Route Origin Authorization
$ rpki-client -vvf rpki.sub.apnic.net/repository/A9192A980000/3/326130323a356265303a343a3a2f34382d3438203d3e203134363138.roa
File: 326130323a356265303a343a3a2f34382d3438203d3e203134363138.roa (raw, json)
Hash identifier: 8pxGXDRn6Meroa5ub0FQpadYyfvFrHj5fPUcfmd33fA=
Subject key identifier: 1E:51:26:A2:26:7F:9B:1C:0A:B2:7C:8B:07:F8:50:06:AF:A9:37:3E
Certificate issuer: /CN=5ead10be7ec295336e4b5680e0d393b677c3649a
Certificate serial: 3DA5EF7E2BCBE385762A06B8A636E676F0BF48D8
Authority key identifier: 5E:AD:10:BE:7E:C2:95:33:6E:4B:56:80:E0:D3:93:B6:77:C3:64:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xq0Qvn7ClTNuS1aA4NOTtnfDZJo.cer
Subject info access: rsync://rpki.sub.apnic.net/repository/A9192A980000/3/326130323a356265303a343a3a2f34382d3438203d3e203134363138.roa
Signing time: Thu 17 Aug 2023 08:54:27 +0000
ROA not before: Thu 17 Aug 2023 08:49:27 +0000
ROA not after: Thu 15 Aug 2024 08:54:27 +0000
asID: 14618
IP address blocks: 2a02:5be0:4::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 17 Aug 2023 10:06:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:a5:ef:7e:2b:cb:e3:85:76:2a:06:b8:a6:36:e6:76:f0:bf:48:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ead10be7ec295336e4b5680e0d393b677c3649a
Validity
Not Before: Aug 17 08:49:27 2023 GMT
Not After : Aug 15 08:54:27 2024 GMT
Subject: CN=1E5126A2267F9B1C0AB27C8B07F85006AFA9373E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:23:c2:80:64:4b:71:f0:fe:5a:5d:ef:3a:f0:
8f:95:72:80:13:b4:70:b5:1f:a0:f1:ec:04:75:cb:
dd:a0:7e:13:60:0b:8b:25:84:93:07:b2:ab:51:4a:
63:fc:d7:3e:0b:b3:02:71:35:c9:ee:a4:47:ce:76:
3a:97:94:60:f3:f5:9c:88:19:d9:f4:ec:b3:a1:e2:
c9:58:c1:6a:59:01:13:04:31:4a:af:40:98:c4:07:
71:b5:12:ef:f5:95:81:e2:37:1b:2c:e9:e3:6f:6c:
b1:ee:92:47:04:24:22:04:a1:0d:7d:91:5a:09:da:
6d:31:72:5c:f7:3a:f7:1f:2c:5c:df:40:23:6e:95:
75:79:2c:35:ce:56:5c:bc:92:09:34:0c:6a:a8:37:
79:4f:c1:a0:b1:f3:ab:58:ce:5d:28:e3:e4:cd:3a:
f7:e9:09:67:6f:20:73:be:8c:6b:10:1d:8d:8a:f8:
81:1b:37:f1:9a:f7:f8:94:32:54:2d:cd:95:64:d5:
b5:c9:3b:6a:1b:a0:45:19:f6:95:9a:2a:3f:f7:4f:
cd:8c:be:ff:d3:3d:36:8e:93:d6:af:a1:75:0a:40:
69:66:64:e1:4e:ff:43:52:cf:df:bf:69:81:5c:87:
a5:d4:8c:a1:c1:21:3f:ba:bd:4a:5a:05:4e:36:7c:
51:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:51:26:A2:26:7F:9B:1C:0A:B2:7C:8B:07:F8:50:06:AF:A9:37:3E
X509v3 Authority Key Identifier:
keyid:5E:AD:10:BE:7E:C2:95:33:6E:4B:56:80:E0:D3:93:B6:77:C3:64:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.sub.apnic.net/repository/A9192A980000/3/5EAD10BE7EC295336E4B5680E0D393B677C3649A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xq0Qvn7ClTNuS1aA4NOTtnfDZJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A9192A980000/3/326130323a356265303a343a3a2f34382d3438203d3e203134363138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:5be0:4::/48
Signature Algorithm: sha256WithRSAEncryption
b0:83:fe:2c:b5:65:b4:df:59:a2:38:9d:5e:79:71:50:0b:1f:
e2:f6:64:da:f7:a8:7e:91:a1:d0:64:03:86:34:9e:04:a7:e8:
f6:e6:63:97:60:b5:f2:2e:9a:d2:74:07:64:63:5a:ef:13:d3:
01:f9:49:5a:66:4d:0a:b0:56:7d:09:6a:6a:f2:12:34:f3:e4:
76:32:ab:8f:29:ed:08:3b:91:46:d8:50:49:df:8f:af:40:a5:
36:39:43:e4:65:45:98:97:2e:8c:50:c9:04:8a:a7:a5:9a:ba:
83:53:6d:e4:16:c5:d0:68:a1:73:1f:7c:da:79:b4:1c:6b:78:
31:0a:42:71:5b:27:f5:8a:91:2b:c5:e0:33:69:72:14:53:2f:
2a:70:c4:88:c0:41:f0:48:fc:1a:37:e8:27:a2:2c:3d:b4:39:
ac:17:0e:cf:1c:8b:81:f7:5f:4f:9c:99:8f:b0:69:ad:c9:35:
1e:2b:bc:47:22:d6:38:e9:6b:d0:46:19:54:04:05:ff:7c:4a:
d1:ca:8c:29:03:e7:ad:dc:3e:c0:ad:d8:54:1d:84:56:69:68:
29:6d:82:76:d7:01:a8:3b:89:87:73:7c:a5:ce:8f:a8:68:4e:
b3:bd:35:65:8a:45:cf:c6:49:46:48:c0:9c:ed:c9:12:ba:4e:
82:59:f6:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:25 2024 by rpki-client on console-fra.rpki-client.org