Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/86531A180B6D11ED81E33B71C4F9AE02.roa
File: 86531A180B6D11ED81E33B71C4F9AE02.roa (raw, json)
Hash identifier: zic9/G/aF6XPDe+MNoBzhpw42IyjQPSq0cfbz9PPzt0=
Subject key identifier: B8:27:F9:EF:45:E6:86:62:68:8F:53:EE:9B:75:28:52:A6:BF:EA:37
Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5
Certificate serial: 0A36
Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/86531A180B6D11ED81E33B71C4F9AE02.roa
Signing time: Sun 14 May 2023 22:14:06 +0000
ROA not before: Sun 14 May 2023 22:14:06 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 135364
IP address blocks: 2406:840:fef6::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 30 Mar 2024 15:17:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2614 (0xa36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5
Validity
Not Before: May 14 22:14:06 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=64615d2e-d3a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:29:2f:97:ce:69:3d:ff:da:7e:9c:cd:fd:e9:
8d:1b:58:c3:0f:6b:ce:58:82:18:82:78:13:ea:6c:
b8:37:53:4b:44:f6:56:91:7f:1e:42:6a:f6:ae:c8:
a5:8f:7d:4f:01:57:46:3b:91:ad:c3:35:4c:e3:ca:
03:4e:dd:b6:21:2f:8d:48:a3:3b:5c:21:a3:3e:01:
c5:cc:f1:3a:5b:f7:b6:e3:a6:6b:1e:e9:88:6f:db:
93:16:c9:66:70:29:56:dd:e1:4f:13:bd:cd:7e:56:
ba:de:7b:5f:54:dd:62:7b:54:ae:b9:19:1a:70:57:
08:75:b6:90:d0:59:77:f3:3b:ce:0d:53:08:67:fd:
ea:a6:5c:1b:3f:71:b1:57:ff:7d:1c:ec:8b:32:0f:
3a:56:0d:09:40:90:2a:0c:b4:8e:11:6f:cf:a8:95:
95:16:05:b2:4f:74:35:e8:63:5e:d1:f8:1e:83:a1:
a0:63:7f:53:e8:87:5a:f5:21:3a:c9:36:a1:e7:fc:
9c:58:91:76:06:69:9a:7b:52:31:b0:3a:6c:ce:47:
fd:7c:1d:f7:f3:df:a4:60:44:16:ce:bd:55:4b:10:
b7:65:42:c3:10:0c:e1:b1:b1:df:b1:b2:d0:41:4b:
59:a4:cf:b6:8c:7c:a7:25:8c:9b:be:be:48:9a:c9:
33:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:27:F9:EF:45:E6:86:62:68:8F:53:EE:9B:75:28:52:A6:BF:EA:37
X509v3 Authority Key Identifier:
keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/86531A180B6D11ED81E33B71C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:840:fef6::/48
Signature Algorithm: sha256WithRSAEncryption
9f:f2:33:e6:f9:9a:ae:59:39:bf:e6:da:3a:22:cf:09:02:d3:
b7:f8:b8:40:f3:f6:c3:83:29:0f:cf:32:24:69:26:67:11:bb:
a1:2f:b5:da:a7:45:64:18:67:80:2e:f5:5c:d0:1a:20:ec:1c:
bc:01:69:87:60:5a:3e:44:c2:64:e2:8f:7e:38:e3:7f:fb:a8:
8c:f9:37:67:d4:ac:73:12:3f:1e:92:76:d7:1d:b7:6b:be:ca:
09:39:18:96:73:da:18:cb:7c:48:b9:b8:2f:c5:80:83:38:b1:
73:b9:91:9c:03:42:d0:24:58:c7:5c:21:91:d9:ee:8c:ee:65:
55:13:64:3f:38:10:ad:b8:b7:e4:d6:36:5f:c7:68:61:39:bc:
41:62:d6:5d:28:df:21:ac:30:ce:b3:02:97:49:6d:d7:db:13:
22:71:2f:4e:7c:89:62:ff:58:0b:4d:48:08:24:38:8b:05:be:
30:2d:fc:bb:b6:ec:96:4a:53:1c:7f:36:45:51:31:69:f3:77:
51:a7:c0:e9:09:47:63:e2:7d:5a:73:05:22:48:7a:a5:21:77:
fd:b3:06:12:ec:5e:d1:ac:ba:38:67:79:27:e8:73:1e:a2:59:
d8:40:51:29:3e:c8:f7:a7:5e:ec:2b:59:df:e9:07:6b:89:89:
82:6e:af:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 30 16:09:24 2024 by rpki-client on console-ams.rpki-client.org