Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917E1FE/386235F06F8811EBA86BF64AC4F9AE02/35BD6160621311ED8636BD28C4F9AE02.roa
File: 35BD6160621311ED8636BD28C4F9AE02.roa (raw, json)
Hash identifier: pIwC4cd8n4zVnM/D/CKobxEHQxb24ZN375oOdoPdW+s=
Subject key identifier: F3:00:00:11:35:CB:2E:58:D2:4A:F6:82:19:F1:6E:B0:03:1E:50:E6
Certificate issuer: /CN=A917E1FE/serialNumber=EDEB96F04C8D3EDCCBEEBA40C4242922A8136B53
Certificate serial: 054E
Authority key identifier: ED:EB:96:F0:4C:8D:3E:DC:CB:EE:BA:40:C4:24:29:22:A8:13:6B:53
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7euW8EyNPtzL7rpAxCQpIqgTa1M.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917E1FE/386235F06F8811EBA86BF64AC4F9AE02/35BD6160621311ED8636BD28C4F9AE02.roa
Signing time: Wed 31 May 2023 01:28:50 +0000
ROA not before: Wed 31 May 2023 01:28:50 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 36.255.198.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 14 Oct 2023 04:51:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1358 (0x54e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917E1FE/serialNumber=EDEB96F04C8D3EDCCBEEBA40C4242922A8136B53
Validity
Not Before: May 31 01:28:50 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=6476a2d2-b297
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:d7:d2:ec:52:9f:1e:c0:92:fa:e8:44:52:e1:
c6:17:67:db:ac:d5:ef:b5:46:a4:40:2c:12:21:cf:
ab:9a:e5:58:48:54:84:78:3e:4a:d0:2b:29:4e:56:
ad:ed:66:14:ff:8f:3e:e2:fb:88:55:08:b2:3d:a4:
9c:62:72:6c:27:38:34:94:e5:fa:89:a4:bb:28:52:
32:a6:a5:ad:66:3a:9b:e2:01:c6:4b:e7:11:70:a6:
87:cc:3f:08:bd:cb:a8:59:49:65:bf:12:2d:37:29:
7a:41:89:40:a6:d4:17:9d:c8:df:71:8e:b6:b7:7f:
bb:56:ee:c5:17:40:88:ab:6f:fc:84:09:61:28:32:
2f:f7:1e:2c:50:77:36:e1:43:a1:6a:a0:26:ad:d2:
a0:62:d9:02:95:e2:96:59:75:1e:85:d5:62:81:85:
66:55:20:b4:6b:3f:3b:d9:f0:a5:0d:85:17:46:36:
a1:bc:84:17:f5:5e:9d:6d:6e:63:75:b2:36:c0:63:
aa:0b:1f:62:f7:c1:d9:4b:a3:e1:83:a6:62:a4:4b:
b5:34:a1:4e:10:d7:94:4f:32:34:63:4d:9f:58:19:
92:af:9c:98:cc:c7:58:11:12:e9:3a:8f:ed:35:34:
21:8a:ba:c2:1c:f1:0b:54:c5:0a:23:b4:d0:6e:44:
ff:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:00:00:11:35:CB:2E:58:D2:4A:F6:82:19:F1:6E:B0:03:1E:50:E6
X509v3 Authority Key Identifier:
keyid:ED:EB:96:F0:4C:8D:3E:DC:CB:EE:BA:40:C4:24:29:22:A8:13:6B:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917E1FE/386235F06F8811EBA86BF64AC4F9AE02/7euW8EyNPtzL7rpAxCQpIqgTa1M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7euW8EyNPtzL7rpAxCQpIqgTa1M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E1FE/386235F06F8811EBA86BF64AC4F9AE02/35BD6160621311ED8636BD28C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
36.255.198.0/24
Signature Algorithm: sha256WithRSAEncryption
45:7f:5c:01:69:5a:9e:f4:af:8b:4e:b8:38:a9:0f:86:9b:ce:
f1:ed:bb:f0:22:db:43:9e:0c:70:48:1a:be:c6:98:ef:ae:c6:
1d:52:00:ca:ec:4f:bf:8f:7b:4f:29:0f:5d:f5:74:4e:aa:b6:
79:54:db:ea:1b:10:80:95:e2:a0:0c:e5:f3:d5:2b:c9:e9:a7:
f7:1d:40:1d:e8:27:c7:af:3c:10:07:d1:c8:1e:f6:be:f5:46:
d7:98:29:61:60:88:69:dc:ce:a6:e7:87:84:a6:37:a2:52:91:
bf:5a:50:87:39:15:45:68:f3:b5:57:0b:72:1d:48:36:6c:70:
66:9d:cd:7c:9b:99:06:58:3e:06:a9:0d:cf:69:ae:b1:0d:2b:
9e:83:08:6e:a0:9c:54:f2:ed:68:3d:5e:c6:58:bf:2b:bd:d1:
83:2c:5a:3b:9d:8b:16:21:c3:63:0d:01:00:05:ae:ff:e5:b6:
50:59:27:2d:51:83:d6:f4:dd:74:34:f9:d5:eb:52:b9:fd:13:
44:38:82:8c:b2:d8:c9:31:f7:69:0a:68:ab:3d:59:c4:ff:0f:
b6:63:bc:01:d2:b9:50:25:71:ba:cb:ec:2b:1e:95:fe:8b:d3:
bc:13:b5:b5:02:62:97:d6:54:e3:f5:17:b9:56:3c:82:d2:bd:
45:61:ec:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:13 2024 by rpki-client on console-fra.rpki-client.org