Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9126A3C/7390B34AC6A011EF928B7960C4F9AE02/66474496C6A111EF8C279A64C4F9AE02.roa
File: 66474496C6A111EF8C279A64C4F9AE02.roa (raw, json)
Hash identifier: cIVuWM+12sR+nnbRpeZqguJO0EOu2wfGePNtlvl6ec4=
Subject key identifier: DD:F4:54:D3:85:44:1B:6E:CB:A7:B2:0B:62:56:A6:34:D5:6A:74:50
Certificate issuer: /CN=A9126A3C/serialNumber=97B03DA2FB45F56E3F582163DF7BD95069399944
Certificate serial: 02
Authority key identifier: 97:B0:3D:A2:FB:45:F5:6E:3F:58:21:63:DF:7B:D9:50:69:39:99:44
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/l7A9ovtF9W4_WCFj33vZUGk5mUQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9126A3C/7390B34AC6A011EF928B7960C4F9AE02/66474496C6A111EF8C279A64C4F9AE02.roa
Signing time: Mon 30 Dec 2024 11:29:58 +0000
ROA not before: Mon 30 Dec 2024 11:29:58 +0000
ROA not after: Tue 31 Mar 2026 00:00:00 +0000
asID: 153476
IP address blocks: 161.248.62.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 30 Dec 2024 18:05:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9126A3C
Validity
Not Before: Dec 30 11:29:58 2024 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=67728436-c5f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:71:aa:18:8f:d6:35:93:d5:07:91:59:be:4e:
3c:31:61:78:dd:89:25:cc:2f:f7:11:6d:01:6c:3c:
7c:a7:d6:5f:48:6b:44:35:85:9b:65:f2:c4:79:02:
20:38:c5:52:b3:3e:c5:d9:e9:d6:42:21:52:78:ce:
34:e4:ff:74:c3:a4:c3:2a:b3:d8:c4:28:89:51:81:
c4:4f:5b:22:1b:05:5d:a5:f2:19:bf:26:de:6f:c4:
48:f7:8c:52:93:2f:c1:98:59:81:1a:2a:f2:5d:a3:
d2:82:c5:fb:4f:26:95:bf:c2:3d:24:61:08:70:c2:
84:2d:83:24:3c:bf:84:81:ff:36:95:c8:ea:dd:35:
08:59:23:ed:e9:bd:bc:74:c9:f3:9b:59:5e:3b:4e:
e9:05:e2:dd:ee:c4:21:a4:f1:46:bc:fb:c9:0b:43:
cb:50:27:47:71:82:2c:be:92:2f:23:6f:ab:7c:a6:
31:ce:a0:4d:86:1c:8d:c2:13:89:70:e0:04:d1:61:
d5:92:d9:ec:e7:0a:a4:08:e4:50:78:96:39:0c:da:
f9:d4:69:5a:ff:94:87:23:75:65:f1:f8:c9:84:b3:
81:e5:10:5e:62:70:5f:f7:d4:e0:b0:6d:1b:be:e1:
cd:92:2d:a0:1e:30:30:31:76:ab:83:25:d9:3e:ec:
3c:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:F4:54:D3:85:44:1B:6E:CB:A7:B2:0B:62:56:A6:34:D5:6A:74:50
X509v3 Authority Key Identifier:
keyid:97:B0:3D:A2:FB:45:F5:6E:3F:58:21:63:DF:7B:D9:50:69:39:99:44
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9126A3C/7390B34AC6A011EF928B7960C4F9AE02/l7A9ovtF9W4_WCFj33vZUGk5mUQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/l7A9ovtF9W4_WCFj33vZUGk5mUQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126A3C/7390B34AC6A011EF928B7960C4F9AE02/66474496C6A111EF8C279A64C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.248.62.0/23
Signature Algorithm: sha256WithRSAEncryption
5c:bd:f5:75:2b:8e:98:49:83:56:c3:49:fc:09:0d:b1:3f:d5:
5a:ad:33:45:15:b8:f2:15:0e:b7:df:da:d9:b2:32:31:d7:76:
f1:f3:60:b2:3e:36:52:1c:d7:63:6c:3a:3b:8d:af:ee:48:77:
a8:21:e3:b0:90:20:10:9e:11:4c:d1:87:73:5b:dd:51:b3:4f:
cd:13:bc:bf:17:05:35:67:b7:e8:68:2c:2e:75:5d:1d:09:5f:
4f:a3:5b:dd:5d:53:88:6b:43:a5:46:ba:65:4f:07:71:77:05:
29:ce:7c:5f:55:ee:1a:2d:3e:f5:0d:61:19:c5:eb:30:07:95:
a8:03:31:08:44:ba:28:21:41:89:f2:47:1e:76:b4:6b:3e:75:
03:50:eb:e7:88:f9:63:14:f9:17:eb:7e:09:95:4b:b1:74:01:
9f:d9:4a:69:ef:68:81:7f:ca:bf:f3:b5:a6:4d:0a:44:5f:66:
ea:fc:ef:84:a9:c2:da:a7:be:8f:8b:62:fe:02:ed:2c:fb:70:
7b:4f:87:6a:45:a9:21:a3:41:19:6e:e8:9c:4a:54:98:83:66:
96:7a:e2:5e:08:74:1a:5f:f3:02:69:a5:05:59:85:61:8c:23:
3d:ec:09:79:64:f2:16:fa:25:50:2c:a1:6c:52:04:f3:87:49:
45:4d:14:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 22:48:26 2025 by rpki-client