Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/D30D3DDC10F411EF995D0616C4F9AE02.roa
File: D30D3DDC10F411EF995D0616C4F9AE02.roa (raw, json)
Hash identifier: SWBn6x2YPYMTUU1zTTQU9iY3KcgxKwXBoA7cg4zeEoc=
Subject key identifier: 8C:C0:A6:E2:1F:E7:98:6F:78:D3:58:D0:3C:55:B5:8D:04:6F:D5:05
Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9
Certificate serial: 19AD
Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/D30D3DDC10F411EF995D0616C4F9AE02.roa
Signing time: Mon 13 May 2024 06:48:37 +0000
ROA not before: Mon 13 May 2024 06:48:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 141252
IP address blocks: 160.19.42.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 13 May 2024 07:20:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6573 (0x19ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9
Validity
Not Before: May 13 06:48:37 2024 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6641b7c5-600f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:5f:62:c6:48:74:d0:d0:f8:13:16:66:3e:4c:
32:bd:76:97:4c:76:06:c6:e0:56:52:72:aa:f7:30:
b9:b3:ac:59:94:8a:2a:56:0a:ee:c2:36:53:2d:92:
b1:3c:2d:44:f6:90:8c:37:97:fe:f6:c5:ab:1f:5d:
0f:07:c5:9f:0b:4e:f6:20:04:bc:8c:d3:ea:39:3e:
f4:28:05:7d:80:2a:8c:da:06:06:26:cc:d4:97:0f:
e0:7f:ae:df:b7:1a:3b:b0:9b:4e:38:e3:09:c4:b2:
51:ac:06:4f:e6:68:c7:94:68:50:18:22:2d:f0:cb:
d3:69:e2:9b:ed:9d:ec:f1:c3:64:53:2b:35:e8:c9:
9d:bb:e5:40:d9:ad:55:07:28:5b:df:f8:ad:5e:7a:
eb:f3:01:d3:9a:31:72:18:ef:b5:5b:13:ef:a8:f7:
a9:46:ad:c8:af:8b:25:03:39:b5:2b:2a:27:f8:00:
62:83:71:66:31:8b:e1:58:de:a0:44:17:7d:04:b7:
80:27:48:60:fe:c8:bd:af:d2:1b:f8:36:4d:4c:bb:
6a:b5:20:ed:d5:37:12:eb:e7:19:eb:3f:a6:82:17:
05:74:63:02:fe:b8:98:41:00:4e:38:67:bc:10:e1:
6d:9f:8f:43:03:b2:8d:67:11:b8:dc:a8:7c:34:e3:
6e:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:C0:A6:E2:1F:E7:98:6F:78:D3:58:D0:3C:55:B5:8D:04:6F:D5:05
X509v3 Authority Key Identifier:
keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/D30D3DDC10F411EF995D0616C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.19.42.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:9e:a3:aa:24:88:ae:56:d4:cc:8b:6b:1e:43:c7:c7:03:7f:
15:2b:f5:b4:67:f4:c4:aa:4a:51:a5:90:43:77:12:64:23:19:
b8:4a:c3:9c:c2:fd:2d:38:db:78:b8:5e:79:1a:dc:74:11:da:
d7:b9:8e:03:62:8b:1a:2e:17:8b:a1:8b:a8:d4:eb:50:3b:5f:
31:5d:27:9f:5c:b3:41:5d:35:64:15:2c:8f:b4:08:44:64:4e:
90:e5:62:55:c3:a4:0c:1d:37:c2:22:73:4f:d2:91:15:53:4e:
27:a1:b0:38:a2:72:e1:57:d5:87:f2:5e:09:8a:86:dc:42:4c:
df:ae:f7:72:8b:e2:1c:3e:19:4a:6a:9d:96:db:b4:b8:d8:2e:
85:8a:69:c8:fe:29:9e:3c:5a:93:00:32:7a:71:43:38:d0:5a:
00:61:e8:d6:c5:7e:61:9b:ae:a4:b0:c9:91:fb:fd:fb:64:bb:
53:1f:a7:f2:1f:f1:d4:ee:af:27:de:66:59:58:08:3b:44:46:
4a:70:67:b2:57:ee:d6:2c:a8:e8:d7:d7:d4:e4:31:52:7f:24:
29:4b:6c:28:7c:0d:13:ed:39:c2:89:29:67:62:2e:7b:66:53:
91:8a:1b:6d:a4:89:0f:fb:9a:5c:c3:af:2f:dc:11:f9:b3:11:
5e:2d:a2:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:15 2024 by rpki-client on console-fra.rpki-client.org