Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/80843260004511EFAA78591BC4F9AE02.roa
File: 80843260004511EFAA78591BC4F9AE02.roa (raw, json)
Hash identifier: XyXUL3weUZdEaad4wrVYRKbAC9JArQMW6SFrN5zKRmw=
Subject key identifier: 07:9A:16:A7:86:6E:58:51:0F:01:A3:55:18:9B:A3:81:8E:55:29:B8
Certificate issuer: /CN=A9149F3E/serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B
Certificate serial: 357D
Authority key identifier: EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/80843260004511EFAA78591BC4F9AE02.roa
Signing time: Mon 22 Apr 2024 01:13:18 +0000
ROA not before: Mon 22 Apr 2024 01:13:18 +0000
ROA not after: Sat 31 Aug 2024 00:00:00 +0000
asID: 41717
IP address blocks: 49.128.219.0/24 maxlen: 24
49.128.221.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 24 Apr 2024 00:47:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13693 (0x357d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9149F3E/serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B
Validity
Not Before: Apr 22 01:13:18 2024 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=6625b9ae-3b3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:9f:fb:f5:56:f9:c9:fa:eb:f8:91:2e:1d:29:
31:18:e0:b2:7b:75:56:c7:28:bd:aa:b7:54:c6:c2:
89:da:61:f6:9a:19:74:d8:41:47:1d:cc:27:82:ac:
27:17:28:c9:51:04:6e:dd:e4:8e:81:38:b1:aa:aa:
5e:63:ce:f8:ba:d1:9e:11:c0:ec:32:61:bd:d1:1e:
c5:61:75:fb:a3:4a:4d:15:3a:51:f6:87:e5:61:7a:
f6:d8:bc:2b:1c:3e:c4:6e:ba:40:e2:e4:58:7c:a1:
76:09:b9:f1:1a:b4:39:4e:88:65:03:83:fa:5c:70:
b6:bc:99:ef:43:97:fd:c5:93:63:59:3d:56:60:50:
0c:36:91:b9:61:61:40:d9:31:08:41:3d:59:71:ba:
2b:1d:05:b2:46:1f:a6:25:fb:73:1b:a6:d8:5a:b8:
97:97:e2:6d:46:2a:7f:da:41:13:a6:85:0b:4e:0e:
ec:ed:8a:90:89:fa:84:52:88:41:b8:0b:8e:07:67:
8b:7c:2a:31:75:c2:26:87:85:42:b7:5e:6d:4e:b6:
03:be:d3:de:26:56:77:7f:40:db:c1:5c:f7:72:da:
77:2c:f4:55:62:75:19:d5:e3:47:1f:56:93:27:f5:
f8:0b:2e:3a:1d:6b:c0:73:ad:3c:d1:e3:d4:c4:14:
0c:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:9A:16:A7:86:6E:58:51:0F:01:A3:55:18:9B:A3:81:8E:55:29:B8
X509v3 Authority Key Identifier:
keyid:EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/80843260004511EFAA78591BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.128.219.0/24
49.128.221.0/24
Signature Algorithm: sha256WithRSAEncryption
13:7d:96:5c:b4:59:18:c8:04:30:9a:41:80:47:c9:10:bb:46:
42:79:36:b3:45:d0:ce:53:dd:bf:4f:0e:61:8c:e4:0c:0f:d1:
43:e0:60:58:85:cd:a1:9b:08:12:7b:71:2a:e7:be:8d:d1:a8:
87:fa:3c:1d:a3:6b:9c:21:35:fd:ad:39:7b:60:53:a1:f6:09:
86:3e:87:1e:48:32:2b:eb:15:d5:35:14:c3:89:05:31:6d:f3:
5f:61:db:41:1b:bf:c5:41:e2:a6:2b:55:aa:77:26:0a:7b:d9:
a8:39:ff:3c:0b:dc:31:09:e3:b8:56:1e:ae:06:6a:5b:1d:7c:
19:21:17:0c:1f:82:bb:0f:28:4b:8a:67:d3:96:10:fa:ef:19:
01:ca:11:78:cc:9a:20:07:bb:ff:b3:30:b7:29:73:ce:b5:6e:
6d:78:5d:0e:1a:f7:48:33:3d:7b:82:a4:08:c4:53:63:29:cb:
cd:a6:17:a5:e5:cc:6a:ac:27:51:74:26:bb:f6:9d:bc:64:a7:
b6:8a:ed:0d:5e:3c:84:95:7b:ae:3e:52:50:9a:61:21:0a:6f:
09:20:1c:cc:1f:d3:3f:0f:59:c9:65:c9:ab:b8:a7:57:a7:e7:
7a:79:08:e3:eb:e5:a2:24:cc:21:bc:9f:dc:a9:ff:29:94:0c:
85:53:fe:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 02:19:31 2024 by rpki-client on console-fra.rpki-client.org