Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/F1878534E1F811EBB1AAFD70C4F9AE02.roa
File: F1878534E1F811EBB1AAFD70C4F9AE02.roa (raw, json)
Hash identifier: gjk8/FcD1x2Jlhky2EL18hARqyQGkz/Q3piqJvTA+K4=
Subject key identifier: B2:F4:8C:96:EB:C6:56:6F:CF:9A:84:17:CD:AF:5E:44:8A:70:EE:AA
Certificate issuer: /CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60
Certificate serial: 0F57
Authority key identifier: 36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/F1878534E1F811EBB1AAFD70C4F9AE02.roa
Signing time: Wed 16 Aug 2023 18:16:19 +0000
ROA not before: Wed 16 Aug 2023 18:16:19 +0000
ROA not after: Mon 30 Sep 2024 00:00:00 +0000
asID: 142551
IP address blocks: 2404:f4c0:f940::/44 maxlen: 48
Validation: Failed, certificate revoked on Sat 21 Oct 2023 04:26:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3927 (0xf57)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60
Validity
Not Before: Aug 16 18:16:19 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=64dd1272-56ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:52:45:b2:ac:9f:18:17:34:12:d9:cc:43:5a:
f4:16:d2:8b:4c:98:ab:74:fa:54:8d:3e:65:17:66:
92:94:69:a2:dc:f9:0a:26:df:48:54:84:50:f7:84:
66:97:f9:b3:c9:cf:3a:33:c0:fc:41:8c:8e:f4:a6:
f1:0b:c2:6f:84:fb:de:bd:5e:a1:f5:ea:a8:98:fc:
0c:3c:b8:32:7c:a1:f5:7b:ed:00:d4:89:ea:46:8c:
72:59:04:9e:2d:8b:fd:95:37:de:cb:1d:bc:77:7c:
7a:0c:78:cb:6e:91:d2:a1:75:72:eb:34:84:a7:6f:
c1:55:a9:74:f0:90:59:67:a6:5b:9f:34:a9:a5:4d:
7d:06:13:a8:bf:9a:36:d8:85:61:bc:95:d2:aa:a2:
f2:2c:e1:a5:ae:ea:28:d4:e4:9e:a2:3b:51:dc:27:
cb:ed:5c:ee:aa:3e:ff:01:11:2f:f2:f7:f0:15:86:
05:6a:ac:51:b1:ff:fb:8d:34:ec:f3:bc:3e:77:59:
7c:f8:60:02:39:50:14:6b:3f:70:73:a0:38:c0:df:
6a:5f:35:28:a6:6f:c7:83:10:14:a6:92:56:43:c3:
a4:4d:24:f6:9a:f2:a2:c5:49:96:8c:7d:75:e8:1c:
e7:db:ee:84:b6:94:57:fc:cc:f3:71:4c:b3:92:90:
5e:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:F4:8C:96:EB:C6:56:6F:CF:9A:84:17:CD:AF:5E:44:8A:70:EE:AA
X509v3 Authority Key Identifier:
keyid:36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/F1878534E1F811EBB1AAFD70C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:f4c0:f940::/44
Signature Algorithm: sha256WithRSAEncryption
c9:49:15:22:46:86:c0:be:69:e3:94:ec:28:6b:91:ad:5c:c7:
da:8e:6c:d8:1d:78:ad:ef:11:f3:01:2a:2e:8c:48:10:36:81:
c7:6c:9b:49:59:05:92:15:63:13:50:6e:a7:86:61:a6:6a:39:
04:4f:ff:1b:fc:31:b7:a1:55:81:8e:fe:7f:e2:7a:34:bd:c2:
da:bf:e4:95:9d:d4:d3:cc:7f:cf:db:34:d3:77:43:6a:43:ce:
b2:98:83:0d:98:f4:e3:53:94:c4:e8:24:5e:1a:94:b3:3f:d9:
ac:6b:a4:d6:aa:af:de:d6:38:44:44:64:5c:e1:43:54:a7:e1:
97:13:81:32:5f:cf:08:5c:2b:d4:22:94:d7:cb:0f:72:c1:dc:
10:49:9b:49:70:9f:79:94:55:70:a7:1c:8f:e2:e0:37:e3:f8:
14:d1:9d:25:17:c5:b7:f1:27:dd:f4:13:30:4e:4c:6a:8c:4c:
a2:6b:e3:1a:e7:b7:2e:e3:69:0c:f9:06:97:da:83:c4:0f:1c:
d5:ac:42:f7:af:97:a6:ef:be:8a:c5:ed:1b:04:50:25:de:1d:
25:50:2b:4e:d1:f0:54:fc:ac:ec:c6:78:95:f4:b0:31:58:f3:
41:20:fd:14:e4:81:8c:c4:60:2d:e3:40:52:88:38:24:67:2f:
1f:cf:c3:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:13 2024 by rpki-client on console-fra.rpki-client.org