Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/06D6AC104C1D11ECB4B45B37C4F9AE02.roa
File: 06D6AC104C1D11ECB4B45B37C4F9AE02.roa (raw, json)
Hash identifier: TFVGUhXPk6t77wmxlkSlvQGhcHeA6yzYKo528wt5Orc=
Subject key identifier: 21:58:0A:C3:77:8E:C8:D0:6E:BB:69:06:33:3C:DB:A8:D0:28:6C:2F
Certificate issuer: /CN=A91E170B/serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268
Certificate serial: 3135
Authority key identifier: 6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/06D6AC104C1D11ECB4B45B37C4F9AE02.roa
Signing time: Tue 23 Nov 2021 05:20:09 +0000
ROA not before: Tue 23 Nov 2021 05:20:09 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 17821
IP address blocks: 2406:6400:2000::/35 maxlen: 36
Validation: Failed, certificate revoked on Fri 25 Feb 2022 06:20:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12597 (0x3135)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E170B/serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268
Validity
Not Before: Nov 23 05:20:09 2021 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=619c7a09-3854
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:c1:68:17:cb:e0:a9:fc:a6:dd:3e:d1:9a:74:
d3:88:73:5c:78:63:b9:13:2c:94:05:c7:90:5d:82:
ad:3d:f6:e1:91:21:39:43:33:5d:e4:4f:00:6a:a9:
bb:fa:e9:77:1c:65:7d:90:90:f9:5c:92:ad:0f:88:
4f:ee:70:ee:e7:f6:a2:60:3a:fa:f3:32:f1:9d:ef:
08:6a:21:30:26:ab:00:9c:b0:87:dd:22:b1:8c:36:
99:6a:dc:82:5b:90:0d:66:72:39:06:85:55:dc:1c:
1b:32:dd:56:5c:44:08:77:9f:2b:65:ce:6e:8d:b2:
e2:15:b5:6e:99:6b:a5:dc:32:da:df:9a:a4:9e:60:
18:cb:5a:c7:13:62:a6:0b:a7:ff:97:65:4e:a1:c9:
f3:5e:fc:f7:c8:d0:dc:69:e3:6d:55:e4:a8:7a:46:
0b:82:94:89:e1:ff:f1:98:0a:09:2d:69:9c:87:16:
c9:95:2d:9e:79:fa:c4:94:5d:c6:a8:f8:39:0d:8e:
51:79:b6:db:4c:92:a1:f4:d2:8e:07:e2:f4:85:fa:
2e:09:33:d3:1a:1d:f8:ff:9f:30:31:9e:b0:11:d7:
f8:f4:68:78:68:e2:ba:b9:9c:97:27:67:a3:b9:0a:
a3:28:f0:f2:25:b9:72:be:93:2b:c1:0a:fd:44:b4:
9a:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:58:0A:C3:77:8E:C8:D0:6E:BB:69:06:33:3C:DB:A8:D0:28:6C:2F
X509v3 Authority Key Identifier:
keyid:6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/06D6AC104C1D11ECB4B45B37C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:6400:2000::/35
Signature Algorithm: sha256WithRSAEncryption
1f:a9:00:0e:ce:88:49:92:f8:bc:bd:04:04:06:d4:4d:69:ac:
d3:fe:ca:05:c1:7f:61:66:4d:7f:9b:dd:fc:9d:36:8d:c3:61:
d2:8b:45:ff:dd:6e:0a:1a:3b:be:2d:58:4c:01:df:bd:be:89:
b6:bb:66:f8:5f:eb:aa:4d:3d:89:2a:bb:2a:15:ef:72:6a:e0:
e3:be:c7:c8:8c:82:72:24:00:47:4d:4f:51:76:5f:7e:4e:72:
8e:75:f1:32:a3:91:ee:98:32:0f:88:c8:8d:77:76:3e:39:2e:
3d:1a:19:3e:67:72:31:96:19:61:89:fb:09:87:20:5a:ae:15:
c2:35:18:8f:f6:2f:0c:bf:5e:59:11:d3:0c:84:91:9b:83:bb:
94:a2:50:64:2f:8e:1c:ed:2b:eb:5d:df:95:e4:50:68:05:c1:
b6:8c:87:a2:ab:9d:be:47:1f:55:c8:68:fa:87:12:8b:c8:21:
b6:7c:46:e8:d1:2c:26:52:1a:fc:88:4b:a9:ba:eb:46:f1:2d:
d4:68:56:fb:2f:1a:a2:30:5c:51:af:8c:bc:e8:a0:ef:b1:c0:
6d:46:b0:40:20:97:55:48:46:44:4e:9d:c5:38:d9:32:51:25:
5e:66:5b:35:f6:8d:26:aa:20:77:4c:e2:cd:21:f0:69:e7:66:
67:67:df:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:44 2024 by rpki-client on console-fra.rpki-client.org