Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/EDAFF62EE5AD11EE8B528176C4F9AE02.roa
File: EDAFF62EE5AD11EE8B528176C4F9AE02.roa (raw, json)
Hash identifier: R8dqxn+zHreSOTtX84vzolzaqZLVqGvyGI14sLcmbVs=
Subject key identifier: 43:92:A7:95:DA:84:C9:7F:DB:8E:50:06:EB:6E:F5:A0:DE:C5:F7:E8
Certificate issuer: /CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34
Certificate serial: 34C1
Authority key identifier: 4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/EDAFF62EE5AD11EE8B528176C4F9AE02.roa
Signing time: Tue 19 Mar 2024 05:02:48 +0000
ROA not before: Tue 19 Mar 2024 05:02:48 +0000
ROA not after: Sun 02 Mar 2025 00:00:00 +0000
asID: 150371
IP address blocks: 121.46.67.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 08 Apr 2024 09:28:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13505 (0x34c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34
Validity
Not Before: Mar 19 05:02:48 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=65f91c77-85fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:0e:a6:05:dc:90:bd:b1:bb:ab:66:f7:42:3b:
4a:5d:2f:83:65:6b:0f:43:12:83:bf:99:5c:7f:a1:
f0:64:29:9d:49:dc:c4:84:95:68:2f:1f:0b:a5:fc:
04:69:64:d6:06:e3:83:02:93:74:00:a7:bf:11:b5:
12:6b:4f:be:46:20:fe:53:cf:a8:4d:b5:3d:0c:8a:
62:4f:0f:72:b3:9f:04:4f:7b:40:80:08:bb:b0:a2:
57:97:5e:cf:ac:02:22:e0:0a:d9:8d:4b:4f:32:72:
b8:b7:52:e1:39:5f:4a:f4:5f:71:ae:fe:8a:96:57:
65:99:a8:7f:40:13:b8:58:2a:e3:8d:3f:cf:0c:24:
6c:48:10:3d:99:bb:71:a0:47:bc:73:8c:bf:46:65:
dd:28:f9:4d:36:cb:8f:92:f8:1a:50:88:c4:07:a8:
8a:2c:f9:ed:96:4b:f2:c6:c4:8a:cc:23:9d:83:ef:
67:2d:23:59:3f:db:ac:45:31:ff:d2:ea:59:a5:22:
ca:7a:12:c0:97:7b:74:35:b8:60:44:f9:50:11:4b:
6d:b4:a0:c9:db:a9:43:b8:0b:e3:eb:44:dc:f5:83:
bf:bc:8f:a4:06:47:6e:c0:80:e4:f5:88:bb:b2:e5:
e6:c1:07:f3:d0:75:cc:07:cb:4e:67:48:ad:19:5c:
16:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:92:A7:95:DA:84:C9:7F:DB:8E:50:06:EB:6E:F5:A0:DE:C5:F7:E8
X509v3 Authority Key Identifier:
keyid:4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/EDAFF62EE5AD11EE8B528176C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
121.46.67.0/24
Signature Algorithm: sha256WithRSAEncryption
62:0c:a4:e3:26:f1:a1:dc:8e:db:3d:5f:44:e2:82:03:14:c8:
1b:81:3a:e8:9f:90:0b:b4:3c:53:60:44:a2:42:8d:a6:0e:22:
38:e4:ad:2d:29:04:f0:ff:34:55:73:97:75:b0:62:d3:35:ce:
13:6f:1a:de:2c:63:fe:b4:4b:65:d7:62:1c:5e:c5:f9:75:4b:
8f:ec:f4:c4:34:1a:08:f6:e4:27:f0:f9:a1:34:c6:71:7c:a8:
cd:79:86:9b:97:5e:f5:13:3e:0b:d5:57:88:db:00:45:89:0d:
da:eb:7a:6e:2b:5a:62:cf:9d:96:e0:d1:c5:6c:09:65:14:a4:
27:7e:72:94:cb:34:c8:cd:8b:df:b1:b1:7c:ec:93:1d:0a:c3:
d2:31:55:e5:e3:72:c5:49:fb:84:e1:d6:b0:19:85:0d:70:20:
54:fb:ab:a9:cf:02:22:3f:e8:65:3f:65:2f:74:f2:c8:05:b7:
85:13:3c:4a:68:c7:f4:79:38:e5:d8:ab:8c:0f:31:ca:d1:3b:
15:a7:3f:ac:45:ae:ab:a9:16:3b:42:4a:e8:e7:1f:38:95:97:
cd:73:6f:63:74:b9:41:32:0b:a0:09:05:25:6e:89:bb:ef:77:
e7:28:41:92:24:a0:5b:fc:b9:97:ec:6d:f1:76:84:6d:9f:34:
c7:bd:57:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:57 2024 by rpki-client on console-ams.rpki-client.org