Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/1FFBF67AF7DB11EEB6D3821FC4F9AE02.roa
File: 1FFBF67AF7DB11EEB6D3821FC4F9AE02.roa (raw, json)
Hash identifier: 8BXGNboM0H1DpWxZeqSiA8sZ/s/H63buum+vpcYJqYs=
Subject key identifier: 08:B3:18:15:3C:64:7D:32:87:6B:C8:6F:C7:7A:4B:5A:7D:C8:CD:35
Certificate issuer: /CN=A915EBC8/serialNumber=C621848151F797BF723107F14D62C67A213A53E3
Certificate serial: C4
Authority key identifier: C6:21:84:81:51:F7:97:BF:72:31:07:F1:4D:62:C6:7A:21:3A:53:E3
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiGEgVH3l79yMQfxTWLGeiE6U-M.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/1FFBF67AF7DB11EEB6D3821FC4F9AE02.roa
Signing time: Thu 11 Apr 2024 08:11:41 +0000
ROA not before: Thu 11 Apr 2024 08:11:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 155.60.128.0/19 maxlen: 19
Validation: Failed, certificate revoked on Fri 12 Apr 2024 05:11:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 196 (0xc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915EBC8/serialNumber=C621848151F797BF723107F14D62C67A213A53E3
Validity
Not Before: Apr 11 08:11:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=66179b3c-7934
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:da:50:2b:7d:85:26:66:81:0e:5e:bf:95:85:
4c:10:16:48:2d:e4:1d:30:d0:4e:bd:a5:dd:18:fe:
f8:6b:ab:a3:f8:9c:57:12:43:1f:ce:f4:1d:b7:6a:
39:6d:29:77:60:2a:30:7c:98:f3:e1:c1:7c:de:fe:
8c:d9:a1:03:03:9e:9b:58:d3:3b:cd:4b:47:d5:85:
07:41:b6:84:bb:fe:a4:6a:07:99:6a:d7:65:3e:58:
3b:c7:e3:ee:a2:ad:29:55:f9:50:72:67:91:de:e4:
8c:1b:00:ba:d6:5a:32:9f:c5:5a:ed:d4:3c:57:3b:
ab:6d:9d:bb:d9:0a:22:f3:9f:a6:6e:bb:6a:e5:74:
13:07:b9:18:6c:dd:fa:8e:ff:d5:ee:fd:36:52:e3:
0e:ce:ff:5d:87:50:cd:3c:c1:9b:ab:88:94:b5:61:
45:14:2d:e1:70:36:81:93:cc:b5:03:1c:f9:3a:b3:
88:7c:28:4a:c0:d8:30:30:b0:af:32:e1:63:2a:c3:
48:a9:28:4d:6a:2b:80:91:e0:25:fc:f0:49:9c:73:
7a:d9:b2:8c:4a:d7:27:d2:64:de:cc:37:cf:47:02:
a1:78:df:6d:4e:aa:7d:d1:a3:f5:a7:05:38:59:29:
bc:7c:4e:e2:f3:ff:41:51:d6:b6:e3:2d:d4:ec:7d:
94:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:B3:18:15:3C:64:7D:32:87:6B:C8:6F:C7:7A:4B:5A:7D:C8:CD:35
X509v3 Authority Key Identifier:
keyid:C6:21:84:81:51:F7:97:BF:72:31:07:F1:4D:62:C6:7A:21:3A:53:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiGEgVH3l79yMQfxTWLGeiE6U-M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/1FFBF67AF7DB11EEB6D3821FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
155.60.128.0/19
Signature Algorithm: sha256WithRSAEncryption
a9:a5:68:9d:62:b4:c5:ca:11:f3:8c:6b:7c:36:cb:00:f4:04:
bc:49:3b:4a:ae:a0:34:ac:02:9a:34:85:15:8b:c3:05:c8:8b:
9e:a1:9e:35:a5:8a:35:e6:55:ee:20:e1:c6:22:d6:70:7d:bb:
c6:db:ca:ce:64:0a:fd:2e:2c:ec:03:d8:e8:12:1a:bf:ea:05:
68:9e:8f:dd:6f:49:ad:95:66:5d:f2:7a:88:da:3a:f1:a9:7d:
6f:c1:fd:3e:b1:e0:be:0a:13:59:fc:c4:99:eb:2a:b0:38:dc:
b0:67:5e:8d:6a:1e:96:8b:cf:12:14:40:e2:38:40:34:e6:4c:
40:e6:20:50:1e:a9:4c:6a:ea:0e:e2:13:53:36:e5:fe:4b:35:
97:3d:40:89:0f:d2:47:c1:44:e7:1f:4c:66:19:68:d2:43:c9:
70:e4:be:ca:e2:ce:89:bb:c9:8e:68:1b:c1:49:28:64:35:52:
03:df:a1:46:22:97:3d:66:13:7b:65:c8:dc:ff:03:9c:6f:e4:
ca:80:31:ed:11:b8:f5:95:9f:76:61:08:2c:b2:95:e7:69:ee:
3a:04:65:56:79:05:55:99:8d:d9:23:77:32:39:b9:43:a6:fc:
d4:e5:92:4d:56:fa:7a:2f:4b:11:24:13:ff:ef:6a:aa:3b:df:
68:d3:dc:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:08 2024 by rpki-client on console-ams.rpki-client.org