Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915C449/58EA48EA9DD611EB92CF3714C4F9AE02/F58B23123CE911EFAF729957C4F9AE02.roa
File: F58B23123CE911EFAF729957C4F9AE02.roa (raw, json)
Hash identifier: ZkxMZ348N9V0SyY2V+ytcwWNGqUY/IkUVvpGrtmWIcg=
Subject key identifier: A8:5C:56:FB:9F:9E:49:84:C4:A7:31:76:75:A7:D0:1B:C3:DD:55:F5
Certificate issuer: /CN=A915C449/serialNumber=484EBF33750B21CAF028D0CE219B9461D1FBAA66
Certificate serial: 059D
Authority key identifier: 48:4E:BF:33:75:0B:21:CA:F0:28:D0:CE:21:9B:94:61:D1:FB:AA:66
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SE6_M3ULIcrwKNDOIZuUYdH7qmY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915C449/58EA48EA9DD611EB92CF3714C4F9AE02/F58B23123CE911EFAF729957C4F9AE02.roa
Signing time: Mon 08 Jul 2024 05:21:42 +0000
ROA not before: Mon 08 Jul 2024 05:21:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215324
IP address blocks: 2407:47c0:1000::/36 maxlen: 36
Validation: Failed, certificate revoked on Mon 08 Jul 2024 15:21:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1437 (0x59d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915C449/serialNumber=484EBF33750B21CAF028D0CE219B9461D1FBAA66
Validity
Not Before: Jul 8 05:21:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=668b7765-5e9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:8d:34:15:b8:d8:cb:92:f0:0f:ee:b3:0e:dc:
c3:3a:89:d1:5d:ee:96:87:7c:3a:91:65:3d:1d:54:
62:45:00:1a:92:8a:94:fa:4b:f0:41:92:0f:46:a5:
cf:4c:e8:2f:c5:48:0f:4b:7c:4c:fc:f0:49:10:c8:
42:cb:7c:12:89:55:4e:8f:92:9b:2a:0d:8b:2d:81:
f6:1a:80:e2:3f:10:11:6c:85:25:bb:e2:f7:ce:40:
22:59:cb:8b:1f:03:19:5e:79:ec:00:ad:14:40:f7:
0b:21:e4:93:e4:25:20:f9:46:7a:47:d0:5b:23:89:
61:03:e7:9b:c9:55:95:e8:1b:7d:2c:57:94:74:6f:
b1:b4:bb:70:64:ca:b3:42:83:2c:42:fe:71:df:e1:
7b:52:5c:26:d6:9b:a6:95:f3:1f:d6:29:ef:55:a0:
3b:1f:b9:e9:9f:ca:94:cb:a5:58:cc:74:3c:a0:49:
2a:49:40:55:fa:14:23:f5:33:1a:8e:13:a4:06:f3:
e9:94:2c:65:d7:67:92:c3:f0:ee:67:70:21:ad:58:
e5:e4:ac:67:fc:80:41:e7:23:d1:36:cf:3d:92:4c:
71:c4:0e:42:77:d2:41:a4:e4:c8:7d:eb:31:85:4e:
da:d2:26:d5:5d:c1:b3:81:1a:95:a7:56:7b:23:3e:
42:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:5C:56:FB:9F:9E:49:84:C4:A7:31:76:75:A7:D0:1B:C3:DD:55:F5
X509v3 Authority Key Identifier:
keyid:48:4E:BF:33:75:0B:21:CA:F0:28:D0:CE:21:9B:94:61:D1:FB:AA:66
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915C449/58EA48EA9DD611EB92CF3714C4F9AE02/SE6_M3ULIcrwKNDOIZuUYdH7qmY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SE6_M3ULIcrwKNDOIZuUYdH7qmY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C449/58EA48EA9DD611EB92CF3714C4F9AE02/F58B23123CE911EFAF729957C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2407:47c0:1000::/36
