIn91QqkSsHSo8OhZuBsZir9U.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917419E/981EE9860B2111EC8421494DC4F9AE02/A00CD0A8BB2A11ED893CD968C4F9AE02.roa
Signing time: Sun 05 Mar 2023 07:52:07 +0000
ROA not before: Sun 05 Mar 2023 07:52:07 +0000
ROA not after: Fri 01 Dec 2023 00:00:00 +0000
asID: 7721
IP address blocks: 2407:d340:8900::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 965 (0x3c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917419E, serialNumber=1445489FDD50AA44AC1D2A3C3A166E06C662AFD5
Validity
Not Before: Mar 5 07:52:07 2023 GMT
Not After : Dec 1 00:00:00 2023 GMT
Subject: CN=64044a26-eb02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:cd:6c:46:93:fe:90:75:11:a2:b7:59:00:ca:
23:dc:dd:bf:15:3e:78:18:b0:3b:30:21:99:38:52:
b3:a0:4f:7f:1e:d1:a7:1c:3e:a7:c4:69:e6:35:1b:
7a:f1:4f:23:d8:48:3d:e9:75:93:25:35:6d:c8:c6:
4b:57:7d:4f:eb:73:89:ca:db:80:90:a0:ef:53:f6:
73:6f:49:b0:db:dd:ff:3a:32:02:8b:6a:dd:d3:2f:
ae:47:2f:dd:9c:b3:1f:4e:df:97:a8:94:02:a3:d2:
6f:bd:c3:06:2d:44:f4:ce:2e:80:28:c9:0c:4f:20:
a4:eb:ef:2f:ba:82:19:51:84:a6:31:87:1a:be:f6:
8e:c8:22:97:a5:89:18:6d:51:7d:ad:b2:e2:b4:e0:
37:bd:02:52:46:b2:d0:0a:fe:50:e9:78:8c:e1:8a:
68:36:0c:1a:ad:46:25:c0:21:c8:0f:93:07:ea:7a:
b0:c3:7d:14:ad:74:5a:09:d8:e2:ce:81:7a:82:55:
db:d3:e3:f2:ef:2b:8f:52:e8:b6:27:0c:4f:c8:a8:
ef:ea:87:fc:33:63:f3:fb:32:3a:3b:90:31:5d:22:
0e:bb:53:d1:5e:53:9e:20:98:7d:79:d2:22:a8:e1:
9d:08:6e:66:f9:6f:a4:68:09:fc:ec:f7:4f:d2:6d:
02:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:43:3A:2C:30:FA:97:51:2D:9D:27:A2:DB:A4:BF:60:9F:D5:AC:9E
X509v3 Authority Key Identifier:
keyid:14:45:48:9F:DD:50:AA:44:AC:1D:2A:3C:3A:16:6E:06:C6:62:AF:D5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917419E/981EE9860B2111EC8421494DC4F9AE02/FEVIn91QqkSsHSo8OhZuBsZir9U.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FEVIn91QqkSsHSo8OhZuBsZir9U.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917419E/981EE9860B2111EC8421494DC4F9AE02/A00CD0A8BB2A11ED893CD968C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2407:d340:8900::/44
Signature Algorithm: sha256WithRSAEncryption
02:9b:1e:0a:52:5f:29:09:ef:75:fc:ea:97:8b:12:98:c6:22:
74:be:ca:aa:4f:32:26:b8:ec:a7:35:73:1d:24:37:be:58:67:
b8:ce:27:48:44:c5:06:39:66:84:43:0e:b2:af:db:e3:9e:bd:
be:de:bc:b1:d2:1c:12:da:78:fa:5f:91:70:ec:36:07:49:46:
