Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9194C67/C2A761908E8911EEBC286358C4F9AE02/50E97B508E8A11EE9BFC5759C4F9AE02.roa
File: 50E97B508E8A11EE9BFC5759C4F9AE02.roa (raw, json)
Hash identifier: rzMtP7ZQSlBfGWv/5R4aDE+OmJowM8g0ID9eotgDr8s=
Subject key identifier: 92:D2:68:A4:EE:58:80:9E:BA:A6:C6:59:52:84:8C:47:35:76:C4:6C
Certificate issuer: /CN=A9194C67/serialNumber=22D021488AE1317FC95C74A38825254AB7926137
Certificate serial: 04
Authority key identifier: 22:D0:21:48:8A:E1:31:7F:C9:5C:74:A3:88:25:25:4A:B7:92:61:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItAhSIrhMX_JXHSjiCUlSreSYTc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9194C67/C2A761908E8911EEBC286358C4F9AE02/50E97B508E8A11EE9BFC5759C4F9AE02.roa
Signing time: Wed 29 Nov 2023 07:38:59 +0000
ROA not before: Wed 29 Nov 2023 07:38:59 +0000
ROA not after: Sun 02 Mar 2025 00:00:00 +0000
asID: 149311
IP address blocks: 36.50.12.0/23 maxlen: 23
36.50.12.0/24 maxlen: 24
36.50.13.0/24 maxlen: 24
2001:df3:2fc0::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 29 Nov 2023 10:06:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9194C67/serialNumber=22D021488AE1317FC95C74A38825254AB7926137
Validity
Not Before: Nov 29 07:38:59 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=6566ea92-944d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:2b:b4:fe:37:bb:42:72:cb:19:f2:83:93:ee:
35:3d:4d:03:6f:1a:a2:66:dd:99:96:46:54:59:cf:
22:c2:61:84:ff:9f:c6:94:a9:03:a3:b7:6d:96:c5:
f0:4b:d8:3e:01:6a:33:87:19:6b:79:4e:fe:df:56:
2f:aa:63:48:22:21:c3:ac:32:a6:1d:3c:a2:eb:bf:
e7:ad:bc:e2:2b:35:6a:d8:ad:c7:03:02:0b:a8:4c:
03:f4:e0:74:2a:ff:9f:02:fd:9f:81:e6:02:fd:4f:
30:ae:11:b2:a1:e0:22:c5:e4:bd:63:2c:a7:e4:93:
a5:bf:c2:66:dd:32:64:58:c4:14:a2:14:a0:3a:66:
0e:76:48:54:1c:55:57:8e:2f:2f:c0:27:18:e7:1c:
27:8d:8c:8d:b3:34:bd:51:97:ef:d0:03:c1:1a:8d:
db:74:74:32:32:de:db:a9:cd:3c:27:ed:2f:cb:9a:
19:e8:b3:b5:ee:3d:3c:35:6c:70:4c:9a:3d:82:18:
1a:36:e0:65:d9:c7:d2:70:69:c4:53:86:5c:02:42:
59:f1:ff:c8:d9:ca:b5:e2:a4:72:6e:52:98:f0:29:
05:c9:95:23:85:49:72:83:c7:ab:3b:94:45:47:f0:
ca:de:d8:c9:61:33:8c:77:01:60:c9:bd:06:81:cd:
32:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:D2:68:A4:EE:58:80:9E:BA:A6:C6:59:52:84:8C:47:35:76:C4:6C
X509v3 Authority Key Identifier:
keyid:22:D0:21:48:8A:E1:31:7F:C9:5C:74:A3:88:25:25:4A:B7:92:61:37
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9194C67/C2A761908E8911EEBC286358C4F9AE02/ItAhSIrhMX_JXHSjiCUlSreSYTc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItAhSIrhMX_JXHSjiCUlSreSYTc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194C67/C2A761908E8911EEBC286358C4F9AE02/50E97B508E8A11EE9BFC5759C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
36.50.12.0/23
IPv6:
2001:df3:2fc0::/48
Signature Algorithm: sha256WithRSAEncryption
10:76:09:c2:37:b7:d7:91:e0:68:8b:90:1c:23:8f:dc:b4:99:
e9:85:06:99:5d:13:13:3f:f1:6a:9f:05:48:2e:ec:e8:a9:4c:
d6:5d:e7:72:c7:c6:be:7c:be:09:41:fe:29:83:03:bf:76:54:
00:c6:8a:d8:d8:f7:34:63:2e:ce:22:32:47:15:5a:99:68:a5:
2d:29:3d:a7:15:b0:96:87:dd:9d:df:6a:5f:3d:29:a7:26:90:
e4:d8:27:f6:55:77:be:8c:6e:68:fd:56:e5:7a:f8:92:90:5f:
3c:51:74:a8:16:9b:d6:10:39:51:83:a8:0f:7c:8a:1a:6d:92:
1a:f6:78:04:b9:cf:4d:80:19:f0:03:7b:87:d5:fe:6d:0e:98:
1d:83:42:2f:af:ab:f8:74:d9:bd:4d:52:00:56:28:88:32:88:
63:2b:d3:0a:f0:ad:60:d3:2f:4d:41:d2:d4:15:40:03:75:8c:
54:5f:c0:d8:9d:5c:b4:32:47:18:a5:22:d1:09:36:3a:1d:40:
73:a2:0a:19:67:5a:ec:7f:8f:31:43:15:49:09:ff:41:c3:11:
a4:5c:9b:85:cc:6c:0b:9e:cb:b0:a6:d0:5d:f4:53:42:26:7f:
06:20:c1:4f:d4:4e:fe:6b:32:d2:4c:c3:32:04:ee:02:28:59:
39:b5:6d:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:47 2024 by rpki-client on console-ams.rpki-client.org