Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/7D3AA2CA2E5C11EF88FF5627C4F9AE02.roa
File: 7D3AA2CA2E5C11EF88FF5627C4F9AE02.roa (raw, json)
Hash identifier: MYp4X9V/o3sxC9JlavX3G+5j1XXkRPh0akfeAc3rltw=
Subject key identifier: C7:7D:2E:C0:64:C9:72:26:3B:F0:42:06:88:2A:DC:B6:E6:B2:7C:A1
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 13DB
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/7D3AA2CA2E5C11EF88FF5627C4F9AE02.roa
Signing time: Thu 20 Jun 2024 13:05:09 +0000
ROA not before: Thu 20 Jun 2024 13:05:09 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 131275
IP address blocks: 223.29.232.0/24 maxlen: 24
223.29.234.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 25 Jun 2024 06:40:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5083 (0x13db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Jun 20 13:05:09 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=66742904-201e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:92:3a:3e:84:00:7f:00:51:16:6f:dd:ef:fb:
1f:87:25:70:ec:ed:d2:84:43:5f:a3:77:83:8f:4d:
0a:e4:0d:ff:d5:69:ba:01:bb:ad:a9:16:3a:10:70:
ea:6f:1d:4a:d3:da:6e:d2:73:dc:7d:15:61:69:ca:
d0:de:13:b5:b6:52:75:17:31:36:de:86:51:42:75:
6a:12:ee:6f:15:a0:65:9b:28:c2:b9:76:bf:c4:e5:
de:f1:94:5d:55:4d:50:28:33:19:71:20:91:2e:ab:
4e:98:62:f3:ce:d3:3f:55:be:1f:e4:94:f9:05:ad:
23:05:51:37:5e:85:18:11:59:c9:31:d3:27:72:86:
89:02:47:0a:41:2a:5a:b0:a2:21:9f:f8:80:9a:29:
b1:bc:bf:ba:f7:3c:a3:ca:72:38:c5:51:84:d7:84:
ab:d1:20:1a:ba:5d:14:21:8d:49:e3:e2:e7:17:e4:
ed:ac:8f:dc:54:60:3f:f6:9e:cf:31:5d:c2:e8:e2:
48:4d:88:eb:fa:f5:37:bd:03:da:b1:7b:42:60:f0:
28:2f:d5:4c:aa:1f:41:75:36:8d:74:4c:ec:81:0e:
9b:dc:94:5f:ff:17:2e:c0:3d:76:e9:31:83:20:07:
dc:00:ad:84:9a:4c:31:c9:9d:77:1c:3a:48:c3:7c:
f6:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:7D:2E:C0:64:C9:72:26:3B:F0:42:06:88:2A:DC:B6:E6:B2:7C:A1
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/7D3AA2CA2E5C11EF88FF5627C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
223.29.232.0/24
223.29.234.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:e3:92:97:f9:96:6a:11:a7:53:c9:44:b7:4b:27:5f:a4:8d:
75:91:26:d1:14:a6:01:28:26:85:ca:b2:3e:ee:02:7c:dc:82:
f9:e6:78:02:51:f1:68:f8:42:d0:6a:f0:c2:ef:ed:ae:ca:27:
b3:56:0b:e8:ec:69:c6:b6:f3:b3:24:a1:ef:85:9b:a7:38:d9:
58:be:3b:e7:c5:7a:90:9e:a6:03:49:6d:57:2b:82:48:62:9b:
ee:52:b9:1b:b5:af:c4:bd:b5:9e:fa:c7:78:15:a9:67:b6:ca:
60:44:38:66:b2:10:2f:25:24:15:76:7e:4b:05:31:68:93:43:
c4:7f:81:59:e3:3b:6c:8b:9a:37:02:1b:cf:90:ed:ef:2d:36:
2f:c7:78:c0:61:90:85:f3:7a:4c:a0:ef:83:d0:c3:4d:45:24:
86:63:72:00:b6:79:d8:f6:59:8b:76:ad:c4:cd:c3:7d:20:9c:
e9:75:43:c1:b9:a0:8b:eb:4f:ff:f5:aa:32:91:a3:45:f9:3d:
45:b0:55:b3:1d:8f:7e:a6:58:3b:d0:0f:59:60:a6:94:a3:40:
ee:0d:b7:b6:c5:79:b1:eb:09:19:01:70:57:37:49:7b:63:9a:
d6:cf:0b:a6:47:81:ca:0b:b6:91:8e:a3:11:d3:8f:43:38:8a:
0c:d2:98:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 02:02:38 2025 by rpki-client