Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/FA52B4A8860B11EAA83B7B38C4F9AE02.roa
File: FA52B4A8860B11EAA83B7B38C4F9AE02.roa (raw, json)
Hash identifier: +hDkYfQ+WNCP/zekXxOQfrmYD1+IaQKL068Jq+17ZAM=
Subject key identifier: BD:6C:79:24:D0:2D:2F:45:7E:60:62:F7:35:4A:8B:1D:99:0F:6E:CA
Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5
Certificate serial: 0A3E
Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/FA52B4A8860B11EAA83B7B38C4F9AE02.roa
Signing time: Sun 14 May 2023 22:14:16 +0000
ROA not before: Sun 14 May 2023 22:14:16 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 139216
IP address blocks: 2406:840:eee0::/43 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2622 (0xa3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5
Validity
Not Before: May 14 22:14:16 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=64615d38-ac53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:40:1a:0b:b1:5a:5f:57:51:0e:c2:1d:71:c4:
df:c9:3a:1d:7c:d8:f8:60:a5:85:d0:86:e4:7b:91:
21:10:5a:15:b2:58:0a:ec:fc:b4:ce:5a:81:ff:02:
02:6f:e8:81:d5:0d:45:c6:ad:a0:dc:84:06:c9:e1:
2a:05:c3:4d:ab:31:b4:aa:b2:cb:c3:ca:0f:b6:5a:
b2:6f:9d:9c:29:e1:69:25:e8:ea:12:d7:63:56:ff:
c1:61:dd:69:bc:45:2b:04:f4:9b:f1:9b:0f:25:08:
81:52:c9:9e:7f:72:24:21:49:a1:1c:24:d9:bd:09:
9b:14:72:30:61:9c:63:dc:aa:63:41:10:71:35:08:
2c:2f:87:e8:a7:2b:63:8e:28:13:1c:20:0d:01:be:
2d:4e:cd:06:6c:74:4d:c5:fa:45:ca:2f:76:8f:09:
48:18:a4:45:f2:d8:c5:68:f9:c0:de:fc:6b:d1:91:
8d:0f:88:5d:3a:8e:23:6e:86:64:5e:98:8d:34:f7:
b2:2e:33:3e:74:ab:bc:1a:af:f7:20:cd:40:8f:10:
bb:9c:ef:bf:d9:4b:84:62:98:ae:5a:d6:ea:82:f9:
7f:e6:84:54:bb:3c:3e:a8:25:3e:a5:64:a5:52:59:
a5:2f:71:8c:19:48:79:07:6b:57:5f:f8:5d:61:e7:
5c:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:6C:79:24:D0:2D:2F:45:7E:60:62:F7:35:4A:8B:1D:99:0F:6E:CA
X509v3 Authority Key Identifier:
keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/FA52B4A8860B11EAA83B7B38C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:840:eee0::/43
Signature Algorithm: sha256WithRSAEncryption
37:48:56:89:f2:a4:0c:7b:22:b4:cf:e5:a4:ea:61:d7:24:27:
5a:9f:5a:86:15:a5:1a:28:b9:e7:64:c2:e8:30:d0:77:46:19:
e8:ce:d4:c0:61:84:90:af:8a:73:f6:a6:94:f3:0c:4d:a8:b0:
b0:ef:a0:68:73:27:db:0e:23:fe:76:ff:b6:ad:9f:ed:dd:b2:
20:d4:4e:48:e5:4f:a8:6e:39:de:15:92:ab:d6:9d:8d:a6:0f:
90:db:16:f7:25:de:a8:67:8f:27:0d:83:61:81:52:83:cf:62:
22:58:bc:5b:0a:e2:46:bb:8c:32:60:f5:7f:30:4a:b7:f4:9e:
5f:32:78:4a:a6:b5:e3:e9:5a:dc:22:2d:29:92:f9:a9:a8:a3:
73:04:e5:ba:1b:ac:07:7b:54:40:80:45:00:31:04:93:ee:2f:
35:45:5a:3f:01:fe:8e:5c:1b:21:80:55:8f:10:51:12:dc:eb:
9c:14:c0:f6:e9:73:f9:e6:d1:c9:98:b0:5d:8b:05:dc:fc:62:
af:3f:bd:92:46:8b:22:af:e1:1b:99:62:96:f9:e4:9c:10:6c:
fa:df:e2:da:31:f1:23:b9:b0:86:51:f5:e6:cc:29:03:7a:e8:
f5:6a:ad:ae:fb:a4:ec:56:71:97:19:e7:6c:1e:31:ca:12:2e:
20:a1:26:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 19 04:23:35 2023 by rpki-client on console-fra.rpki-client.org