Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9153490/99198F12D05411EEAF799F16C4F9AE02/CB5DE730D06211EE926C9844C4F9AE02.roa
File: CB5DE730D06211EE926C9844C4F9AE02.roa (raw, json)
Hash identifier: jGCkmzMHt67FxCGMkInajdhWBN8maU5Uv1tSur0WbfA=
Subject key identifier: 8B:2C:28:F3:18:5B:89:15:36:94:E1:B8:3D:B5:BF:2B:41:58:37:CE
Certificate issuer: /CN=A9153490/serialNumber=137353D0E8C145A580CB00BC3222089C4048AE51
Certificate serial: 04
Authority key identifier: 13:73:53:D0:E8:C1:45:A5:80:CB:00:BC:32:22:08:9C:40:48:AE:51
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E3NT0OjBRaWAywC8MiIInEBIrlE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9153490/99198F12D05411EEAF799F16C4F9AE02/CB5DE730D06211EE926C9844C4F9AE02.roa
Signing time: Wed 21 Feb 2024 02:42:03 +0000
ROA not before: Wed 21 Feb 2024 02:42:03 +0000
ROA not after: Wed 28 May 2025 00:00:00 +0000
asID: 152470
IP address blocks: 2401:7f20::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 26 Mar 2024 21:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9153490/serialNumber=137353D0E8C145A580CB00BC3222089C4048AE51
Validity
Not Before: Feb 21 02:42:03 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=65d562fb-fab3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:66:5e:b5:57:37:34:f6:e6:11:60:74:e0:34:
f8:7b:82:d1:f2:31:9d:5c:2b:c2:a4:48:ea:18:0c:
3a:d3:c7:10:45:12:6d:4a:e1:52:9b:67:68:e3:eb:
09:7f:aa:70:f9:e7:cf:47:85:63:b9:04:bb:b8:63:
bc:7c:b9:5e:82:9b:2c:ea:34:9a:ab:d0:0b:e7:30:
ab:fb:39:a1:b8:45:86:c1:18:e3:ba:cf:a0:6e:b8:
32:98:7d:93:61:ec:71:43:02:d0:8b:cb:41:f7:36:
89:c6:da:2a:60:14:1e:36:59:3e:f6:13:a0:63:56:
f4:61:73:ba:2a:40:2c:4d:fc:74:d0:85:19:37:bc:
54:e1:7d:27:00:19:7c:29:75:5f:c6:78:7a:aa:73:
1a:f1:a5:48:d1:93:b3:a5:78:c7:3a:cb:c5:2c:38:
67:0e:4d:8e:70:e5:4d:49:41:c1:a1:64:73:5e:80:
e0:31:eb:9f:2f:57:33:60:4c:1d:f6:f2:b3:58:9d:
16:37:58:ae:25:07:c6:01:2f:79:f4:9f:d8:8f:7c:
77:20:24:c2:34:2d:eb:ee:68:f9:59:b4:5e:e0:d8:
d8:57:e1:20:4c:cb:8c:bc:5c:d7:13:b5:8e:f4:51:
f7:7d:c6:1a:96:f4:ef:9f:7b:60:35:b2:f1:d2:5f:
a5:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:2C:28:F3:18:5B:89:15:36:94:E1:B8:3D:B5:BF:2B:41:58:37:CE
X509v3 Authority Key Identifier:
keyid:13:73:53:D0:E8:C1:45:A5:80:CB:00:BC:32:22:08:9C:40:48:AE:51
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9153490/99198F12D05411EEAF799F16C4F9AE02/E3NT0OjBRaWAywC8MiIInEBIrlE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E3NT0OjBRaWAywC8MiIInEBIrlE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153490/99198F12D05411EEAF799F16C4F9AE02/CB5DE730D06211EE926C9844C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:7f20::/32
Signature Algorithm: sha256WithRSAEncryption
2c:55:68:37:68:90:24:c7:cc:23:b7:bf:29:34:4b:1e:d5:14:
57:7a:24:5d:34:e2:a2:ed:d0:2d:76:5c:47:f6:a4:d1:50:bf:
33:4c:bc:1b:39:24:0c:af:ce:7c:6f:1b:bf:1b:6e:ec:88:0d:
4c:79:40:1f:07:95:07:75:85:47:a7:22:85:a2:d7:f6:65:b3:
88:1e:b3:9b:cc:d2:b2:9d:90:43:cb:19:46:ab:16:05:5b:e3:
2e:bd:62:9a:f4:42:ef:70:24:33:c0:58:ba:18:2c:4f:bf:55:
5f:95:88:1c:0f:d9:c4:58:a8:13:de:b4:f3:df:01:6d:8c:64:
80:98:76:d2:ea:78:f7:f4:fd:41:37:51:1b:08:2e:61:31:57:
1b:a4:7f:95:3d:1f:79:81:b0:c3:ef:05:0f:e5:08:d5:14:49:
4b:e0:10:6c:c2:24:92:8b:4c:5c:35:3a:9a:96:2f:5b:c8:b0:
94:c1:54:d7:0a:e2:53:b9:5b:36:22:1f:45:9f:bf:8c:23:18:
4f:16:86:29:eb:76:c8:69:97:0c:71:e7:60:9f:68:40:9e:02:
35:3c:26:96:2c:18:69:b1:01:a6:41:14:c4:03:68:b4:a5:14:
a9:64:32:37:86:4c:97:48:8d:0f:57:8b:3f:63:05:cd:70:a6:
a1:49:a8:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:06 2024 by rpki-client on console-fra.rpki-client.org