Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9175F54/51B6ECE49F2811EEA995D328C4F9AE02/F6EB41429F2811EE91032D2AC4F9AE02.roa
File: F6EB41429F2811EE91032D2AC4F9AE02.roa (raw, json)
Hash identifier: d49MtU0S9f+TUTMSwTs+38XP2OZF6kxjsb+UUnfBjhQ=
Subject key identifier: 71:42:27:DA:35:F8:13:82:45:64:C6:43:A2:AE:F9:A2:2F:B5:4C:04
Certificate issuer: /CN=A9175F54/serialNumber=5DB57ED386039EA664D1EFF7570736D6F9F04C44
Certificate serial: B2
Authority key identifier: 5D:B5:7E:D3:86:03:9E:A6:64:D1:EF:F7:57:07:36:D6:F9:F0:4C:44
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XbV-04YDnqZk0e_3Vwc21vnwTEQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9175F54/51B6ECE49F2811EEA995D328C4F9AE02/F6EB41429F2811EE91032D2AC4F9AE02.roa
Signing time: Thu 21 Nov 2024 04:38:11 +0000
ROA not before: Thu 21 Nov 2024 04:38:11 +0000
ROA not after: Sat 31 Jan 2026 00:00:00 +0000
asID: 139672
IP address blocks: 36.50.8.0/23 maxlen: 23
36.50.8.0/24 maxlen: 24
36.50.9.0/24 maxlen: 24
2401:52a0::/32 maxlen: 36
Validation: Failed, certificate revoked on Tue 11 Mar 2025 09:35:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 178 (0xb2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9175F54, serialNumber=5DB57ED386039EA664D1EFF7570736D6F9F04C44
Validity
Not Before: Nov 21 04:38:11 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=673eb933-1a47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:be:6e:24:21:e5:ed:76:8f:4a:6a:a4:52:48:
9d:c5:e1:b2:23:95:57:98:3d:6f:16:54:d1:00:8c:
2e:3e:e2:dd:58:ea:71:34:0f:d6:ec:a2:39:a9:29:
a7:06:06:f9:3c:fe:08:e2:ad:5f:68:65:10:39:0b:
33:e9:b3:6d:df:c2:74:1b:c1:7a:58:f9:e8:57:01:
70:c6:b4:42:7e:cd:55:47:af:22:61:ae:6f:65:77:
f3:eb:ae:9b:a0:67:6b:90:8c:09:22:6d:5b:97:3c:
20:ed:76:19:1f:18:e0:c1:eb:0d:fa:5e:3e:4c:e9:
17:c2:b9:30:76:78:e4:c2:63:c3:58:b2:f1:02:cf:
f5:3c:c2:15:44:c3:80:2a:c4:0b:44:7b:a5:0e:54:
20:55:47:16:84:09:e6:98:97:01:c2:9a:0c:98:58:
1c:27:aa:9d:d6:58:4c:d5:34:0e:8e:49:d6:0d:e1:
70:4e:4e:c6:3c:47:bf:02:4e:23:ba:42:5c:12:96:
45:61:0a:bc:67:30:2e:90:11:fd:bd:e5:7b:ee:f9:
f9:0f:83:44:8c:24:e6:1d:bf:38:cc:c9:de:b7:fa:
b2:0e:26:75:1c:16:97:6f:9f:c4:e5:9f:db:50:81:
a9:78:a0:c6:7f:bb:8c:ef:b7:2e:13:9b:73:c5:d8:
b2:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:42:27:DA:35:F8:13:82:45:64:C6:43:A2:AE:F9:A2:2F:B5:4C:04
X509v3 Authority Key Identifier:
keyid:5D:B5:7E:D3:86:03:9E:A6:64:D1:EF:F7:57:07:36:D6:F9:F0:4C:44
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9175F54/51B6ECE49F2811EEA995D328C4F9AE02/XbV-04YDnqZk0e_3Vwc21vnwTEQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XbV-04YDnqZk0e_3Vwc21vnwTEQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175F54/51B6ECE49F2811EEA995D328C4F9AE02/F6EB41429F2811EE91032D2AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
36.50.8.0/23
IPv6:
2401:52a0::/32
Signature Algorithm: sha256WithRSAEncryption
d1:ce:1f:80:17:99:4d:b5:4c:80:66:de:98:7e:29:2a:84:10:
1e:49:56:dd:91:80:c7:c1:03:52:e3:aa:bc:7b:c7:3b:2f:e6:
d7:71:78:dd:87:91:40:18:9b:b2:00:d0:90:e1:2b:52:e1:14:
b5:fc:59:e4:b3:3c:fb:db:b4:8a:9c:9f:36:c0:44:b1:16:f7:
65:26:63:c4:b2:d9:cd:2f:ef:77:50:27:ba:e0:a6:c6:96:6a:
ae:01:1b:da:fc:a7:d3:6d:56:c9:83:dd:76:4a:38:9a:c6:89:
cf:82:37:a8:85:b5:ea:c7:27:0d:e3:03:94:01:17:27:5e:d2:
41:97:ed:17:82:a6:80:8d:9e:37:db:99:d1:65:f6:91:e3:6c:
4d:d0:4d:69:e1:d0:5f:08:3a:14:a0:50:a5:19:6a:13:13:72:
b2:4a:42:78:8e:1e:61:a2:d9:69:0c:40:24:4c:93:01:bc:4d:
92:2b:76:b3:60:b2:57:ee:cb:77:c5:1f:81:23:b2:1c:20:c9:
6c:13:b0:1a:be:c2:bb:66:89:5f:bc:27:86:ed:34:67:79:64:
6b:e5:7a:8a:44:47:29:e6:2e:96:ed:ae:06:4e:d3:c1:ba:b5:
f7:32:f0:be:93:99:c2:58:58:df:c6:1c:d3:95:b1:c0:c2:95:
7e:1a:56:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 05:22:39 2025 by rpki-client