Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91813D1/4AD0E336AB5511E6BF3AFB82C4F9AE02/E07C87C432D911EEB708051EC4F9AE02.roa
File: E07C87C432D911EEB708051EC4F9AE02.roa (raw, json)
Hash identifier: pU37cUTmBcFEHI71hYhzaPDJZimFDlLzh9Y/4FR6+1E=
Subject key identifier: 24:EB:60:5F:F4:C5:BF:A9:10:3E:CF:70:E5:2F:63:BE:A3:57:93:60
Certificate issuer: /CN=A91813D1/serialNumber=78384E58B12035E056CC0DB137E45C2737E6443A
Certificate serial: 1CF8
Authority key identifier: 78:38:4E:58:B1:20:35:E0:56:CC:0D:B1:37:E4:5C:27:37:E6:44:3A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eDhOWLEgNeBWzA2xN-RcJzfmRDo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91813D1/4AD0E336AB5511E6BF3AFB82C4F9AE02/E07C87C432D911EEB708051EC4F9AE02.roa
Signing time: Wed 02 Oct 2024 16:23:52 +0000
ROA not before: Wed 02 Oct 2024 16:23:52 +0000
ROA not after: Fri 31 Jan 2025 00:00:00 +0000
asID: 59374
IP address blocks: 2406:480::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 18 Nov 2024 23:13:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7416 (0x1cf8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91813D1/serialNumber=78384E58B12035E056CC0DB137E45C2737E6443A
Validity
Not Before: Oct 2 16:23:52 2024 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=66fd7398-7992
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:15:41:84:93:02:ab:45:e5:d8:e5:17:05:13:
1c:c6:8e:ee:a5:37:6d:48:64:b8:9b:97:0d:94:14:
84:e8:4c:e8:9c:95:97:6f:01:30:70:94:a9:c3:af:
ce:b2:60:b1:d2:d5:8b:a1:be:2f:93:c4:9d:d6:1d:
1a:66:ce:14:ad:af:78:31:0a:82:0b:83:62:f7:c8:
c5:c2:77:20:69:fe:99:c9:2d:89:86:ed:c0:96:9b:
2f:26:04:f4:e8:70:73:a0:ca:f6:72:0e:03:46:33:
27:7c:20:6c:59:f9:74:0d:2a:ca:df:65:c5:8e:17:
43:35:db:1c:ef:21:bd:7d:af:f3:9c:65:bb:be:df:
a7:58:4b:e9:91:e7:a9:70:3f:9c:bb:b6:f8:05:64:
13:b9:b5:8d:ae:d6:ee:a0:d4:d1:33:8f:e1:36:0e:
d8:83:45:1d:13:06:98:54:16:3f:03:2e:1a:a0:03:
1f:dc:f7:15:39:6a:ae:25:a9:36:ca:c1:b5:c9:9c:
21:8d:f0:b9:e9:50:5e:2a:e6:ac:b6:8e:fa:55:99:
15:62:88:ce:26:a6:8e:50:99:31:15:38:1b:81:c4:
68:dd:3b:f8:9d:15:86:7b:8d:53:15:62:d1:7d:bc:
20:52:8a:25:1b:06:1e:2a:4b:01:87:0b:c0:1d:de:
6b:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:EB:60:5F:F4:C5:BF:A9:10:3E:CF:70:E5:2F:63:BE:A3:57:93:60
X509v3 Authority Key Identifier:
keyid:78:38:4E:58:B1:20:35:E0:56:CC:0D:B1:37:E4:5C:27:37:E6:44:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91813D1/4AD0E336AB5511E6BF3AFB82C4F9AE02/eDhOWLEgNeBWzA2xN-RcJzfmRDo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eDhOWLEgNeBWzA2xN-RcJzfmRDo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91813D1/4AD0E336AB5511E6BF3AFB82C4F9AE02/E07C87C432D911EEB708051EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:480::/32
Signature Algorithm: sha256WithRSAEncryption
63:2d:3a:68:8a:77:fd:d5:ff:d2:81:ee:2c:83:28:14:0d:d4:
76:c4:f3:1b:fc:14:1f:e9:03:a9:48:5d:8d:2f:0f:48:e2:72:
89:2c:1c:88:67:74:5a:3d:10:48:61:be:be:6f:1a:15:24:0c:
62:24:19:74:db:fd:20:a8:dd:54:ff:12:91:06:8d:33:7a:b8:
da:5b:f1:d8:b9:37:a0:24:9c:cc:7d:c6:f3:d6:a7:ef:b6:4c:
3a:2d:b5:42:0c:ce:74:2f:74:70:6c:5e:bf:d8:c2:39:50:3a:
3d:f9:3b:a8:80:01:9c:e5:37:de:87:9b:b5:be:5d:c2:57:87:
2c:58:25:80:26:95:b5:36:64:fe:6f:4d:8d:92:12:ea:aa:e5:
49:70:6f:8d:71:a4:b0:47:73:da:2b:05:9c:53:12:f5:38:04:
cb:a9:9d:01:b4:b6:4a:b0:7a:83:c8:55:18:63:6b:20:96:2a:
e8:a2:a4:28:54:a5:b7:34:54:5e:85:00:57:06:c6:08:ce:67:
0a:1d:9a:5f:3f:ec:45:50:93:ae:8a:50:10:0a:13:51:f1:4a:
d2:0c:a6:46:39:0b:91:cd:13:b5:6c:e4:28:b0:cf:48:62:7f:
ec:0b:a3:63:54:6c:88:5b:d9:60:9a:5b:70:5d:05:78:5e:83:
d0:ab:36:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 19 00:48:05 2024 by rpki-client on console-fra.rpki-client.org