Signature Algorithm: sha256WithRSAEncryption
42:3e:ff:c3:3d:92:56:bc:d0:57:e2:81:4b:29:fa:37:e4:90:
e9:c0:0b:78:94:fa:db:6b:d6:de:db:e2:12:05:fe:08:6f:e0:
ac:42:f6:06:bb:89:a1:4b:0a:8a:4d:b9:f0:59:8f:7f:b0:da:
09:55:53:c5:ae:20:f0:b2:67:09:58:9a:7f:a4:e6:d0:d7:0a:
99:37:78:42:0e:22:a2:64:5c:54:62:81:fa:0c:76:5d:31:85:
98:33:f1:7f:3d:17:4c:a1:c3:50:48:d4:a0:a4:01:c9:f4:50:
2c:d8:97:57:34:f7:2d:3c:80:93:8d:54:ec:d6:46:62:f8:da:
34:3b:e9:a2:9b:89:04:b7:25:b4:47:6a:1a:5f:2b:83:82:bb:
fc:91:21:b8:92:22:81:a0:01:b6:1d:91:51:7f:97:32:98:ed:
d9:9c:d4:dc:cd:0b:7a:e4:69:af:32:0a:4e:31:98:ce:1d:8c:
78:65:28:8b:9f:21:b1:30:e8:dd:1b:97:82:2b:a5:65:71:15:
1b:c4:e6:d7:ba:db:f5:d5:16:ff:16:eb:79:0b:0c:b8:f1:15:
ce:41:88:82:cf:86:24:24:ce:01:a3:a6:29:85:68:76:96:bd:
c5:9f:45:b4:3c:bc:a7:85:e4:6c:48:67:dc:49:59:9c:02:87:
23:ab:dd:a1
-----BEGIN CERTIFICATE-----
MIIFczCCBFugAwIBAgICBZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NUM0NDkxMTAvBgNVBAUTKDQ4NEVCRjMzNzUwQjIxQ0FGMDI4RDBDRTIxOUI5NDYx
RDFGQkFBNjYwHhcNMjQwNzA4MDUyMTQyWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NjhiNzc2NS01ZTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAqI00FbjYy5LwD+6zDtzDOonRXe6Wh3w6kWU9HVRiRQAakoqU+kvwQZIPRqXP
TOgvxUgPS3xM/PBJEMhCy3wSiVVOj5KbKg2LLYH2GoDiPxARbIUlu+L3zkAiWcuL
HwMZXnnsAK0UQPcLIeST5CUg+UZ6R9BbI4lhA+ebyVWV6Bt9LFeUdG+xtLtwZMqz
QoMsQv5x3+F7Ulwm1pumlfMf1invVaA7H7npn8qUy6VYzHQ8oEkqSUBV+hQj9TMa
jhOkBvPplCxl12eSw/DuZ3AhrVjl5Kxn/IBB5yPRNs89kkxxxA5Cd9JBpOTIfesx
hU7a0ibVXcGzgRqVp1Z7Iz5C5wIDAQABo4IClzCCApMwHQYDVR0OBBYEFKhcVvuf
nkmExKcxdnWn0BvD3VX1MB8GA1UdIwQYMBaAFEhOvzN1CyHK8CjQziGblGHR+6pm
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzQ0OS81OEVBNDhFQTlE
RDYxMUVCOTJDRjM3MTRDNEY5QUUwMi9TRTZfTTNVTEljcndLTkRPSVp1VVlkSDdx
bVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1NFNl9NM1VMSWNyd0tORE9JWnVVWWRIN3FtWS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NUM0NDkvNThFQTQ4RUE5REQ2MTFFQjkyQ0YzNzE0QzRGOUFFMDIvRjU4QjIzMTIz
Q0U5MTFFRkFGNzI5OTU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E
EjAQMA4EAgACMAgDBgQkB0fAEDANBgkqhkiG9w0BAQsFAAOCAQEAQj7/wz2SVrzQ
V+KBSyn6N+SQ6cALeJT622vW3tviEgX+CG/grEL2BruJoUsKik258FmPf7DaCVVT
xa4g8LJnCViaf6Tm0NcKmTd4Qg4iomRcVGKB+gx2XTGFmDPxfz0XTKHDUEjUoKQB
yfRQLNiXVzT3LTyAk41U7NZGYvjaNDvpopuJBLcltEdqGl8rg4K7/JEhuJIigaAB
th2RUX+XMpjt2ZzU3M0LeuRprzIKTjGYzh2MeGUoi58hsTDo3RuXgiulZXEVG8Tm
17rb9dUW/xbreQsMuPEVzkGIgs+GJCTOAaOmKYVodpa9xZ9FtDy8p4XkbEhn3ElZ
nAKHI6vdoQ==
-----END CERTIFICATE-----
Generated at Mon Jul 8 17:18:58 2024 by rpki-client on console-fra.rpki-client.org