Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/A3238958DBF411EEA5544352C4F9AE02.roa
File: A3238958DBF411EEA5544352C4F9AE02.roa (raw, json)
Hash identifier: /ZFxZZe083y1jsVzvfohYa+x6pLpDT6LkxFN5MPyWWM=
Subject key identifier: 25:17:91:35:F6:95:2C:E7:CF:CB:29:9D:A0:6E:F4:FF:DF:EF:2E:FC
Certificate issuer: /CN=A91510AD/serialNumber=E1E6908A16EC813DAA0BD64797AE9DBDEB092257
Certificate serial: 34BD
Authority key identifier: E1:E6:90:8A:16:EC:81:3D:AA:0B:D6:47:97:AE:9D:BD:EB:09:22:57
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/A3238958DBF411EEA5544352C4F9AE02.roa
Signing time: Wed 06 Mar 2024 20:03:45 +0000
ROA not before: Wed 06 Mar 2024 20:03:45 +0000
ROA not after: Mon 30 Dec 2024 00:00:00 +0000
asID: 44893
IP address blocks: 175.29.0.0/18 maxlen: 24
Validation: Failed, certificate revoked on Sun 08 Sep 2024 06:06:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13501 (0x34bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91510AD/serialNumber=E1E6908A16EC813DAA0BD64797AE9DBDEB092257
Validity
Not Before: Mar 6 20:03:45 2024 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=65e8cc21-c228
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:fe:a6:59:56:3d:8f:bc:12:47:65:9d:b4:4c:
91:b2:d0:de:97:9e:f6:61:a3:0a:f9:0d:f4:35:0d:
b5:88:2f:01:f4:9e:5a:37:b0:01:82:07:2a:a5:b1:
37:44:c4:72:f8:cc:ed:ee:37:b2:2c:c8:0f:3a:60:
af:c0:d0:3a:9c:9e:2b:11:77:76:66:7c:55:3a:57:
a6:ff:64:87:57:02:c8:6c:ca:36:37:b6:b3:76:cf:
00:1f:a5:a5:29:68:71:2e:b9:9e:c2:ce:70:17:93:
a0:94:c8:b0:b7:92:36:37:69:d8:60:08:d3:10:f5:
d9:8e:3c:56:61:18:9f:38:9e:b9:24:cf:83:08:c6:
02:98:30:2d:69:44:b3:02:90:9f:3e:0c:28:ea:27:
97:e4:20:bf:f2:32:5d:f0:87:39:9d:32:1d:0e:f3:
3c:07:e3:cd:11:8a:62:39:cc:20:fc:83:23:d3:23:
24:21:d4:ca:a7:ab:65:b9:9d:55:94:f9:c1:f3:ab:
cc:bf:27:86:aa:19:b4:20:d1:30:8f:b2:fd:fc:c9:
69:b8:87:bd:d4:69:09:cb:27:5d:03:fa:a0:2f:70:
2e:2b:bc:54:65:f4:3f:be:6e:e5:6b:18:b1:1e:43:
24:e7:15:91:b4:08:ab:65:5d:fd:99:a8:99:1b:55:
ff:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:17:91:35:F6:95:2C:E7:CF:CB:29:9D:A0:6E:F4:FF:DF:EF:2E:FC
X509v3 Authority Key Identifier:
keyid:E1:E6:90:8A:16:EC:81:3D:AA:0B:D6:47:97:AE:9D:BD:EB:09:22:57
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/A3238958DBF411EEA5544352C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
175.29.0.0/18
Signature Algorithm: sha256WithRSAEncryption
0d:a0:9a:b9:93:25:55:9b:00:1a:29:41:63:ac:84:a4:8c:af:
9e:2b:5c:55:fc:66:b1:db:0e:19:14:e1:f2:68:95:4a:f8:a9:
d0:be:82:26:13:22:13:ee:26:81:54:3f:87:9d:e6:4e:af:f5:
97:bc:c1:b4:c0:ad:66:04:e3:82:5a:a5:c6:97:2d:08:8e:18:
ba:d8:ff:5b:57:94:4e:f9:95:ee:a6:a4:4d:bb:88:ca:5b:37:
e3:fa:51:63:c5:fb:7d:0b:71:34:da:a7:ee:ee:16:54:0b:03:
d0:10:6e:6c:ba:0f:62:76:90:09:73:45:a7:66:c8:49:39:58:
b4:4e:ed:e9:e4:3b:26:80:72:97:05:a1:db:dd:d9:e9:e0:8e:
41:e1:8d:12:02:52:a3:8c:f7:b5:1a:53:2d:a0:37:eb:dd:5f:
73:b0:bc:88:24:d6:e6:c2:cf:28:c5:d6:d6:0f:03:fe:76:a5:
ce:1d:a9:da:52:94:ed:a0:36:59:46:58:9b:47:7f:60:65:9c:
3c:73:07:87:b7:96:2f:f8:00:80:db:26:df:be:e1:46:5a:bd:
2b:bb:7c:8e:c7:91:b7:46:4b:5b:de:db:a0:f3:b0:7f:46:31:
5a:29:78:e4:7d:76:d2:bd:0e:e8:9a:38:de:f1:bb:df:5c:a3:
7d:c5:92:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 8 07:49:34 2024 by rpki-client on console-fra.rpki-client.org