Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A912559E/350AFEBEA47311EEBDFBB759C4F9AE02/E4236570CBC511EE8716C92EC4F9AE02.roa
File: E4236570CBC511EE8716C92EC4F9AE02.roa (raw, json)
Hash identifier: A6lKZcvIz+r1CptHeLmXJsOAs02Me8cj9pxIEDLAhPQ=
Subject key identifier: A6:93:47:B6:41:C7:A8:A6:D1:59:B5:2C:32:10:51:EB:6D:63:B1:D1
Certificate issuer: /CN=A912559E/serialNumber=09407F70F9771600F4FBAA75C0FE9690D8C65A30
Certificate serial: 1E
Authority key identifier: 09:40:7F:70:F9:77:16:00:F4:FB:AA:75:C0:FE:96:90:D8:C6:5A:30
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUB_cPl3FgD0-6p1wP6WkNjGWjA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912559E/350AFEBEA47311EEBDFBB759C4F9AE02/E4236570CBC511EE8716C92EC4F9AE02.roa
Signing time: Thu 15 Feb 2024 05:48:49 +0000
ROA not before: Thu 15 Feb 2024 05:48:49 +0000
ROA not after: Mon 31 Mar 2025 00:00:00 +0000
asID: 152192
IP address blocks: 2001:df3:50c0::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 17 Jun 2024 19:17:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30 (0x1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912559E/serialNumber=09407F70F9771600F4FBAA75C0FE9690D8C65A30
Validity
Not Before: Feb 15 05:48:49 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=65cda5c1-4829
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:8e:c0:cf:b0:8f:74:65:3c:7a:13:7a:ee:87:
59:3f:b1:ca:62:02:dc:92:3f:04:2d:fd:74:d0:19:
ba:94:f7:f3:28:81:2c:06:d6:14:27:86:59:b6:40:
21:c6:12:bb:41:0c:4a:c3:ea:ab:2b:28:f7:67:b4:
b6:0f:1a:0e:9b:46:9b:f1:bc:dd:84:7e:83:78:b3:
eb:07:3a:97:02:be:08:55:0f:c8:75:89:4e:d3:54:
14:c8:bd:7d:76:5e:35:be:ee:07:58:6f:5d:41:fa:
74:41:a1:38:16:07:5d:61:e3:74:63:ac:45:34:8d:
97:94:90:80:b8:00:65:b6:4c:33:e1:c5:8c:76:59:
d5:e4:25:ba:4f:04:49:22:19:79:8d:bb:28:e0:93:
30:4d:1d:97:50:02:69:52:e1:23:84:fc:24:88:27:
a0:86:33:00:8c:d3:9f:1d:f1:7e:f2:f5:10:b0:24:
ed:f7:cc:ec:ec:fa:9c:3b:4b:1a:6a:27:6a:2d:19:
b7:ba:95:8e:f5:6d:26:45:3a:2f:3c:7f:22:fc:3f:
75:6a:70:ef:45:06:59:46:d5:ea:fc:6b:b4:15:f0:
c5:ea:d0:96:80:c8:af:41:b4:97:11:44:6c:eb:76:
d4:93:15:ee:24:89:05:de:50:48:08:bd:cb:b0:36:
21:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:93:47:B6:41:C7:A8:A6:D1:59:B5:2C:32:10:51:EB:6D:63:B1:D1
X509v3 Authority Key Identifier:
keyid:09:40:7F:70:F9:77:16:00:F4:FB:AA:75:C0:FE:96:90:D8:C6:5A:30
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912559E/350AFEBEA47311EEBDFBB759C4F9AE02/CUB_cPl3FgD0-6p1wP6WkNjGWjA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUB_cPl3FgD0-6p1wP6WkNjGWjA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912559E/350AFEBEA47311EEBDFBB759C4F9AE02/E4236570CBC511EE8716C92EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:df3:50c0::/48
Signature Algorithm: sha256WithRSAEncryption
44:1b:05:8c:94:00:fb:f7:9d:8b:56:15:68:e3:91:2d:c6:22:
76:55:de:c4:5d:ee:0e:8a:62:86:52:e0:1d:89:83:7a:49:b7:
f3:a7:a8:f0:f9:94:e6:fc:13:b7:bf:81:40:d5:22:cb:d1:dd:
53:6a:db:67:93:52:ef:96:81:76:67:64:77:1c:cb:5a:18:4c:
1d:79:47:7d:7b:79:56:93:c2:8d:ff:6d:b7:35:d8:ac:0f:42:
8c:49:85:52:96:f9:ee:60:40:29:67:08:8d:ef:ed:41:65:6a:
6b:d6:91:ed:fa:2c:03:b6:9d:11:1d:9b:fb:14:91:d8:fd:1d:
10:22:b1:15:60:01:eb:b3:0f:5e:f6:36:f8:21:30:60:04:e8:
8a:2b:1f:d5:66:3a:05:ff:0f:fb:77:a8:08:78:ea:8b:b9:46:
e1:2a:3d:c7:12:e9:10:be:c7:cb:9f:aa:ad:54:0a:fd:46:6c:
98:23:c3:50:ba:cb:da:b2:c8:0c:88:f5:7d:16:c9:11:9c:19:
9b:88:01:a6:95:dc:5c:54:64:2b:26:c3:fe:be:91:44:a7:75:
b7:9b:50:81:b0:c8:19:43:5e:e3:52:44:cc:89:27:ce:01:91:
82:d8:53:87:9e:a8:f9:b2:0d:e9:7a:11:fc:06:4f:61:c0:e2:
90:d3:ea:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 17 23:34:43 2024 by rpki-client on console-ams.rpki-client.org