Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEDFD/54536B3EBC8811EA88EF3D49C4F9AE02/C7173EDAC6AD11EC90592C23C4F9AE02.roa
File: C7173EDAC6AD11EC90592C23C4F9AE02.roa (raw, json)
Hash identifier: JnRH2bwvYennRba6DexV2bGnssgKYLN2g17YE5jAfhE=
Subject key identifier: 36:E7:04:8B:BB:64:B2:E6:A0:53:B0:32:DA:B5:71:79:4E:6B:1A:8F
Certificate issuer: /CN=A91DEDFD/serialNumber=F45321D8785B8897D5A834B90EAB910C55909D85
Certificate serial: 080B
Authority key identifier: F4:53:21:D8:78:5B:88:97:D5:A8:34:B9:0E:AB:91:0C:55:90:9D:85
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FMh2HhbiJfVqDS5DquRDFWQnYU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DEDFD/54536B3EBC8811EA88EF3D49C4F9AE02/C7173EDAC6AD11EC90592C23C4F9AE02.roa
Signing time: Sun 02 Jun 2024 22:29:47 +0000
ROA not before: Sun 02 Jun 2024 22:29:47 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 7480
IP address blocks: 2404:c140:ecc6::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 22 Aug 2024 07:06:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2059 (0x80b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DEDFD/serialNumber=F45321D8785B8897D5A834B90EAB910C55909D85
Validity
Not Before: Jun 2 22:29:47 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=665cf25b-51f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:55:69:99:2d:37:19:44:d3:47:3c:b5:3c:46:
86:c0:30:b4:63:15:d4:f6:d2:66:cc:37:5c:3a:85:
90:52:09:38:7c:10:05:b3:7c:f3:15:12:0d:ec:85:
a2:40:ef:6b:2b:0d:0d:c3:d3:92:ba:c9:f7:94:e7:
e2:7d:42:d5:88:b2:15:c2:27:6e:19:87:43:28:c0:
ef:68:5a:24:2c:10:67:f0:3e:2d:3e:44:67:0b:92:
be:97:c5:69:82:16:3d:17:06:3a:4a:ac:f9:65:3a:
e6:80:d3:ca:ab:2b:5e:7f:f2:1d:78:59:88:f9:b6:
4d:d7:4c:e2:54:9d:d8:f1:96:4a:67:4b:fa:8b:64:
d4:1e:61:22:7b:d1:63:89:90:b1:04:df:67:99:69:
8c:62:7c:39:ec:35:a6:e0:24:5b:bc:7f:80:c2:bc:
a4:25:b8:bc:fa:2f:ef:94:67:01:ff:a6:f5:0d:86:
08:c3:0a:6d:69:3d:cd:0d:d2:52:49:cd:f6:50:9c:
0a:bb:2b:f4:40:6e:ab:a9:31:d7:01:ed:79:38:08:
5b:99:6d:73:bc:8f:6f:f6:3b:15:05:d6:53:c4:24:
d6:ec:6f:16:f2:90:d0:4d:e4:33:58:36:27:8d:76:
61:39:82:cb:03:8f:bb:39:07:38:3e:38:8b:3e:6d:
37:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:E7:04:8B:BB:64:B2:E6:A0:53:B0:32:DA:B5:71:79:4E:6B:1A:8F
X509v3 Authority Key Identifier:
keyid:F4:53:21:D8:78:5B:88:97:D5:A8:34:B9:0E:AB:91:0C:55:90:9D:85
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DEDFD/54536B3EBC8811EA88EF3D49C4F9AE02/9FMh2HhbiJfVqDS5DquRDFWQnYU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FMh2HhbiJfVqDS5DquRDFWQnYU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEDFD/54536B3EBC8811EA88EF3D49C4F9AE02/C7173EDAC6AD11EC90592C23C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:c140:ecc6::/48
Signature Algorithm: sha256WithRSAEncryption
a8:d4:35:fe:11:fd:11:24:6b:f8:12:f8:88:c3:df:9b:18:ae:
b9:12:8f:70:a1:e1:5a:cc:8d:34:cf:02:15:f9:aa:3a:85:02:
ca:1d:1d:0e:41:93:f4:b7:c3:4c:e0:09:8b:9d:22:02:f2:12:
33:cc:5e:ca:0d:ad:dd:a8:15:75:87:f0:48:19:7e:70:74:b1:
35:f7:c4:2c:08:95:cb:ac:0a:14:fe:e7:f6:ab:fe:dd:48:bf:
9c:bb:67:78:ff:8b:14:fb:bc:85:db:10:37:60:3c:64:8c:a6:
a8:1f:c2:b6:c2:44:3e:b5:32:82:6c:3c:a4:af:d7:96:99:ed:
53:fb:d4:fd:97:08:7c:ea:ec:63:e4:6b:a2:cd:ac:a9:54:ac:
74:ab:db:d8:19:ce:3d:a0:a0:2f:8f:a8:bd:81:44:ab:aa:15:
c2:84:e4:ee:47:81:18:da:64:90:30:c7:51:d8:e0:0f:93:ab:
93:1a:07:01:94:fe:9b:a1:09:69:94:86:2a:b1:ca:ca:6e:7a:
58:34:bc:35:97:52:82:3f:42:66:38:9b:89:4f:3a:42:6a:3c:
c4:b9:ba:59:8f:40:83:f0:d7:af:e0:36:ca:ca:9e:6d:bf:1f:
d2:50:35:91:13:e8:51:3e:46:28:a6:41:b1:7f:73:3a:ee:07:
3f:bf:26:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 22 09:45:30 2024 by rpki-client on console-ams.rpki-client.org