Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9192A7F/760E228E37DC11ECB5720A28C4F9AE02/828D0ECA1E7111EFBFFBC459C4F9AE02.roa
File: 828D0ECA1E7111EFBFFBC459C4F9AE02.roa (raw, json)
Hash identifier: K15Qliv3Zcc9SMrG80evX7XhpwDHG6EiAFfZCabYric=
Subject key identifier: 67:3D:6A:53:EB:67:29:13:0B:0B:93:DA:B3:B9:F1:EB:D8:01:EF:62
Certificate issuer: /CN=A9192A7F/serialNumber=67F37C50CA33CF4F508578D3ACCC6DAA4C518CB4
Certificate serial: 040D
Authority key identifier: 67:F3:7C:50:CA:33:CF:4F:50:85:78:D3:AC:CC:6D:AA:4C:51:8C:B4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z_N8UMozz09QhXjTrMxtqkxRjLQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9192A7F/760E228E37DC11ECB5720A28C4F9AE02/828D0ECA1E7111EFBFFBC459C4F9AE02.roa
Signing time: Thu 30 May 2024 10:43:54 +0000
ROA not before: Thu 30 May 2024 10:43:54 +0000
ROA not after: Fri 31 Jan 2025 00:00:00 +0000
asID: 150690
IP address blocks: 2400:a6a0:200::/40 maxlen: 40
Validation: Failed, certificate revoked on Mon 15 Jul 2024 07:35:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1037 (0x40d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9192A7F/serialNumber=67F37C50CA33CF4F508578D3ACCC6DAA4C518CB4
Validity
Not Before: May 30 10:43:54 2024 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=6658586a-699c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:4e:c7:34:2f:67:44:96:e8:c3:65:25:9a:60:
46:3d:a2:92:44:a5:ac:20:e3:dc:a4:52:1b:d4:5f:
ff:e7:b4:f6:0f:69:61:91:fa:9f:a1:db:57:e4:ce:
25:fe:89:3a:52:66:2e:4c:c4:32:5a:dd:0c:aa:21:
38:eb:40:9c:73:c3:4e:7e:08:9f:ea:ca:be:5f:d2:
02:e4:6f:79:8d:02:d4:5c:1f:8f:89:e7:81:4e:cc:
cd:23:5e:1f:7d:0b:fa:1a:be:82:95:a2:30:88:e7:
a5:cb:28:89:52:e0:3f:fa:ea:89:38:e7:20:0f:60:
4b:d3:86:c2:3e:29:23:17:40:2f:0d:78:0e:0e:7a:
ff:22:80:5b:9c:96:fe:b2:67:b9:e9:97:f9:ef:a3:
e8:d7:1e:e0:a0:9b:9c:fd:cf:89:21:6a:e8:fa:c3:
67:dc:37:aa:e3:b4:da:ea:a2:59:47:45:67:05:31:
8f:0d:8f:25:01:be:31:c2:62:35:86:88:4a:f6:cc:
33:d9:0a:a3:fb:1d:ca:9d:e5:e8:08:a3:4e:0d:c0:
4c:2e:26:b3:f3:88:f4:da:d4:9f:0b:82:c4:30:eb:
06:03:21:d2:ab:c6:4f:08:b8:29:b8:41:78:96:45:
cf:c9:68:75:a7:81:fc:6b:ee:48:68:9c:8c:4e:c7:
b2:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:3D:6A:53:EB:67:29:13:0B:0B:93:DA:B3:B9:F1:EB:D8:01:EF:62
X509v3 Authority Key Identifier:
keyid:67:F3:7C:50:CA:33:CF:4F:50:85:78:D3:AC:CC:6D:AA:4C:51:8C:B4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9192A7F/760E228E37DC11ECB5720A28C4F9AE02/Z_N8UMozz09QhXjTrMxtqkxRjLQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z_N8UMozz09QhXjTrMxtqkxRjLQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192A7F/760E228E37DC11ECB5720A28C4F9AE02/828D0ECA1E7111EFBFFBC459C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:a6a0:200::/40
Signature Algorithm: sha256WithRSAEncryption
1b:a9:8c:ac:0c:a9:37:27:3d:bd:76:73:67:4f:da:4c:81:fb:
66:fd:93:ec:8c:fd:8e:05:07:f3:0a:4b:6c:e4:21:85:93:be:
0f:32:5f:f6:f1:78:e6:d2:61:62:14:c0:43:ff:be:1c:04:76:
ac:37:f2:81:d3:11:e3:13:b6:c6:c0:53:6d:49:9a:81:f2:a9:
06:71:53:82:f6:b2:4a:b4:b5:b2:1c:3a:bb:c1:7d:42:be:69:
04:24:45:b1:3b:2a:21:8d:c3:c3:01:03:f7:70:db:7f:5a:ce:
da:38:a1:0f:54:66:f1:16:56:92:e8:49:fe:9d:9d:e6:22:c6:
e9:3d:f2:01:2b:4b:ac:f2:2a:38:90:d1:c7:19:c7:9a:4b:9e:
8f:15:51:f0:1e:62:a4:41:a7:8d:02:f2:3a:32:ea:b5:7c:1a:
24:d0:d6:3c:7e:04:ed:96:e2:41:17:61:64:68:35:c2:d2:32:
0e:23:64:20:66:ca:82:86:07:1a:9a:16:70:10:63:f4:97:32:
21:18:d1:23:36:90:9e:8b:ef:d8:4d:cf:72:c5:fc:0d:e9:2e:
87:01:8c:58:ff:e3:ce:64:77:c6:a5:49:e3:f3:50:68:98:e9:
89:8f:47:e4:1a:3d:05:d5:63:1c:3a:a7:6d:d1:a5:b3:1d:49:
5b:ee:99:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 15 09:57:39 2024 by rpki-client on console-fra.rpki-client.org