Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917336A/86D7B8625AEA11EF94E93D6EC4F9AE02/FC30341C5AEB11EF8B92C770C4F9AE02.roa
File: FC30341C5AEB11EF8B92C770C4F9AE02.roa (raw, json)
Hash identifier: Az9YsOUS6Qu1k+N3b7X4v+zCSfdMEU+HGH/Z4ghvYR4=
Subject key identifier: 75:73:97:8F:2B:1E:CF:26:D4:BD:93:A1:23:6B:69:20:AE:D7:8D:27
Certificate issuer: /CN=A917336A/serialNumber=E0B608AF53414B6F597D18CAE7A214483E8A659E
Certificate serial: 03
Authority key identifier: E0:B6:08:AF:53:41:4B:6F:59:7D:18:CA:E7:A2:14:48:3E:8A:65:9E
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4LYIr1NBS29ZfRjK56IUSD6KZZ4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917336A/86D7B8625AEA11EF94E93D6EC4F9AE02/FC30341C5AEB11EF8B92C770C4F9AE02.roa
Signing time: Thu 15 Aug 2024 09:51:47 +0000
ROA not before: Thu 15 Aug 2024 09:51:47 +0000
ROA not after: Sun 01 Dec 2024 00:00:00 +0000
asID: 2687
IP address blocks: 166.100.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Thu 15 Aug 2024 11:27:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917336A/serialNumber=E0B608AF53414B6F597D18CAE7A214483E8A659E
Validity
Not Before: Aug 15 09:51:47 2024 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=66bdcfb2-dddd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:6d:d5:78:e4:72:31:28:71:21:d4:6a:8d:98:
3f:70:51:6b:93:53:d6:57:52:2e:df:d5:ac:e6:a4:
35:48:f1:02:17:6f:7e:a4:9f:26:97:94:a0:cb:fb:
36:5e:1c:18:92:50:2e:a1:9b:ab:21:be:b7:55:d5:
66:53:db:47:fb:42:28:32:f9:40:d8:57:d4:88:b2:
27:10:e3:4e:1e:3d:24:e0:8f:2a:e3:13:5c:b1:77:
bd:f2:9f:52:ad:db:99:df:67:c8:13:a3:35:a3:ee:
9b:c1:20:b3:2d:3b:31:a2:44:e7:06:26:51:13:64:
ef:1a:05:e3:06:10:e4:2d:47:5d:fb:2f:73:cf:de:
11:9e:ec:81:52:88:58:ae:20:82:59:ec:aa:56:f0:
35:80:a0:1a:76:33:66:bb:56:5f:89:e2:5c:9e:72:
ae:5d:f4:97:94:43:fd:ba:07:dc:3c:44:6f:ec:20:
97:0e:54:a7:7d:e1:23:5e:ee:6e:17:3c:91:64:a9:
e9:39:ec:55:75:4c:a4:ac:5a:14:54:7e:0c:cb:b3:
cf:f2:a5:d1:e5:52:c8:46:02:88:15:8f:73:1f:95:
00:e6:57:f8:19:a8:12:20:be:80:4a:04:19:68:b1:
14:ea:89:2a:7e:ea:ad:a9:29:c1:2b:3f:bb:77:38:
3d:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:73:97:8F:2B:1E:CF:26:D4:BD:93:A1:23:6B:69:20:AE:D7:8D:27
X509v3 Authority Key Identifier:
keyid:E0:B6:08:AF:53:41:4B:6F:59:7D:18:CA:E7:A2:14:48:3E:8A:65:9E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917336A/86D7B8625AEA11EF94E93D6EC4F9AE02/4LYIr1NBS29ZfRjK56IUSD6KZZ4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4LYIr1NBS29ZfRjK56IUSD6KZZ4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917336A/86D7B8625AEA11EF94E93D6EC4F9AE02/FC30341C5AEB11EF8B92C770C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
166.100.0.0/16
Signature Algorithm: sha256WithRSAEncryption
b3:27:4a:47:f8:2c:a3:d6:48:6d:49:91:09:71:f7:85:a2:ad:
de:1c:f9:f9:f9:4c:47:e1:14:df:97:73:af:80:b1:c7:b9:d0:
19:55:03:3f:9d:9a:06:4b:37:1f:6c:d8:a9:65:8c:be:bc:95:
55:ae:c2:55:a7:eb:3a:ea:83:a7:46:28:c9:cc:2c:5c:10:aa:
26:ab:5e:b1:53:a9:a3:c1:35:57:3a:2e:f6:eb:76:6e:a8:4e:
1b:42:68:98:d0:83:f2:8a:15:a8:e0:32:55:62:39:c6:d1:d2:
15:66:87:38:78:7b:ef:47:ba:47:7f:08:79:b5:05:16:7d:bb:
d1:d8:4d:82:19:25:36:e2:51:07:aa:3c:9b:49:43:43:cd:3f:
6b:78:b0:c5:6f:16:af:9f:3e:dd:a3:cc:cc:97:81:59:c0:a4:
0b:ba:2f:17:e0:84:f2:0d:36:e8:20:5e:94:62:72:1c:10:ec:
cc:36:48:73:15:84:94:76:a9:e8:1e:1c:9c:73:e9:cd:c8:0e:
e3:60:fe:a6:5b:ab:49:57:40:8e:81:d8:e3:23:5c:e0:c6:e5:
7e:ca:63:a9:e3:ad:90:71:18:d5:4f:48:48:56:b6:09:6a:48:
43:8f:01:b5:d6:fe:46:f9:2c:4c:d7:05:26:ed:ab:fd:e4:98:
c4:00:0b:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 15 17:31:36 2024 by rpki-client on console-ams.rpki-client.org