Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91187FD/55ED6A1610A011EE93493C52C4F9AE02/E6EED5667BE611EEB4BCDC68C4F9AE02.roa
File: E6EED5667BE611EEB4BCDC68C4F9AE02.roa (raw, json)
Hash identifier: i8HOZ9/9xNtl4SRtKF6Za4l7yg3tZp6RIx9/x7uqzKY=
Subject key identifier: 2D:09:57:61:EB:97:C0:19:6D:AE:8D:9B:2B:37:A1:F2:8B:67:90:8D
Certificate issuer: /CN=A91187FD/serialNumber=68852AB7F2714FCF54D75F0AAE3068ADC38B35CC
Certificate serial: 66
Authority key identifier: 68:85:2A:B7:F2:71:4F:CF:54:D7:5F:0A:AE:30:68:AD:C3:8B:35:CC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIUqt_JxT89U118KrjBorcOLNcw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91187FD/55ED6A1610A011EE93493C52C4F9AE02/E6EED5667BE611EEB4BCDC68C4F9AE02.roa
Signing time: Sun 05 Nov 2023 14:23:34 +0000
ROA not before: Sun 05 Nov 2023 14:23:34 +0000
ROA not after: Mon 30 Sep 2024 00:00:00 +0000
asID: 151954
IP address blocks: 2401:3fa0::/64 maxlen: 64
Validation: Failed, certificate revoked on Tue 14 May 2024 15:10:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102 (0x66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91187FD/serialNumber=68852AB7F2714FCF54D75F0AAE3068ADC38B35CC
Validity
Not Before: Nov 5 14:23:34 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=6547a566-7b66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:6a:8d:45:a5:59:0e:89:c9:39:83:f6:3b:e6:
d9:33:95:e1:c9:ff:33:5a:70:e6:0a:d7:db:f8:be:
3a:2c:45:b6:01:d8:57:3f:a6:e5:e0:60:b8:fe:31:
f4:f0:a1:5d:26:19:45:61:16:6b:9e:b0:47:47:e3:
12:34:da:13:75:a3:38:c8:ab:9f:cf:4c:ed:32:2a:
2d:a9:a7:e7:25:2a:74:9d:c1:90:74:66:01:17:8e:
e4:84:5e:09:8d:24:8e:18:d3:bf:59:11:1d:7b:dd:
98:b4:c6:58:be:aa:10:cb:f9:a8:17:2b:39:06:27:
5d:0d:41:e0:34:8c:a1:cb:51:50:ec:fe:95:db:de:
4e:2b:f2:1d:5b:58:b6:92:30:72:94:92:51:a4:a3:
bc:5f:e3:83:cb:87:4a:09:ec:23:4b:82:66:82:93:
9e:60:ef:4f:37:bc:b4:53:af:23:e2:82:0b:c8:4e:
2d:81:b2:58:b1:ba:fa:38:25:a7:1f:42:0b:c5:07:
f1:9d:84:dd:7e:d3:99:8d:09:31:48:65:71:89:4a:
8c:d6:8e:90:8d:5c:5d:07:23:67:d5:a1:69:08:00:
7d:72:08:da:4a:36:7b:7e:02:9b:cf:67:1e:51:40:
61:12:ca:d1:1b:29:3a:c9:65:39:32:a7:86:4b:52:
43:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:09:57:61:EB:97:C0:19:6D:AE:8D:9B:2B:37:A1:F2:8B:67:90:8D
X509v3 Authority Key Identifier:
keyid:68:85:2A:B7:F2:71:4F:CF:54:D7:5F:0A:AE:30:68:AD:C3:8B:35:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91187FD/55ED6A1610A011EE93493C52C4F9AE02/aIUqt_JxT89U118KrjBorcOLNcw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIUqt_JxT89U118KrjBorcOLNcw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91187FD/55ED6A1610A011EE93493C52C4F9AE02/E6EED5667BE611EEB4BCDC68C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:3fa0::/64
Signature Algorithm: sha256WithRSAEncryption
52:65:68:2c:79:d8:87:8c:bf:3d:16:d9:b0:b7:78:62:be:7d:
f6:28:e1:b2:12:76:6a:4c:93:98:bb:68:d6:b8:20:75:9d:a1:
71:91:a4:52:ad:c7:72:24:cf:33:a6:7f:34:64:f6:a2:21:ec:
81:c2:2f:df:33:3b:9f:d0:23:43:0d:14:da:b9:2f:62:12:b4:
6a:bc:e5:30:84:b4:fe:64:e4:73:13:e0:45:69:07:e6:99:c3:
a4:7e:4b:39:f2:aa:b1:88:b3:37:83:b2:d8:10:94:c2:b5:9b:
0b:52:20:61:af:cc:04:31:3a:5a:45:6e:4c:66:3c:41:44:80:
1a:12:81:22:a2:92:49:6a:6a:24:d4:6f:18:51:37:5b:49:f5:
b6:4f:8b:40:e9:91:f0:82:fd:75:36:ed:0e:8a:3d:a3:34:9e:
f1:84:11:ac:20:66:5b:de:16:3c:f6:15:4c:31:20:bc:86:7b:
69:84:24:67:fd:98:d4:ce:e5:39:8c:ff:20:d7:88:3e:b1:13:
7e:df:ee:8a:2e:ca:2b:aa:96:fc:a5:6e:ea:c8:b7:14:e8:c7:
19:4b:2c:42:98:c1:1e:2c:5d:1d:e5:ee:5a:e1:03:a9:20:20:
e5:c0:1f:fc:c9:cc:81:8d:e6:26:b5:95:14:fe:d7:8c:42:29:
10:00:43:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:50:55 2024 by rpki-client on console-fra.rpki-client.org