Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91856F6/879F388E869E11EB9A049627C4F9AE02/97CA5382063811ECB78EF227C4F9AE02.roa
File: 97CA5382063811ECB78EF227C4F9AE02.roa (raw, json)
Hash identifier: dVCl2o5Zc5AIEVUXqlz73cEIYA2MqicUNLsQh+2GtSY=
Subject key identifier: D5:BB:C3:54:A2:BE:36:3F:1F:5D:DA:10:7E:25:72:04:3C:81:ED:F5
Certificate issuer: /CN=A91856F6/serialNumber=3A084422257FF5F179A50ECBFC02EBF725BB9343
Certificate serial: 0580
Authority key identifier: 3A:08:44:22:25:7F:F5:F1:79:A5:0E:CB:FC:02:EB:F7:25:BB:93:43
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OghEIiV_9fF5pQ7L_ALr9yW7k0M.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91856F6/879F388E869E11EB9A049627C4F9AE02/97CA5382063811ECB78EF227C4F9AE02.roa
Signing time: Wed 01 Nov 2023 00:32:25 +0000
ROA not before: Wed 01 Nov 2023 00:32:25 +0000
ROA not after: Mon 30 Dec 2024 00:00:00 +0000
asID: 38719
IP address blocks: 2404:3800:f::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 29 Jan 2024 03:45:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1408 (0x580)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91856F6/serialNumber=3A084422257FF5F179A50ECBFC02EBF725BB9343
Validity
Not Before: Nov 1 00:32:25 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=65419c98-eaf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:29:58:b4:3b:ed:a4:c8:b2:97:89:64:ec:93:
63:dd:c6:f5:a4:17:af:3c:d4:b2:f5:62:39:27:24:
86:78:b2:84:5c:b4:c1:f6:cb:71:67:28:94:1a:92:
5d:fe:80:e7:0a:a7:fc:86:8c:15:89:c5:3f:2e:77:
05:fa:9d:8d:7f:db:71:01:52:c7:50:7a:55:70:29:
23:ef:85:55:93:88:e2:0a:51:cb:65:66:46:3e:17:
34:53:d0:2e:e8:6f:8d:f0:42:d5:27:ce:98:56:7b:
1d:79:9f:ec:78:b1:4e:71:5b:d1:18:8e:f6:3b:65:
e3:b0:ca:f2:46:aa:c9:94:83:60:ef:9d:df:10:f2:
5d:9a:b7:16:62:b5:4b:ba:d3:16:5b:a0:f5:79:42:
11:9e:7a:be:fe:18:06:85:50:3f:14:d8:22:98:bd:
f7:0a:5f:96:b7:35:56:bc:d9:2f:c9:a7:09:62:89:
30:22:bf:43:68:39:eb:50:64:c8:66:fa:b7:e5:4a:
76:8b:7a:ee:fc:7e:b3:4f:2f:72:b3:9d:8c:34:46:
e9:a5:ea:cd:2f:5f:8b:7b:ac:fc:6c:58:52:38:ec:
61:45:5f:18:b2:5b:01:0a:ad:93:0a:2a:b4:6f:6f:
d7:7e:e8:df:c7:13:fd:5e:6f:79:98:14:a5:55:c2:
71:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:BB:C3:54:A2:BE:36:3F:1F:5D:DA:10:7E:25:72:04:3C:81:ED:F5
X509v3 Authority Key Identifier:
keyid:3A:08:44:22:25:7F:F5:F1:79:A5:0E:CB:FC:02:EB:F7:25:BB:93:43
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91856F6/879F388E869E11EB9A049627C4F9AE02/OghEIiV_9fF5pQ7L_ALr9yW7k0M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OghEIiV_9fF5pQ7L_ALr9yW7k0M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91856F6/879F388E869E11EB9A049627C4F9AE02/97CA5382063811ECB78EF227C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:3800:f::/48
Signature Algorithm: sha256WithRSAEncryption
a1:31:a8:5f:e7:fb:44:90:3b:aa:6c:2c:f4:17:61:9a:4a:ae:
77:cc:d2:ab:f1:44:d6:e2:fd:2c:ba:e9:26:0e:33:57:d5:c6:
4b:b0:f0:81:16:61:6c:d2:c7:2f:41:55:eb:42:eb:8c:24:e7:
df:16:68:0e:1b:79:b0:61:68:96:da:41:22:04:6a:8d:e0:d1:
bb:05:ed:7c:98:81:f0:26:9b:95:83:b1:24:7e:77:f1:97:1e:
4d:4f:35:3e:f9:f8:71:ca:04:38:06:74:0c:31:c7:dc:c4:2b:
6e:b3:8a:24:34:0e:f9:f5:c3:c2:e2:b7:64:8c:7b:7d:e4:79:
ec:18:10:24:ca:49:d6:3b:93:37:fc:d5:c7:8e:56:dc:a7:68:
97:27:38:4b:4f:3c:6b:b6:65:6d:8c:ca:75:f7:93:82:cd:63:
0d:91:9d:ca:9a:3d:63:11:7d:28:5f:1c:30:f1:8f:44:8d:a8:
0c:4a:bd:85:ec:e0:92:fc:3b:c3:ae:07:43:1b:38:39:66:85:
28:bf:ab:8a:60:9c:fd:17:75:4a:c3:76:e0:32:87:68:ee:39:
20:1f:1f:04:bb:e1:0a:aa:1d:ce:ab:2f:94:0a:8c:6e:46:b8:
ce:89:b5:07:dc:a3:12:37:70:c2:33:33:aa:7c:30:be:0f:18:
99:1f:8f:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 29 04:59:27 2024 by rpki-client on console-fra.rpki-client.org