Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9BC6/489091CE266711ECB9C22C77C4F9AE02/D38B0388BC6E11EDBF779885C4F9AE02.roa
File: D38B0388BC6E11EDBF779885C4F9AE02.roa (raw, json)
Hash identifier: ViAdB/xBHSMGYlUErED4plMmWbb6+mauKoJch77z17Q=
Subject key identifier: 13:3D:75:F5:C1:B9:D0:D1:31:44:BA:67:05:12:C7:8B:C3:4B:3B:46
Certificate issuer: /CN=A91B9BC6/serialNumber=EF5B497FFD8B259EE9EA157B0222B110266CF59F
Certificate serial: 0344
Authority key identifier: EF:5B:49:7F:FD:8B:25:9E:E9:EA:15:7B:02:22:B1:10:26:6C:F5:9F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/71tJf_2LJZ7p6hV7AiKxECZs9Z8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B9BC6/489091CE266711ECB9C22C77C4F9AE02/D38B0388BC6E11EDBF779885C4F9AE02.roa
Signing time: Mon 06 Mar 2023 22:32:50 +0000
ROA not before: Mon 06 Mar 2023 22:32:50 +0000
ROA not after: Sat 30 Dec 2023 00:00:00 +0000
asID: 141726
IP address blocks: 2001:df7:b780::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 836 (0x344)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B9BC6/serialNumber=EF5B497FFD8B259EE9EA157B0222B110266CF59F
Validity
Not Before: Mar 6 22:32:50 2023 GMT
Not After : Dec 30 00:00:00 2023 GMT
Subject: CN=64066a12-ee58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:6b:ea:d1:9f:f2:a2:50:21:8b:0e:10:33:52:
9c:48:92:db:d4:c1:07:1c:c7:8d:f2:b7:21:c8:17:
39:6b:5d:65:52:26:03:d9:6a:fa:d3:1a:63:c6:d6:
09:f9:bb:51:a8:f7:81:8f:31:56:96:f2:ba:78:1d:
4e:c3:36:36:b1:6f:75:9e:f4:1d:f2:3c:8b:8d:8c:
a6:79:be:df:5f:a2:3c:42:40:ff:66:61:bc:6d:65:
79:99:98:fe:32:1e:ab:56:9a:30:8d:60:a7:af:54:
1b:64:90:2c:a3:43:93:a4:91:31:af:9f:f1:d5:6e:
fb:e2:33:fa:12:46:51:8a:00:43:b5:56:06:28:23:
54:ac:94:7e:b8:5b:b6:bc:c9:ee:95:62:fa:8c:70:
69:ce:a0:c4:8c:3a:43:e0:e3:54:32:1b:39:5f:04:
da:35:09:49:76:4d:20:25:4a:68:ca:e9:32:f8:89:
74:d3:b6:b3:ef:b5:ad:cb:3d:fb:d0:52:6b:70:89:
17:d8:d6:bb:79:6d:1c:e5:83:63:6d:2f:93:81:b5:
b0:c3:f9:1e:fe:23:40:6f:0f:ae:1d:26:12:11:41:
00:9c:37:8e:16:92:05:aa:e6:28:d6:cd:07:57:4d:
a6:d5:fc:68:11:6d:43:69:0e:83:4a:3f:31:3f:5d:
08:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:3D:75:F5:C1:B9:D0:D1:31:44:BA:67:05:12:C7:8B:C3:4B:3B:46
X509v3 Authority Key Identifier:
keyid:EF:5B:49:7F:FD:8B:25:9E:E9:EA:15:7B:02:22:B1:10:26:6C:F5:9F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B9BC6/489091CE266711ECB9C22C77C4F9AE02/71tJf_2LJZ7p6hV7AiKxECZs9Z8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/71tJf_2LJZ7p6hV7AiKxECZs9Z8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9BC6/489091CE266711ECB9C22C77C4F9AE02/D38B0388BC6E11EDBF779885C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:df7:b780::/48
Signature Algorithm: sha256WithRSAEncryption
c1:75:6c:66:b3:89:fa:e6:82:f4:4d:c9:dd:b2:25:b1:fd:02:
db:de:02:e3:a5:5b:82:9a:66:3e:d3:a6:ca:00:af:e3:10:37:
55:9e:2a:e3:16:59:9a:2d:95:32:cf:35:e0:52:b8:1e:07:b1:
5a:93:77:bc:26:1e:17:7e:5c:4a:d4:8c:c5:14:f7:71:37:d0:
6c:aa:db:53:7d:70:92:4b:95:dc:e3:82:e5:ce:e4:22:3c:73:
8e:bb:e6:68:19:4b:8a:e2:69:5b:4f:b4:6c:8a:4a:ba:32:44:
ff:12:be:54:ac:e3:e7:8f:4e:63:11:54:ec:2d:ed:dd:d6:9f:
2f:c7:5f:63:66:2f:be:b2:7d:b3:6d:50:16:cd:d0:d1:ab:37:
03:9a:01:83:84:10:95:10:64:be:b9:77:46:03:9f:c5:d3:33:
51:05:6c:ad:74:b6:25:68:83:ce:31:61:70:a1:d5:7b:d4:b8:
26:bf:4b:e4:a6:51:1c:8b:18:b7:61:ca:79:d7:aa:79:dc:b8:
f2:87:20:78:2b:44:ce:2f:1c:52:f8:b6:a3:24:81:2e:91:4a:
87:49:80:8e:26:7c:b2:b9:d1:94:18:c7:b1:f3:d8:be:00:e9:
4e:1c:a3:62:a3:93:03:e2:fb:d5:a3:41:a6:f5:59:71:4a:53:
af:88:02:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 7 09:15:32 2023 by rpki-client on console-fra.rpki-client.org