Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9179F22/C6F55FA88F2F11EE9CBFD961C4F9AE02/36ADAE56009911EF88442E57C4F9AE02.roa
File: 36ADAE56009911EF88442E57C4F9AE02.roa (raw, json)
Hash identifier: EwpabYjxJ0pA5q7mFetk3BeED7APcfs4UEpSAhLa2cc=
Subject key identifier: B0:33:0E:22:DE:38:80:9A:27:2C:93:F7:23:8D:A1:0B:22:AB:43:FA
Certificate issuer: /CN=A9179F22/serialNumber=063BAF3ED7B41071A90D9FAE410FF47888F0BEDF
Certificate serial: 4D
Authority key identifier: 06:3B:AF:3E:D7:B4:10:71:A9:0D:9F:AE:41:0F:F4:78:88:F0:BE:DF
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BjuvPte0EHGpDZ-uQQ_0eIjwvt8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9179F22/C6F55FA88F2F11EE9CBFD961C4F9AE02/36ADAE56009911EF88442E57C4F9AE02.roa
Signing time: Mon 22 Apr 2024 11:12:32 +0000
ROA not before: Mon 22 Apr 2024 11:12:32 +0000
ROA not after: Thu 01 May 2025 00:00:00 +0000
asID: 14618
IP address blocks: 204.145.97.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 May 2024 23:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77 (0x4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9179F22/serialNumber=063BAF3ED7B41071A90D9FAE410FF47888F0BEDF
Validity
Not Before: Apr 22 11:12:32 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=66264620-d009
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c0:22:43:13:2b:27:85:95:4e:b8:6e:06:b7:
83:25:c5:99:d3:e1:41:15:94:bd:4a:56:63:e7:10:
3b:44:44:42:d3:23:34:73:bc:5a:90:31:b4:81:e6:
2d:c6:e2:48:03:01:df:8d:f3:b5:0f:66:3d:4d:c0:
0d:f7:e3:ea:e2:e8:dc:b2:13:80:ea:ca:5d:c3:02:
03:0a:4f:e8:ed:0d:db:70:f1:16:20:b7:14:55:6c:
74:2f:63:01:97:83:09:41:0c:7a:c3:0b:ba:d0:9e:
dc:dc:32:74:c9:0d:46:0d:ef:11:25:6e:d5:c1:f3:
1f:1e:06:ad:33:c4:23:20:cc:3e:db:ba:cf:aa:86:
36:d2:b5:70:ee:a7:c6:ae:2d:06:2f:91:2e:56:ba:
b0:81:80:26:34:65:98:b0:6a:a9:9d:cf:3e:8c:6a:
cd:63:a9:c5:0b:c2:40:d1:95:0c:fd:39:2a:e9:8d:
17:28:26:61:c8:88:e7:1e:22:db:23:69:23:f2:68:
21:0c:b2:b7:d6:ad:0d:c6:09:09:04:13:d0:27:9c:
90:6e:1f:7c:5a:4c:69:00:2d:5d:34:e3:1f:eb:65:
bd:2d:1b:f2:d8:f6:95:ab:bc:23:f4:c8:d7:b5:23:
bf:76:aa:ca:0a:83:31:4e:87:16:e4:ea:18:bc:df:
96:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:33:0E:22:DE:38:80:9A:27:2C:93:F7:23:8D:A1:0B:22:AB:43:FA
X509v3 Authority Key Identifier:
keyid:06:3B:AF:3E:D7:B4:10:71:A9:0D:9F:AE:41:0F:F4:78:88:F0:BE:DF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9179F22/C6F55FA88F2F11EE9CBFD961C4F9AE02/BjuvPte0EHGpDZ-uQQ_0eIjwvt8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BjuvPte0EHGpDZ-uQQ_0eIjwvt8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179F22/C6F55FA88F2F11EE9CBFD961C4F9AE02/36ADAE56009911EF88442E57C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
204.145.97.0/24
Signature Algorithm: sha256WithRSAEncryption
11:0a:d0:1f:83:02:2b:a3:fb:d7:f8:6f:e9:76:68:0f:38:8e:
60:da:db:a4:0e:f7:f0:a7:d4:cf:a0:65:55:58:a6:52:e3:32:
aa:4a:11:c9:15:da:25:3b:58:92:5c:1c:30:c6:45:1a:a8:da:
8c:09:e8:2c:62:cd:44:72:cd:48:2c:57:03:d5:e5:7a:c9:fd:
c0:87:c5:1c:17:35:16:01:88:c3:f8:24:82:29:70:79:20:e0:
9e:da:7d:07:6a:5e:66:20:bc:bf:bb:06:57:b1:52:a9:3e:24:
c6:ff:c7:0b:b8:0f:48:e9:af:76:fb:4b:1a:d5:20:c8:61:73:
ec:d3:4f:ad:ac:9b:cc:b1:00:ac:9b:31:57:ad:6d:47:66:2e:
69:07:43:f8:df:64:31:2c:2b:39:c1:8f:b4:cc:7c:89:a2:ca:
35:55:60:ab:65:f1:ec:d7:68:ab:1a:30:b7:6f:c4:5d:a1:fe:
68:07:96:a6:44:d1:ed:07:37:1b:ad:67:3c:16:ea:a3:d4:27:
20:61:9d:35:a3:d7:9b:fa:94:f1:2c:c5:82:17:51:2d:78:c4:
24:da:7c:61:aa:e4:ef:88:a4:1f:ba:69:2f:6e:0b:d2:99:bd:
88:a7:01:72:0e:d4:4b:55:64:52:6a:4d:41:44:2a:08:25:98:
38:ce:bf:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 23:50:52 2024 by rpki-client on console-fra.rpki-client.org