Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/A866D39E1E0211E9862ECE3FC4F9AE02.roa
File: A866D39E1E0211E9862ECE3FC4F9AE02.roa (raw, json)
Hash identifier: r+aLAhJLTorAFRMXX0cIIHehkPoMYl6QnJ33phrSIqA=
Subject key identifier: 53:9D:23:6D:CB:8C:8B:D7:D9:7A:3A:7B:42:5B:BD:5B:C9:C0:5E:0C
Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C
Certificate serial: 36AD
Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/A866D39E1E0211E9862ECE3FC4F9AE02.roa
Signing time: Sat 08 Jul 2023 14:30:58 +0000
ROA not before: Sat 08 Jul 2023 14:30:58 +0000
ROA not after: Mon 30 Sep 2024 00:00:00 +0000
asID: 24497
IP address blocks: 171.102.34.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 06 Feb 2024 03:02:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13997 (0x36ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C
Validity
Not Before: Jul 8 14:30:58 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=64a97321-b974
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:20:41:ea:c5:2c:4e:69:cb:21:d4:a4:68:4c:
0b:3b:78:a4:59:19:ad:53:74:83:ac:18:6c:56:7b:
72:73:e5:68:d0:cb:5e:e0:cd:2f:88:d9:6c:39:de:
17:a3:39:a0:a8:db:83:c0:f0:c4:38:48:a6:b6:53:
2f:a7:50:fe:06:69:59:42:b2:c8:57:ac:65:29:f1:
9b:be:52:35:3c:12:39:02:97:77:1a:87:98:e8:ab:
d6:f2:b7:c3:93:15:58:00:2e:68:52:3c:5f:8c:40:
ed:93:7a:9e:8e:72:49:58:ce:02:24:d9:2e:7c:de:
a7:02:a5:7d:c9:29:20:90:73:58:c0:65:7b:2f:99:
34:62:6d:90:72:7e:38:49:93:09:5c:52:f8:fa:fc:
72:ac:c9:1f:94:3f:49:69:56:ab:2f:44:04:36:7f:
af:14:38:c2:9e:ee:24:5c:b4:48:bc:ba:92:99:f7:
cf:d3:8b:8d:85:24:b5:6f:5a:66:52:bb:1f:61:e1:
fe:9a:66:d9:fb:2d:53:03:1d:48:89:f7:63:fa:19:
c5:2a:f0:ef:9e:38:cb:93:35:92:22:9c:52:c6:c5:
00:ba:78:29:03:fd:d0:74:2e:52:3a:bd:78:50:1a:
46:71:74:b8:32:bd:5d:dc:3c:2f:b8:40:ba:7c:b7:
91:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:9D:23:6D:CB:8C:8B:D7:D9:7A:3A:7B:42:5B:BD:5B:C9:C0:5E:0C
X509v3 Authority Key Identifier:
keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/A866D39E1E0211E9862ECE3FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
171.102.34.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:f1:3a:9b:ce:02:c2:7a:98:39:48:b1:d4:ba:f8:c4:1e:25:
a0:71:59:af:ec:cb:18:21:83:87:93:ad:ec:11:a9:64:41:76:
a7:98:1d:5d:df:23:e3:a7:bf:dd:21:4d:97:3f:f0:66:50:6b:
27:d8:0a:3f:d1:8d:9a:cf:be:3c:2d:bc:93:9f:6a:d4:0d:ab:
d6:9b:21:e6:bd:67:27:68:af:d0:cb:e3:c2:d3:01:c2:80:95:
48:90:e4:5a:f9:79:ff:62:ef:15:eb:c4:4f:41:6b:81:8e:99:
b3:d1:ac:5f:8a:97:59:52:78:d4:c9:6e:e8:95:6d:9b:29:da:
40:05:5a:4a:17:c3:f3:81:6b:1c:76:41:a8:27:52:89:69:17:
5c:8c:91:76:5b:9c:41:bf:6b:db:b7:d0:49:ba:b5:7d:11:75:
88:69:80:24:17:61:05:28:18:a6:47:62:a2:4a:a8:60:5a:9d:
76:90:a5:37:a5:a4:ff:65:67:75:3d:ea:bf:33:0b:10:21:e8:
a7:f2:2c:bb:34:b6:e7:48:35:a0:fd:1d:e7:7b:ea:0f:7a:f4:
9c:92:cc:5e:ec:e4:97:f5:70:51:7e:e0:ae:6b:37:af:e8:8b:
fe:81:ef:b0:79:ed:b8:9b:fa:cb:d8:ef:ca:9e:ad:f7:03:32:
4f:1b:ef:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:02 2024 by rpki-client on console-fra.rpki-client.org