Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/193F494EF15711EDA2F1D93CC4F9AE02.roa
File: 193F494EF15711EDA2F1D93CC4F9AE02.roa (raw, json)
Hash identifier: oMJa1azmiDxsCpLnUYvrceSZIxMCTEEWstXAuTRZS8U=
Subject key identifier: 2A:B1:3E:F3:DD:9C:83:C2:D6:2A:AB:8C:FA:36:13:60:42:09:44:66
Certificate issuer: /CN=A91A43EE/serialNumber=8EC333757E363A1711B00273250446FE1B4938DB
Certificate serial: 01C4
Authority key identifier: 8E:C3:33:75:7E:36:3A:17:11:B0:02:73:25:04:46:FE:1B:49:38:DB
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsMzdX42OhcRsAJzJQRG_htJONs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/193F494EF15711EDA2F1D93CC4F9AE02.roa
Signing time: Sat 03 Aug 2024 04:14:51 +0000
ROA not before: Sat 03 Aug 2024 04:14:51 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 63801
IP address blocks: 2001:df1:bc0::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 05 Sep 2024 03:06:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 452 (0x1c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A43EE/serialNumber=8EC333757E363A1711B00273250446FE1B4938DB
Validity
Not Before: Aug 3 04:14:51 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=66adaeba-fbb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:24:3d:a6:34:33:d7:01:52:75:fd:6f:54:4e:
53:cb:fe:96:a5:e8:69:5d:f1:57:ac:2d:4b:67:12:
a7:53:76:50:aa:6d:e3:e8:4b:a8:07:da:31:6b:0c:
bc:2b:f7:aa:d3:ce:79:ef:99:73:8a:1f:c7:c8:35:
f3:50:95:9e:89:a0:9f:09:c6:a9:3e:70:b6:47:27:
7e:d1:72:f9:21:17:e5:67:8c:64:5d:21:76:24:5f:
3c:ec:a3:df:83:8e:df:88:bd:24:a1:9f:0a:3c:61:
52:19:89:29:4c:39:64:b9:fd:55:ce:aa:a0:c3:97:
a5:da:c2:10:fe:d6:0c:b5:06:9b:19:af:d3:58:49:
50:7d:0c:f2:3a:b2:d6:6b:e8:93:3b:c7:c2:e2:19:
e4:a0:62:57:88:2d:00:6b:5f:28:d2:37:f8:a2:7d:
ed:9a:51:0a:da:57:74:8c:71:eb:f7:07:0e:8b:58:
c4:6e:b6:d0:cd:d5:ef:ff:46:3b:db:3d:4a:6d:33:
58:a8:fa:98:37:f7:2d:d6:a9:06:f6:4d:a5:54:62:
a4:22:5c:85:51:eb:81:7e:38:af:51:92:be:41:32:
a0:d7:80:d6:cf:93:cd:17:56:ff:67:b9:95:83:fd:
fa:12:c9:20:8d:c1:54:e1:f0:32:79:46:4c:22:48:
16:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:B1:3E:F3:DD:9C:83:C2:D6:2A:AB:8C:FA:36:13:60:42:09:44:66
X509v3 Authority Key Identifier:
keyid:8E:C3:33:75:7E:36:3A:17:11:B0:02:73:25:04:46:FE:1B:49:38:DB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsMzdX42OhcRsAJzJQRG_htJONs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/193F494EF15711EDA2F1D93CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:df1:bc0::/48
Signature Algorithm: sha256WithRSAEncryption
3a:a9:bd:4a:77:74:79:99:ef:fc:44:39:8c:b5:2e:7c:9d:84:
a1:d9:0b:2e:75:99:97:f0:e0:ef:1f:b2:6c:2b:39:f6:45:d5:
22:c4:25:43:da:98:76:1a:b1:17:2a:5b:d5:10:42:66:64:b7:
72:a5:8d:2f:5f:15:d7:d1:dc:da:a0:a7:a7:35:23:94:c9:8e:
3c:9f:75:be:b2:f0:f5:8e:1b:59:ac:b0:f6:e1:53:22:4d:a9:
07:a4:ca:f9:a1:b5:e4:94:e1:74:3e:c3:51:ac:5c:14:6a:7a:
2f:34:48:d5:8e:bd:66:b8:5a:50:60:97:e9:05:90:ef:78:14:
b3:56:8e:39:1f:ef:4f:28:fd:5c:e2:28:25:99:8b:25:ce:1d:
26:6c:67:14:40:b8:8f:37:71:86:14:ff:6d:f9:a7:69:ca:0d:
f7:20:ae:12:e3:b1:fc:10:09:61:11:f4:65:c9:a4:f0:9f:f0:
ea:6e:4e:fe:f1:b9:40:5d:4d:be:57:f1:fa:91:67:16:77:4f:
61:a3:19:92:3d:6f:04:8a:19:db:d4:76:ae:39:ff:0e:4e:69:
11:ee:c9:f2:52:b9:78:a1:cc:cb:c5:c4:01:bc:21:cf:bb:f6:
d8:43:69:e7:1c:cb:76:0a:75:a0:fd:37:90:41:22:bd:77:6f:
e2:13:02:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 5 04:24:57 2024 by rpki-client on console-fra.rpki-client.org