Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/589D8EF21EB211EDB8B1533DC4F9AE02.roa
File: 589D8EF21EB211EDB8B1533DC4F9AE02.roa (raw, json)
Hash identifier: 7vvQXQnVtDaSI0J4QvTrQVBJZZUKhpGpwf6oy2kF0tE=
Subject key identifier: 77:F6:75:C9:23:8E:B9:C6:94:7A:14:AD:F6:1D:EC:2C:89:12:4B:BF
Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5
Certificate serial: 0907
Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/589D8EF21EB211EDB8B1533DC4F9AE02.roa
Signing time: Thu 18 Aug 2022 04:58:06 +0000
ROA not before: Thu 18 Aug 2022 04:58:06 +0000
ROA not after: Sun 30 Jul 2023 00:00:00 +0000
asID: 47158
IP address blocks: 2406:840:e240::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2311 (0x907)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5
Validity
Not Before: Aug 18 04:58:06 2022 GMT
Not After : Jul 30 00:00:00 2023 GMT
Subject: CN=62fdc6de-8b2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:96:bc:9a:93:ed:b6:5c:35:bc:34:91:dd:7d:
f8:73:81:8c:ba:4a:af:48:bb:67:14:db:d1:9d:9b:
7a:a5:40:ee:97:de:ae:f8:4d:41:60:4e:1c:a8:a4:
91:11:54:f2:e3:8b:a7:27:92:db:bf:40:08:e6:c6:
17:db:2f:bf:0f:97:a6:9c:ee:fd:54:46:44:29:32:
c2:bf:4a:b9:de:f2:30:bb:60:f0:76:20:33:2e:20:
60:00:c3:5e:da:c6:11:7b:ad:b0:0a:65:e3:4d:8c:
79:8a:6c:ef:1b:57:ca:ed:3e:f7:25:7b:95:45:61:
dc:a9:21:a8:81:b4:8e:70:de:b1:a1:28:cb:3a:da:
3b:ca:73:45:bc:7c:32:bc:01:13:43:ab:51:0b:73:
d6:e5:7b:ea:ce:3c:8d:32:b7:f4:cc:1e:0e:09:ba:
47:cb:7e:b4:18:02:db:d2:45:49:0f:78:cd:48:6e:
55:db:80:71:15:f9:b4:2b:a0:bf:d5:2b:8f:23:46:
4b:2f:cc:7a:ff:48:85:72:09:80:e5:2a:32:a6:cd:
d6:21:0b:a9:b0:aa:14:2a:5c:8a:46:27:b9:9f:01:
9f:62:c2:93:25:57:11:cd:16:13:0f:0d:87:6c:00:
1a:fa:e8:fc:64:91:d7:c0:dd:1f:bc:cd:c9:a7:bb:
a8:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:F6:75:C9:23:8E:B9:C6:94:7A:14:AD:F6:1D:EC:2C:89:12:4B:BF
X509v3 Authority Key Identifier:
keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/589D8EF21EB211EDB8B1533DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:840:e240::/44
Signature Algorithm: sha256WithRSAEncryption
09:8a:64:59:56:fe:32:a3:fd:d6:4c:47:3c:86:d7:cf:34:12:
06:52:b5:e8:a3:2c:2f:24:da:6c:e0:b2:de:44:da:80:1b:97:
d6:71:4b:9d:c0:d4:2e:cd:a7:f8:77:f1:6c:3e:1c:4e:1a:22:
a7:9a:b5:b1:df:8e:a1:74:aa:4f:d0:ad:08:83:d0:9f:1a:40:
49:ea:79:07:28:8f:bb:e4:be:ec:d8:2f:8c:56:18:f2:df:a4:
07:7f:ab:58:de:af:38:db:c7:42:12:43:2f:3f:6b:b6:a0:44:
6f:3a:20:2a:3e:f6:c4:68:a3:47:a7:c4:79:38:e9:80:6a:55:
fc:0e:82:73:b0:52:61:d7:ee:71:89:bb:76:41:e8:18:e2:12:
bb:d3:d1:b2:5d:17:f7:7c:e5:f5:3c:7b:c0:33:a8:ec:f0:1f:
52:aa:a5:1b:3d:ce:40:3a:f6:1c:08:b0:07:0b:d9:b3:bc:77:
d8:2f:bc:04:ae:4e:0a:90:a9:5b:fd:62:54:cc:9b:74:8a:39:
97:e2:bf:67:09:9d:aa:9b:fd:27:21:f5:71:1f:4f:c9:1d:66:
79:08:f0:8c:9e:0a:d4:04:2e:16:a7:27:97:e6:c6:40:d4:30:
8d:e3:73:05:0f:c9:00:33:fd:b7:98:42:a8:75:6a:72:00:10:
44:e3:c0:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:48 2023 by rpki-client on console-fra.rpki-client.org