Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/6B8B9D0E36FF11E49904AC66C4F9AE02/5BC5148279D611EC98B60F5DC4F9AE02.roa
File: 5BC5148279D611EC98B60F5DC4F9AE02.roa (raw, json)
Hash identifier: lwFTPNywy0jDYwUmUVSkzmZDyzVyhrXuDcMCOefGsGA=
Subject key identifier: 1D:FE:63:3B:38:A0:2F:A4:44:E8:1B:83:78:D2:7E:A7:BF:2D:F5:5F
Certificate issuer: /CN=A9137ABC/serialNumber=E87DC6C5C710439057D8ABED90C26D0C9C872B34
Certificate serial: 288C
Authority key identifier: E8:7D:C6:C5:C7:10:43:90:57:D8:AB:ED:90:C2:6D:0C:9C:87:2B:34
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6H3GxccQQ5BX2KvtkMJtDJyHKzQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/6B8B9D0E36FF11E49904AC66C4F9AE02/5BC5148279D611EC98B60F5DC4F9AE02.roa
Signing time: Sat 08 Jul 2023 14:30:10 +0000
ROA not before: Sat 08 Jul 2023 14:30:10 +0000
ROA not after: Mon 30 Sep 2024 00:00:00 +0000
asID: 7470
IP address blocks: 134.196.0.0/16 maxlen: 17
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10380 (0x288c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9137ABC/serialNumber=E87DC6C5C710439057D8ABED90C26D0C9C872B34
Validity
Not Before: Jul 8 14:30:10 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=64a972f2-46de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:05:81:4d:32:05:96:2f:5f:76:3c:74:f6:fe:
15:47:5f:f1:75:07:78:68:7b:d5:3c:4d:93:23:cf:
dc:63:42:f0:ed:ac:2d:d6:3d:9c:c7:a0:fb:89:85:
6d:1f:5e:d7:f4:7d:41:ad:2a:76:cf:e3:8d:01:04:
c4:91:fc:e3:4e:3c:29:d6:82:88:3c:9c:2b:17:64:
1d:b1:b6:9a:f6:1d:8f:22:e7:34:1e:8f:cb:ac:41:
e1:90:95:2f:14:91:a7:9a:0d:fc:bf:c6:63:39:38:
55:da:67:e1:56:c5:0c:e0:e0:e3:85:2a:70:13:45:
5f:ea:79:28:1e:88:f4:86:a0:ac:26:b3:b4:db:3a:
60:d9:9c:45:07:91:9a:32:07:e9:ad:23:0d:2d:ec:
6d:d6:f1:e9:73:6e:f5:2a:c1:54:7d:52:ea:6e:bf:
62:4e:81:7b:3a:2f:0c:bc:17:86:4a:2f:a7:7c:9e:
23:48:4e:d4:d1:8f:16:07:54:94:d8:b7:de:62:c4:
c0:2d:33:33:37:15:90:2a:37:e8:29:a3:c4:c3:34:
38:03:16:b6:e9:1e:ce:05:46:2c:68:e0:a2:e6:f7:
88:61:c8:2e:db:5b:a0:e8:b5:03:f8:5a:3a:1f:30:
3c:72:8c:5d:b5:58:5f:66:33:b2:ca:c9:f2:29:44:
99:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:FE:63:3B:38:A0:2F:A4:44:E8:1B:83:78:D2:7E:A7:BF:2D:F5:5F
X509v3 Authority Key Identifier:
keyid:E8:7D:C6:C5:C7:10:43:90:57:D8:AB:ED:90:C2:6D:0C:9C:87:2B:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9137ABC/6B8B9D0E36FF11E49904AC66C4F9AE02/6H3GxccQQ5BX2KvtkMJtDJyHKzQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6H3GxccQQ5BX2KvtkMJtDJyHKzQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/6B8B9D0E36FF11E49904AC66C4F9AE02/5BC5148279D611EC98B60F5DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
134.196.0.0/16
Signature Algorithm: sha256WithRSAEncryption
c8:fb:70:30:37:4d:5a:60:e8:41:d0:f2:4c:27:2a:80:cd:9a:
e9:fe:2c:5b:36:8d:f2:9c:c7:6e:78:80:94:f8:f2:4a:c7:45:
51:6a:f9:b2:2d:84:68:9e:99:b0:94:a7:30:b9:e1:b0:01:a1:
c3:4c:ae:72:97:4e:8d:18:f0:2b:ab:b6:8b:38:62:c3:e5:59:
5f:c0:91:a2:af:7d:92:4d:f7:0d:be:4e:d3:f0:6c:2b:a5:96:
1d:b8:2c:2a:72:61:25:a1:ca:ac:c9:fb:f0:f2:c9:27:54:44:
7d:2a:f5:9c:53:da:37:54:4f:29:2a:15:e8:1a:6f:64:ea:c1:
43:ed:1f:7e:e9:37:3f:18:83:09:50:e4:ed:02:6f:36:26:e5:
26:79:47:73:73:1a:55:db:cf:34:42:75:b7:a7:36:2c:b8:de:
9f:b1:2c:c3:ac:be:fe:be:1c:47:bc:92:4d:f5:12:87:f0:60:
5c:84:07:16:ce:ef:e0:9f:8c:19:41:26:06:d7:7a:c9:5a:ec:
4e:38:c0:2a:24:9e:0b:2e:4e:47:99:d8:fb:79:bc:b6:ef:bf:
55:5b:3b:92:8e:d4:04:cb:1d:e3:5c:88:1c:4f:89:10:d7:ff:
5d:18:95:96:d1:07:be:8c:55:5a:8c:72:40:4c:72:e4:54:21:
e0:ff:46:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 27 05:51:19 2023 by rpki-client on console-ams.rpki-client.org