Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9178B2B/BFDD222E3C4411EAAEE6F70AC4F9AE02/F8FF96D682EA11EEB9B75163C4F9AE02.roa
File: F8FF96D682EA11EEB9B75163C4F9AE02.roa (raw, json)
Hash identifier: pGfKpXsnGtQQfe0EK8o54W3KOKkviYWEGBpqZD0liDg=
Subject key identifier: 97:65:25:35:DE:DC:2A:31:31:53:7F:87:44:F3:A1:AE:F2:B5:9B:7F
Certificate issuer: /CN=A9178B2B/serialNumber=202079D6C9FE07BF186221D1A99827CBF6B122AE
Certificate serial: 0A1B
Authority key identifier: 20:20:79:D6:C9:FE:07:BF:18:62:21:D1:A9:98:27:CB:F6:B1:22:AE
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ICB51sn-B78YYiHRqZgny_axIq4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9178B2B/BFDD222E3C4411EAAEE6F70AC4F9AE02/F8FF96D682EA11EEB9B75163C4F9AE02.roa
Signing time: Tue 14 Nov 2023 12:40:21 +0000
ROA not before: Tue 14 Nov 2023 12:40:21 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 38001
IP address blocks: 45.115.27.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 02 Dec 2023 13:44:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2587 (0xa1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9178B2B/serialNumber=202079D6C9FE07BF186221D1A99827CBF6B122AE
Validity
Not Before: Nov 14 12:40:21 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=65536ab4-10d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:47:b0:64:0c:15:4d:2f:7c:78:6c:f6:da:59:
2e:50:aa:42:06:a9:03:22:e5:e9:8e:82:ca:f6:da:
1c:ac:57:d7:d6:1c:86:ba:99:ca:10:36:76:b5:de:
41:cc:08:30:97:1f:6d:f0:45:ec:cc:ee:e9:08:19:
fc:9a:95:e9:c1:6d:e3:e2:da:a7:93:0f:58:d5:9c:
b6:28:b4:51:e9:8e:f1:79:ed:bb:91:fe:29:4e:b8:
c7:ab:d2:2d:7b:51:e0:28:74:ec:18:a5:1d:93:c6:
56:bc:64:5e:1d:66:98:b5:8b:c8:4e:c3:29:3c:18:
fb:0c:15:ab:44:ca:2f:38:2a:fd:2a:75:a9:ae:f2:
87:17:35:bf:41:38:4d:1f:f5:c2:d2:31:fa:76:1f:
4d:76:66:94:6c:d0:e8:eb:35:90:7d:cb:5d:e5:df:
e7:d7:44:68:39:2e:13:89:11:4d:9e:53:d8:b8:ae:
c5:1e:1a:08:20:51:54:b5:4b:17:65:5a:55:1f:a4:
48:38:55:f0:5a:af:85:24:d9:c3:33:3a:12:97:78:
e7:87:db:15:6a:38:04:57:8c:57:af:4c:e8:4e:c4:
6f:0c:b3:a5:a1:3a:b4:da:78:09:3f:29:f5:32:dc:
63:ed:64:6a:ac:3d:ba:65:db:d9:c9:91:bb:2d:1f:
f5:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:65:25:35:DE:DC:2A:31:31:53:7F:87:44:F3:A1:AE:F2:B5:9B:7F
X509v3 Authority Key Identifier:
keyid:20:20:79:D6:C9:FE:07:BF:18:62:21:D1:A9:98:27:CB:F6:B1:22:AE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9178B2B/BFDD222E3C4411EAAEE6F70AC4F9AE02/ICB51sn-B78YYiHRqZgny_axIq4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ICB51sn-B78YYiHRqZgny_axIq4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178B2B/BFDD222E3C4411EAAEE6F70AC4F9AE02/F8FF96D682EA11EEB9B75163C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.115.27.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:ec:ab:5b:75:54:9e:8b:12:7d:6a:c0:21:22:c9:d3:5d:7a:
75:98:69:45:6c:10:a5:8e:00:25:77:a5:4f:f6:ac:ff:8b:99:
43:64:ce:b3:64:e7:56:2f:ad:34:32:8b:ac:b4:8a:f0:ba:ee:
91:de:b0:ed:84:38:5f:fc:5d:09:85:fc:28:2e:a9:6a:c0:d6:
67:51:e7:6c:d0:d5:b4:bd:af:ce:8c:09:4a:f8:30:80:72:ca:
ba:06:34:fd:3c:0d:ff:e5:37:a1:d5:01:c0:39:3a:5a:1e:3f:
dd:10:cf:52:49:7b:62:59:bd:13:ae:5d:ef:11:78:20:73:cc:
02:86:03:f4:ba:53:90:9d:7e:34:e5:e7:1f:5e:71:37:de:67:
b9:86:60:3a:6e:7d:43:56:af:7d:2a:95:7f:a8:16:99:22:ea:
c9:72:a4:bd:bd:75:5c:b4:aa:e4:d4:3a:11:76:bd:62:27:bc:
4d:3d:99:cf:fd:30:7d:b7:94:b5:c4:be:c8:84:db:8d:40:ee:
0c:75:90:ef:5d:6f:a7:81:97:56:84:d5:27:33:3a:2f:32:68:
4e:a9:6a:72:24:f0:d6:d4:8d:75:12:64:92:b3:94:d2:e0:3c:
ff:a2:52:54:93:ff:b7:8a:51:01:d3:ad:79:e1:f1:e0:b4:f6:
c3:8b:91:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:12 2024 by rpki-client on console-fra.rpki-client.org