Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/9A3E4C8A183D11EA9AE2F085C4F9AE02.roa
File: 9A3E4C8A183D11EA9AE2F085C4F9AE02.roa (raw, json)
Hash identifier: RuTEnu13Rf/xKnXHS3O8QEfrOrV6hDdbBhOJjJvatmE=
Subject key identifier: 9D:8F:17:CB:8B:1D:91:38:B5:56:6C:C6:02:7F:91:F2:FE:F4:E7:77
Certificate issuer: /CN=A916BCDF/serialNumber=4852E8726C1448A1040CCFA043B8314AAE4C4E9A
Certificate serial: 0AEB
Authority key identifier: 48:52:E8:72:6C:14:48:A1:04:0C:CF:A0:43:B8:31:4A:AE:4C:4E:9A
Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/9A3E4C8A183D11EA9AE2F085C4F9AE02.roa
Signing time: Tue 14 Nov 2023 18:05:25 +0000
ROA not before: Tue 14 Nov 2023 18:05:25 +0000
ROA not after: Mon 30 Dec 2024 00:00:00 +0000
asID: 20473
IP address blocks: 141.164.32.0/19 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2795 (0xaeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916BCDF/serialNumber=4852E8726C1448A1040CCFA043B8314AAE4C4E9A
Validity
Not Before: Nov 14 18:05:25 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=6553b6e5-6573
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:bf:63:92:16:e8:28:3c:86:ed:be:ff:a5:ec:
ea:01:a3:75:19:e3:10:2f:b6:34:98:c0:f7:04:55:
0c:ef:4a:2a:26:35:38:e3:e2:28:24:e6:66:05:f7:
a0:b0:7e:e4:a6:fb:ad:1e:17:97:2e:1e:2a:7e:bb:
5c:4c:c8:b8:16:0f:87:ea:98:ab:94:93:37:d0:52:
de:10:eb:27:1c:d2:ff:4d:21:4c:1b:be:d6:25:e0:
a9:b5:db:6d:91:9e:42:a5:c1:4d:ad:b2:ad:b7:20:
90:06:bd:7f:72:c4:ad:7f:c4:cb:e4:4a:23:25:93:
5a:a7:5f:24:78:2b:69:6f:dd:8b:ef:79:40:15:bb:
69:47:44:de:87:c1:c8:9e:b1:9e:d1:f0:94:59:4a:
91:fa:90:2b:00:ec:94:87:06:c9:be:50:36:1f:60:
f5:96:af:50:8e:e8:4b:7c:20:a9:5f:06:22:4b:f4:
18:83:39:0b:7a:23:03:f3:66:07:c1:5c:ac:80:b9:
c7:18:fe:e8:a3:21:0f:9e:c2:42:f0:c1:00:a4:12:
b8:b8:c4:8d:62:31:e5:25:f1:52:54:8c:e2:5f:ae:
10:70:24:44:b2:d8:39:b1:c5:d3:f1:8d:ff:aa:66:
f0:f5:1e:05:db:c5:31:98:bf:eb:88:30:38:f8:45:
3d:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:8F:17:CB:8B:1D:91:38:B5:56:6C:C6:02:7F:91:F2:FE:F4:E7:77
X509v3 Authority Key Identifier:
keyid:48:52:E8:72:6C:14:48:A1:04:0C:CF:A0:43:B8:31:4A:AE:4C:4E:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/9A3E4C8A183D11EA9AE2F085C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
141.164.32.0/19
Signature Algorithm: sha256WithRSAEncryption
14:55:69:86:dd:94:fc:29:c4:a0:57:e0:3b:05:84:4f:90:d6:
71:2d:a2:04:7f:9a:60:32:88:d1:9b:e2:a4:54:cc:27:4b:24:
ed:53:ba:5d:8c:49:1e:df:d0:ea:8e:d6:65:39:5c:7c:99:f1:
c4:0a:06:40:b9:6d:3a:85:e0:01:b8:2f:65:55:3b:20:c0:72:
b9:49:5d:6a:94:1a:d6:ac:8c:5a:a6:33:68:74:d2:7c:51:26:
53:d9:c9:b4:ff:8a:de:65:2a:7b:56:5b:77:85:30:ec:95:99:
c4:3f:dc:86:35:8d:9e:4b:27:8d:e0:60:82:0c:2b:51:72:15:
08:01:ca:62:53:88:5e:11:a7:1d:e7:25:f6:d5:be:68:f4:31:
e5:14:4e:df:d3:21:60:95:15:66:a4:2d:91:1a:aa:94:db:ad:
a3:83:85:70:94:c5:cc:9e:57:06:25:72:42:f1:0a:d5:1c:97:
41:2c:7d:3e:eb:59:7e:4d:30:f7:e1:6d:37:80:90:7a:03:c0:
36:b6:c5:96:dc:87:d5:57:39:de:af:f7:2e:2a:b3:91:67:18:
e2:be:a2:c0:f1:00:04:ed:30:c5:96:78:e3:96:df:90:8d:15:
46:af:9d:3e:81:35:38:17:21:07:3d:0f:3e:3c:e9:75:18:90:
88:e7:a9:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Dec 11 21:00:30 2023 by rpki-client on console-ams.rpki-client.org