Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6DD8/F04852421D8611E286118CDE08B02CD2/6AB08D12561011E78FC5FE7FC4F9AE02.roa
File: 6AB08D12561011E78FC5FE7FC4F9AE02.roa (raw, json)
Hash identifier: No7vOHBj6iUviPdKCcZukM+d/imuASAwBhAyFOL1NF0=
Subject key identifier: A8:EE:20:BC:67:68:8B:A7:4B:BC:19:E3:6D:22:25:A7:A0:38:0B:FD
Certificate issuer: /CN=A91C6DD8/serialNumber=FD9FD457458218838776C0DC08EFB6155201E368
Certificate serial: 342C
Authority key identifier: FD:9F:D4:57:45:82:18:83:87:76:C0:DC:08:EF:B6:15:52:01:E3:68
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C6DD8/F04852421D8611E286118CDE08B02CD2/6AB08D12561011E78FC5FE7FC4F9AE02.roa
Signing time: Wed 12 Jun 2024 15:10:36 +0000
ROA not before: Wed 12 Jun 2024 15:10:36 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 10139
IP address blocks: 121.1.0.0/18 maxlen: 24
121.54.0.0/17 maxlen: 24
125.60.128.0/17 maxlen: 24
175.158.192.0/18 maxlen: 24
175.176.0.0/17 maxlen: 24
203.84.160.0/19 maxlen: 24
203.87.128.0/17 maxlen: 24
203.111.224.0/20 maxlen: 24
203.201.180.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 04 Sep 2024 07:20:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13356 (0x342c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C6DD8/serialNumber=FD9FD457458218838776C0DC08EFB6155201E368
Validity
Not Before: Jun 12 15:10:36 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=6669ba6c-fa91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:8f:88:cb:c1:c2:7b:35:f1:02:07:60:08:de:
20:3b:dd:55:e0:96:83:57:c6:08:79:f6:df:17:b6:
32:49:51:2c:42:48:13:e9:40:1b:a9:4f:68:5c:bb:
53:de:b5:ad:3c:1c:94:3c:ae:e8:2c:9e:cc:e0:f5:
89:57:9a:fe:6b:96:a6:00:e9:7d:09:48:ee:02:d2:
02:16:92:a7:54:74:6f:17:a4:35:a1:6f:29:07:d1:
6c:9e:36:b8:ea:2e:67:10:a5:f9:9e:32:8c:79:89:
b8:fd:e5:09:bc:46:ed:54:a7:d9:d0:47:19:87:ab:
db:11:61:22:42:dc:43:2c:6f:fe:ad:8c:cd:ed:09:
a9:49:c1:7e:2d:ec:68:ec:c6:77:d2:6d:dc:e1:2a:
ff:a7:fd:c6:54:2e:f7:52:bd:d8:b6:c8:fc:25:83:
34:7b:4f:9f:ac:58:2a:46:8f:cf:ff:03:5a:05:b8:
f6:fc:a5:e3:6a:62:d0:11:71:8d:0d:4c:42:14:c3:
a9:59:6e:87:45:9f:2d:be:8e:8d:b7:05:a7:c3:bf:
80:21:ee:3f:4f:57:65:7b:d8:c3:fe:4f:18:dc:17:
56:73:f9:f4:66:55:28:b6:f7:fa:62:c3:34:1d:8d:
e9:ef:76:ce:74:ed:75:ff:56:23:7e:c3:b2:28:e1:
97:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:EE:20:BC:67:68:8B:A7:4B:BC:19:E3:6D:22:25:A7:A0:38:0B:FD
X509v3 Authority Key Identifier:
keyid:FD:9F:D4:57:45:82:18:83:87:76:C0:DC:08:EF:B6:15:52:01:E3:68
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C6DD8/F04852421D8611E286118CDE08B02CD2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6DD8/F04852421D8611E286118CDE08B02CD2/6AB08D12561011E78FC5FE7FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
121.1.0.0/18
121.54.0.0/17
125.60.128.0/17
175.158.192.0/18
175.176.0.0/17
203.84.160.0/19
203.87.128.0/17
203.111.224.0/20
203.201.180.0/24
Signature Algorithm: sha256WithRSAEncryption
40:39:d4:1a:59:2b:13:84:42:de:19:00:ad:b6:3c:49:97:1f:
19:28:78:d1:ab:2b:17:56:a0:bb:d5:7a:47:ff:e1:03:f5:4d:
bc:3b:44:7f:f3:64:a3:51:f8:52:47:c8:a1:f6:62:fc:d8:b3:
55:88:19:06:c6:fe:24:d7:ff:3b:91:8b:14:81:d8:2f:19:81:
a5:7d:51:94:08:01:a1:59:54:1e:17:f7:f6:f6:d7:a7:e5:0a:
1e:a6:d0:bf:16:2f:57:0c:29:b4:5e:35:6d:bf:9c:95:06:57:
04:51:0e:5f:61:5c:64:ec:76:2c:3f:ce:07:06:f8:8b:06:d2:
fd:cb:26:50:c9:4f:9f:07:80:e5:13:67:03:33:e2:32:cb:da:
77:56:16:99:7b:4d:73:7a:d6:c5:59:53:2d:01:40:15:5b:5b:
ab:3b:67:f4:d6:8a:bc:0a:d0:b2:78:b4:fc:b2:45:c1:21:e0:
90:22:99:cf:53:15:1d:53:84:25:38:3b:52:37:84:2c:a2:74:
23:3b:ff:e9:13:3f:3b:7c:cd:78:2d:0c:5c:ad:6a:04:81:06:
f5:07:2f:4d:70:53:79:04:e7:a4:88:e8:57:96:c8:b9:ad:12:
5e:71:4b:2c:c2:5e:86:e1:f6:67:e4:e3:1f:4e:4d:81:d5:b4:
e8:95:cb:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 4 09:06:01 2024 by rpki-client on console-ams.rpki-client.org