Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913E415/BC66106EDD9411EA8A2E2D37C4F9AE02/63E324BEF3B811EBA41AA751C4F9AE02.roa
File: 63E324BEF3B811EBA41AA751C4F9AE02.roa (raw, json)
Hash identifier: 2XReXNEUoSSSRDy7WVXRIld+hmzGEbSPeyisEEHcRaM=
Subject key identifier: C6:68:B4:D2:E7:39:1E:56:67:22:CA:3A:66:5F:D5:AB:D0:8B:68:AA
Certificate issuer: /CN=A913E415/serialNumber=CE7B3078EA200EF1CFC3458C4D1E908D5F9CB735
Certificate serial: 06CD
Authority key identifier: CE:7B:30:78:EA:20:0E:F1:CF:C3:45:8C:4D:1E:90:8D:5F:9C:B7:35
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/znsweOogDvHPw0WMTR6QjV-ctzU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913E415/BC66106EDD9411EA8A2E2D37C4F9AE02/63E324BEF3B811EBA41AA751C4F9AE02.roa
Signing time: Wed 28 Jun 2023 21:42:21 +0000
ROA not before: Wed 28 Jun 2023 21:42:21 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 136969
IP address blocks: 2001:df3:9880::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 15 Aug 2023 18:08:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1741 (0x6cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913E415/serialNumber=CE7B3078EA200EF1CFC3458C4D1E908D5F9CB735
Validity
Not Before: Jun 28 21:42:21 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=649ca93d-27ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:51:e5:97:81:3d:28:15:b0:c0:cb:ed:29:21:
c9:43:d0:3e:14:02:5f:44:61:11:c6:58:71:f7:ba:
ee:4e:de:b6:39:db:1b:71:ad:33:ba:8a:08:55:19:
72:d1:fd:06:65:32:86:ff:6b:c1:41:98:11:b5:fb:
40:6e:bd:ae:9a:c1:e9:49:3f:9d:2b:52:89:31:19:
c0:c9:20:70:d9:e8:09:6a:e6:36:8c:72:30:f4:5b:
2e:4f:06:57:37:ab:f1:35:eb:79:5b:c1:65:c4:ad:
6f:f3:32:e1:91:5e:32:ef:0a:7e:74:d8:43:9d:50:
76:e7:68:fb:50:b4:93:c8:42:08:3d:4c:01:05:8e:
ae:6a:96:d2:77:18:a5:83:40:fe:3d:0a:4e:3b:3e:
bd:56:39:69:29:02:2e:ca:b1:2c:e7:00:47:68:75:
64:f2:07:14:02:2a:9f:2a:ff:8a:a3:85:5d:d5:10:
3a:73:a1:f9:20:d9:14:65:8c:60:28:80:46:c1:b2:
04:54:fe:25:1f:ec:82:c2:71:19:30:db:80:bb:b5:
32:66:38:3d:d2:8e:8a:a7:8b:34:5d:32:ae:9b:7e:
03:e2:a8:d4:c4:e4:5d:65:04:de:bc:f3:ab:79:7c:
a6:f3:6a:a7:56:b0:8e:16:e5:cf:6d:83:96:b1:40:
7a:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:68:B4:D2:E7:39:1E:56:67:22:CA:3A:66:5F:D5:AB:D0:8B:68:AA
X509v3 Authority Key Identifier:
keyid:CE:7B:30:78:EA:20:0E:F1:CF:C3:45:8C:4D:1E:90:8D:5F:9C:B7:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913E415/BC66106EDD9411EA8A2E2D37C4F9AE02/znsweOogDvHPw0WMTR6QjV-ctzU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/znsweOogDvHPw0WMTR6QjV-ctzU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E415/BC66106EDD9411EA8A2E2D37C4F9AE02/63E324BEF3B811EBA41AA751C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:df3:9880::/48
Signature Algorithm: sha256WithRSAEncryption
20:b8:d3:c9:c1:4e:bd:e3:28:be:6c:94:ee:8e:22:29:11:34:
d8:0b:c5:8f:64:de:de:32:c4:47:b1:28:5e:b2:84:0f:56:1b:
a8:a1:62:60:e9:bb:47:c8:62:a9:79:a0:e0:27:4a:72:d1:7e:
89:66:38:d2:94:d1:e3:d1:fd:c1:b7:a1:36:b4:66:9a:a9:a3:
70:b8:3c:4f:e1:22:ba:6c:c0:73:23:55:cc:1e:41:e6:bf:3a:
77:13:5e:c3:97:93:b5:e8:31:d1:98:a2:48:32:54:7b:27:e5:
d1:06:5d:50:82:77:90:b2:7e:b3:4e:a5:41:db:ce:60:c5:85:
ce:2a:02:81:c6:15:28:37:4c:59:4a:54:e0:fd:46:0a:49:0d:
eb:11:12:07:c4:88:dd:06:93:39:37:37:fc:96:e0:8c:d4:02:
bc:21:19:24:95:96:57:22:e1:19:f6:b2:cd:b0:8d:4b:bb:5e:
9a:ff:df:46:4e:52:f6:d9:72:d6:62:1a:5d:c1:e7:bd:b3:79:
6e:49:06:d3:e1:06:51:26:74:3a:96:60:7d:e5:56:44:0f:97:
51:f9:df:51:d8:a8:94:1a:64:7c:d5:02:69:ca:db:fd:b4:76:
1b:b4:5b:28:09:75:51:cd:0c:8c:45:c1:bf:93:db:c2:a3:d8:
29:f1:d6:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:55 2024 by rpki-client on console-ams.rpki-client.org