39:be:0d:00:14:19:19:23:74:cb:81:41:bd:2b:47:7f:3d:06:
ab:1e:2f:4a:4f:3f:e4:80:85:cd:98:29:52:ba:c5:9b:1c:82:
eb:0e:15:aa:77:5a:6f:78:9e:50:f0:bc:27:a6:fc:fd:f1:0f:
73:dc:06:95:2d:e5:7f:90:68:a0:1f:cc:a0:56:5b:7d:4c:62:
d9:60:f9:54:0d:71:b7:22:e3:c9:6f:d1:43:9f:9d:38:6d:f0:
95:06:62:7e:a2:b2:a1:e3:9e:b5:a4:50:66:04:da:d9:c6:3f:
ef:b1:d2:a1:2b:99:4b:92:b3:b8:65:92:72:8b:e6:f1:17:8b:
61:32:ff:e5:e8:49:10:52:08:f1:58:89:de:86:a4:30:0c:64:
09:32:96:01:91:9f:5d:b5:2a:be:60:57:b0:0b:f3:b1:29:f5:
71:e3:2c:5d:7a:0f:25:92:d7:be:5c:7f:fd:53:a6:9c:7d:94:
aa:57:27:77
-----BEGIN CERTIFICATE-----
MIIFdDCCBFygAwIBAgICA8UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NzQxOUUxMTAvBgNVBAUTKDE0NDU0ODlGREQ1MEFBNDRBQzFEMkEzQzNBMTY2RTA2
QzY2MkFGRDUwHhcNMjMwMzA1MDc1MjA3WhcNMjMxMjAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NDA0NGEyNi1lYjAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAyc1sRpP+kHURordZAMoj3N2/FT54GLA7MCGZOFKzoE9/HtGnHD6nxGnmNRt6
8U8j2Eg96XWTJTVtyMZLV31P63OJytuAkKDvU/Zzb0mw293/OjICi2rd0y+uRy/d
nLMfTt+XqJQCo9JvvcMGLUT0zi6AKMkMTyCk6+8vuoIZUYSmMYcavvaOyCKXpYkY
bVF9rbLitOA3vQJSRrLQCv5Q6XiM4YpoNgwarUYlwCHID5MH6nqww30UrXRaCdji
zoF6glXb0+Py7yuPUui2JwxPyKjv6of8M2Pz+zI6O5AxXSIOu1PRXlOeIJh9edIi
qOGdCG5m+W+kaAn87PdP0m0CdQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFP9DOiww
+pdRLZ0notukv2Cf1ayeMB8GA1UdIwQYMBaAFBRFSJ/dUKpErB0qPDoWbgbGYq/V
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDE5RS85ODFFRTk4NjBC
MjExMUVDODQyMTQ5NERDNEY5QUUwMi9GRVZJbjkxUXFrU3NIU284T2hadUJzWmly
OVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0ZFVkluOTFRcWtTc0hTbzhPaFp1QnNaaXI5VS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NzQxOUUvOTgxRUU5ODYwQjIxMTFFQzg0MjE0OTREQzRGOUFFMDIvQTAwQ0QwQThC
QjJBMTFFRDg5M0NEOTY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E
EzARMA8EAgACMAkDBwQkB9NAiQAwDQYJKoZIhvcNAQELBQADggEBAAKbHgpSXykJ
73X86peLEpjGInS+yqpPMia47Kc1cx0kN75YZ7jOJ0hExQY5ZoRDDrKv2+Oevb7e
vLHSHBLaePpfkXDsNgdJRjm+DQAUGRkjdMuBQb0rR389BqseL0pPP+SAhc2YKVK6
xZscgusOFap3Wm94nlDwvCem/P3xD3PcBpUt5X+QaKAfzKBWW31MYtlg+VQNcbci
48lv0UOfnTht8JUGYn6isqHjnrWkUGYE2tnGP++x0qErmUuSs7hlknKL5vEXi2Ey
/+XoSRBSCPFYid6GpDAMZAkylgGRn121Kr5gV7AL87Ep9XHjLF16DyWS175cf/1T
ppx9lKpXJ3c=
-----END CERTIFICATE-----
Generated at Sat Apr 26 09:05:18 2025 by rpki-client