Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91427AF/579A8BC0686011E8AAB1251FC4F9AE02/7F87389C9E0C11EBB172D741C4F9AE02.roa
File: 7F87389C9E0C11EBB172D741C4F9AE02.roa (raw, json)
Hash identifier: swyJGMXB5Egahnvd41aEFFE9B5TUaW4TS+b8FK0lZTo=
Subject key identifier: 93:EC:F0:37:69:4F:EB:8D:D4:E5:6E:07:E7:07:E9:7A:29:CE:DF:54
Certificate issuer: /CN=A91427AF/serialNumber=D80FA9FA841255D5BDA72E52EC04FDFED7FE2D5B
Certificate serial: 1345
Authority key identifier: D8:0F:A9:FA:84:12:55:D5:BD:A7:2E:52:EC:04:FD:FE:D7:FE:2D:5B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2A-p-oQSVdW9py5S7AT9_tf-LVs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91427AF/579A8BC0686011E8AAB1251FC4F9AE02/7F87389C9E0C11EBB172D741C4F9AE02.roa
Signing time: Tue 06 Jun 2023 18:27:08 +0000
ROA not before: Tue 06 Jun 2023 18:27:08 +0000
ROA not after: Sat 31 Aug 2024 00:00:00 +0000
asID: 21859
IP address blocks: 2400:ba41:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 23 Oct 2023 06:04:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4933 (0x1345)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91427AF/serialNumber=D80FA9FA841255D5BDA72E52EC04FDFED7FE2D5B
Validity
Not Before: Jun 6 18:27:08 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=647f7a7c-cf51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:f1:c7:2c:92:ee:c1:33:d3:64:7a:26:1a:a0:
cf:8e:ec:b2:70:d4:98:89:10:a3:ed:f3:0f:f8:10:
cf:01:2b:b1:f2:6a:f3:d5:7b:29:d1:db:f2:ca:c2:
c9:f2:15:cf:88:0d:73:fc:8c:e4:4f:94:ff:a5:a8:
9b:33:d0:7d:4b:28:be:8d:21:fc:77:83:5a:fb:f7:
97:2d:cb:c8:cb:e1:49:df:a6:84:86:7c:b1:4e:b8:
e1:72:b7:dc:4c:12:1c:53:8a:19:fb:35:5f:56:26:
1c:89:b9:69:51:22:63:c3:cc:d4:c2:11:22:1f:b3:
e3:31:62:3f:b3:16:76:71:95:50:bf:79:e7:e2:e5:
d6:6e:ba:37:ba:57:dc:12:3e:b5:f7:53:92:9b:39:
7a:e4:19:12:12:ec:1a:17:24:8a:28:3b:5b:aa:8b:
b2:ad:e3:a2:d3:38:69:38:3f:2d:d1:06:a8:78:93:
31:89:dc:98:cb:c5:34:cb:14:79:f1:ea:e9:aa:62:
29:dc:7a:7f:39:5f:85:56:ec:40:2d:48:42:a8:48:
ff:75:27:0b:c9:17:13:e6:64:ee:88:f2:8c:08:63:
08:6b:07:25:df:30:97:de:db:28:94:44:5c:d4:41:
20:c9:ed:8d:ab:7c:c8:06:9c:eb:ad:65:6f:e9:c8:
eb:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:EC:F0:37:69:4F:EB:8D:D4:E5:6E:07:E7:07:E9:7A:29:CE:DF:54
X509v3 Authority Key Identifier:
keyid:D8:0F:A9:FA:84:12:55:D5:BD:A7:2E:52:EC:04:FD:FE:D7:FE:2D:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91427AF/579A8BC0686011E8AAB1251FC4F9AE02/2A-p-oQSVdW9py5S7AT9_tf-LVs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2A-p-oQSVdW9py5S7AT9_tf-LVs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91427AF/579A8BC0686011E8AAB1251FC4F9AE02/7F87389C9E0C11EBB172D741C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:ba41:1::/48
Signature Algorithm: sha256WithRSAEncryption
45:30:e4:be:af:f8:0e:50:72:3a:3e:d7:99:76:23:fb:e3:a6:
9d:83:56:7f:66:62:21:17:6d:9f:c5:ac:cc:a6:79:a5:84:c1:
df:54:5d:56:bd:23:b8:d9:5b:23:41:63:02:e5:eb:6c:c7:94:
4c:d6:d2:1b:db:1d:ba:64:23:69:56:62:48:38:55:83:e4:c1:
0e:98:9a:46:89:e4:61:bf:5e:d7:23:b9:5d:3a:8b:cd:b7:ae:
17:64:e5:7b:3c:41:a0:4a:68:9c:b4:39:27:ff:23:03:e5:39:
ec:b2:08:f3:7f:c1:38:35:ac:35:16:6d:8f:5f:49:a0:aa:0c:
e0:81:55:3a:b6:e1:98:52:84:3f:eb:9b:4c:6f:91:d2:15:ab:
b0:f6:fe:1e:f0:87:d7:fe:71:61:fc:c5:f6:d4:18:5d:e5:c4:
7b:95:17:25:66:30:38:e6:72:e6:91:c1:1b:8d:6d:16:ab:98:
da:f6:ce:2c:21:8a:f9:9c:f0:24:b2:d6:52:20:dd:44:61:aa:
9e:4a:4c:6e:9f:ae:ea:35:80:4a:f6:93:e9:b7:b5:85:e5:5f:
eb:92:9a:48:03:b9:e0:78:35:97:e0:57:b1:d4:f4:9e:a0:3d:
46:d6:30:a7:a8:75:82:6a:72:7c:b3:ff:4f:e7:14:43:76:8d:
ad:b5:a7:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:56 2024 by rpki-client on console-ams.rpki-client.org