Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/35FD7E10AD8B11EFB7C06F75C4F9AE02.roa
File: 35FD7E10AD8B11EFB7C06F75C4F9AE02.roa (raw, json)
Hash identifier: oUhC7qK2dy801LIUYjz67+sGCUZhgJcDPdWeXERe7Fk=
Subject key identifier: 1A:A6:5F:DB:E3:C6:41:CF:32:5A:3D:43:8E:40:DF:57:BE:1C:88:C2
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 1DEB
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/35FD7E10AD8B11EFB7C06F75C4F9AE02.roa
Signing time: Thu 28 Nov 2024 13:18:09 +0000
ROA not before: Thu 28 Nov 2024 13:18:09 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 6079
IP address blocks: 180.178.185.0/24 maxlen: 24
180.178.186.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 16 Dec 2024 17:49:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7659 (0x1deb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Nov 28 13:18:09 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=67486d91-8ee8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:23:19:de:4d:ec:3b:0a:74:d9:75:d3:6f:24:
aa:60:fc:ea:b8:bd:ce:a5:04:b2:33:69:92:88:25:
77:fc:0f:b2:80:74:e8:e2:f6:11:4a:d1:7b:c3:ef:
9a:d3:c4:85:7c:70:9d:83:77:7c:5e:94:5f:1c:9c:
18:63:a8:7e:ee:e8:89:f4:9c:10:f7:ce:7e:42:46:
45:4d:67:54:6b:5b:cb:19:3e:52:96:b2:5a:01:ea:
bc:54:5b:b9:af:ec:b6:66:cb:45:7a:e6:ae:7f:1e:
24:16:10:9c:f1:7e:a9:a4:15:de:60:34:a7:81:bd:
de:60:c8:d1:8f:6d:32:46:6a:c0:36:21:fa:0d:89:
f6:b9:af:86:2a:64:98:64:12:b8:02:70:1e:d9:09:
b1:13:cc:72:ab:0c:c6:51:66:b2:41:a7:02:29:01:
87:44:51:35:ed:87:f8:93:03:96:10:18:b4:1c:67:
56:d6:6f:38:28:a3:7b:42:37:36:ce:b8:1e:2e:1c:
ca:96:de:de:10:cc:c5:da:1a:94:85:13:08:b0:80:
71:1a:21:4f:44:b5:71:5a:de:28:17:30:37:f2:7f:
a3:08:3a:6f:01:ed:0c:4c:ee:79:fd:2d:6d:9c:0c:
8f:14:93:81:57:54:25:6c:d0:30:e5:be:06:24:0e:
f2:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:A6:5F:DB:E3:C6:41:CF:32:5A:3D:43:8E:40:DF:57:BE:1C:88:C2
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/35FD7E10AD8B11EFB7C06F75C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
180.178.185.0-180.178.186.255
Signature Algorithm: sha256WithRSAEncryption
a1:23:1f:fb:1e:4b:d2:1d:58:66:6f:89:52:ac:0c:58:4c:24:
a6:cf:66:c2:85:d5:17:ef:c0:a7:3e:55:f1:9e:57:cd:bc:1a:
f3:72:f4:e1:08:27:fa:89:c9:2a:f7:25:38:70:87:88:03:c5:
4c:51:9a:64:1c:89:61:c9:94:32:6b:40:29:22:98:c9:73:a6:
ee:a2:bf:73:c7:04:e9:bd:9a:4f:ff:90:01:b8:9d:df:38:6c:
10:63:db:44:be:13:01:d2:6c:0e:2c:bd:ad:9d:01:f8:56:9d:
94:a2:78:ff:f2:ed:b9:97:1f:1d:a1:58:92:bd:d0:c5:d7:13:
ee:44:ae:84:d3:99:94:8c:5d:34:fe:06:7b:00:0d:98:3a:cb:
bf:ff:fd:43:e2:a6:05:55:69:a1:d1:6a:7d:bb:02:71:85:8e:
27:0f:5a:e4:26:15:f7:05:de:39:4b:b7:58:3d:ff:13:12:09:
0b:db:3f:ca:24:08:c2:23:8f:1a:bc:64:29:f0:5f:f0:13:15:
d9:cb:e6:98:d7:ce:69:43:db:f3:8c:b8:20:ba:4f:22:33:d7:
c4:b7:45:8d:54:60:16:33:bd:51:f5:9d:e5:1e:a9:5b:f2:6d:
2a:b2:6d:a2:b8:fd:26:8c:01:88:dc:a1:0f:42:a3:e0:1b:88:
72:ad:9a:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 01:48:26 2025 by rpki-client