Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9179F22/C6F55FA88F2F11EE9CBFD961C4F9AE02/3736DC76009911EF88442E57C4F9AE02.roa
File: 3736DC76009911EF88442E57C4F9AE02.roa (raw, json)
Hash identifier: 77CBpguoraGOxwqXiQ1pKR15otpVn+xzNpLQAo8vWmc=
Subject key identifier: 3B:0A:42:83:2A:66:3F:97:C8:8B:23:3D:AB:81:9E:CF:EF:81:0F:21
Certificate issuer: /CN=A9179F22/serialNumber=063BAF3ED7B41071A90D9FAE410FF47888F0BEDF
Certificate serial: 4E
Authority key identifier: 06:3B:AF:3E:D7:B4:10:71:A9:0D:9F:AE:41:0F:F4:78:88:F0:BE:DF
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BjuvPte0EHGpDZ-uQQ_0eIjwvt8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9179F22/C6F55FA88F2F11EE9CBFD961C4F9AE02/3736DC76009911EF88442E57C4F9AE02.roa
Signing time: Mon 22 Apr 2024 11:12:33 +0000
ROA not before: Mon 22 Apr 2024 11:12:33 +0000
ROA not after: Thu 01 May 2025 00:00:00 +0000
asID: 16509
IP address blocks: 204.145.97.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 May 2024 23:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78 (0x4e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9179F22/serialNumber=063BAF3ED7B41071A90D9FAE410FF47888F0BEDF
Validity
Not Before: Apr 22 11:12:33 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=66264621-47db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:63:c3:f7:79:c7:6a:9b:6b:3a:a9:3a:87:cb:
52:b2:7e:15:ab:88:85:fc:ba:0a:e5:2e:cb:27:5b:
5f:f6:01:81:b9:f7:0d:8f:5c:fe:60:63:61:68:63:
f2:64:4c:23:7c:29:66:36:94:d9:51:98:2b:2a:f9:
c9:68:1a:a6:f5:94:5c:8a:fa:ac:15:31:3f:0c:b8:
00:3c:93:69:70:8f:04:09:08:dc:44:b0:67:b9:7f:
23:0f:fd:c9:39:62:19:56:82:e4:14:c6:3c:c8:52:
ca:3d:ff:69:9c:47:29:ff:f7:5d:db:0e:66:d7:98:
54:9d:e2:c8:20:48:8c:6c:ed:3e:8d:c5:e9:36:af:
62:f1:92:dc:54:45:ea:a3:b7:d1:1c:a5:1c:53:2c:
91:13:61:cd:05:99:15:da:a2:b2:dd:96:1b:ca:8d:
f9:94:9e:86:6b:73:27:9a:ff:03:52:ee:5d:fd:41:
19:03:cc:29:97:02:1a:38:e9:65:64:69:04:6c:9c:
d1:8c:3b:b6:6a:68:e0:c7:a4:31:c3:f7:63:29:6f:
58:9c:14:37:69:5f:a1:ef:1e:c2:83:70:c8:74:2f:
84:68:70:57:ab:62:c5:1b:7c:0c:f0:6c:dc:3c:ee:
c2:a1:fe:ab:a4:99:56:1d:fb:42:20:19:f5:c4:e8:
eb:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:0A:42:83:2A:66:3F:97:C8:8B:23:3D:AB:81:9E:CF:EF:81:0F:21
X509v3 Authority Key Identifier:
keyid:06:3B:AF:3E:D7:B4:10:71:A9:0D:9F:AE:41:0F:F4:78:88:F0:BE:DF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9179F22/C6F55FA88F2F11EE9CBFD961C4F9AE02/BjuvPte0EHGpDZ-uQQ_0eIjwvt8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BjuvPte0EHGpDZ-uQQ_0eIjwvt8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179F22/C6F55FA88F2F11EE9CBFD961C4F9AE02/3736DC76009911EF88442E57C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
204.145.97.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:36:65:d7:86:3b:1d:aa:d9:07:89:3f:56:b2:f2:75:f6:a2:
90:9a:f3:45:41:a5:ba:f1:a2:cc:20:82:47:15:99:51:93:a6:
93:ec:d9:7c:36:6f:9d:c2:d1:3b:57:21:12:4f:26:04:5d:80:
cc:de:63:3c:05:3a:f8:68:81:90:f0:9a:04:6b:5a:e9:bf:48:
49:7e:1b:dc:de:1f:94:07:e6:a1:81:01:9f:4a:d7:c5:e8:d4:
68:99:4d:20:21:c0:25:9d:78:ea:e5:b5:ea:14:46:3c:94:fe:
a6:a9:63:d5:82:4a:05:d3:08:89:7e:74:24:11:8f:f9:2f:ab:
aa:01:ec:7e:c3:5b:9d:7f:e7:70:8a:f2:d3:c3:1f:72:d6:d3:
41:4d:23:fa:f9:77:64:e3:b3:f5:26:96:91:7c:a7:cd:3e:83:
c6:e5:bb:2c:a9:25:f2:b9:da:53:b8:06:37:8b:ec:ca:4c:bc:
21:52:ad:37:b6:21:23:d1:21:a5:6e:94:ff:99:2c:95:4a:2b:
f9:4b:b3:cc:bb:32:2a:42:63:6b:1a:2d:59:5f:d6:cc:8d:18:
b5:a1:e7:06:da:e7:69:cd:51:9a:20:05:1c:c1:29:c1:dc:8b:
4a:95:33:28:27:2e:fd:22:d0:24:8e:89:49:24:75:01:3b:c8:
47:4b:d9:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:12 2024 by rpki-client on console-fra.rpki-client.org