Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9190818/7E1F6AE2909D11EF9717F650C4F9AE02/3159F676909F11EF8F63A455C4F9AE02.roa
File: 3159F676909F11EF8F63A455C4F9AE02.roa (raw, json)
Hash identifier: LDp79TPJF0EkBzzSeNjHOBwJeVq7UC7uSjiKStxhRdk=
Subject key identifier: 15:F3:78:0F:51:E1:94:62:49:97:62:51:73:11:41:04:A1:1C:EC:86
Certificate issuer: /CN=A9190818/serialNumber=548430EAB88E4E378FB5005AFAE5CAB9C0007A1A
Certificate serial: 02
Authority key identifier: 54:84:30:EA:B8:8E:4E:37:8F:B5:00:5A:FA:E5:CA:B9:C0:00:7A:1A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VIQw6riOTjePtQBa-uXKucAAeho.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9190818/7E1F6AE2909D11EF9717F650C4F9AE02/3159F676909F11EF8F63A455C4F9AE02.roa
Signing time: Tue 22 Oct 2024 17:58:08 +0000
ROA not before: Tue 22 Oct 2024 17:58:08 +0000
ROA not after: Sat 31 Jan 2026 00:00:00 +0000
asID: 153371
IP address blocks: 2401:ce20::/32 maxlen: 40
Validation: Failed, certificate revoked on Thu 31 Oct 2024 14:23:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9190818/serialNumber=548430EAB88E4E378FB5005AFAE5CAB9C0007A1A
Validity
Not Before: Oct 22 17:58:08 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=6717e7af-ae52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:df:e0:1f:22:ee:e1:00:5a:1d:e8:99:a5:0a:
8e:91:b5:d5:ec:7e:e0:38:9e:14:d6:aa:08:ee:11:
8d:94:8d:6b:c4:0a:02:54:94:e9:c9:30:30:5f:cd:
61:01:d7:cc:18:b8:9f:6f:88:f3:56:8d:24:02:a7:
a6:a3:40:34:2d:12:e9:e1:9c:25:a4:c1:0b:53:12:
e4:51:ee:bd:12:ef:51:32:2d:a4:72:9b:6d:3d:b3:
41:7a:d3:ee:a0:01:12:c2:52:43:fb:1e:4a:d3:a2:
5f:b6:c1:1c:11:91:f4:5a:38:9c:af:a4:ba:00:c5:
cf:5b:08:13:e5:98:48:ee:5d:6b:13:54:d7:4b:0e:
3b:39:86:3e:e7:fa:3a:b8:6c:1f:f8:bf:7f:52:4f:
3e:55:2f:63:4b:bd:be:39:72:8f:df:2a:c5:f3:80:
13:c0:de:0a:66:87:97:6e:3c:53:04:fc:19:39:05:
7b:63:cb:87:0e:fa:6c:e7:19:17:d1:d0:f1:35:1f:
0d:45:07:19:93:8a:6d:f4:89:03:86:b1:57:42:d6:
5d:0c:7e:c6:13:d6:2d:27:dd:50:a3:5d:8a:18:23:
f5:7f:88:a1:2d:13:0a:32:7a:1c:c6:95:98:3e:8e:
62:22:e9:8d:a5:b8:b8:7c:41:56:70:60:dc:8c:03:
ed:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:F3:78:0F:51:E1:94:62:49:97:62:51:73:11:41:04:A1:1C:EC:86
X509v3 Authority Key Identifier:
keyid:54:84:30:EA:B8:8E:4E:37:8F:B5:00:5A:FA:E5:CA:B9:C0:00:7A:1A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9190818/7E1F6AE2909D11EF9717F650C4F9AE02/VIQw6riOTjePtQBa-uXKucAAeho.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VIQw6riOTjePtQBa-uXKucAAeho.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9190818/7E1F6AE2909D11EF9717F650C4F9AE02/3159F676909F11EF8F63A455C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:ce20::/32
Signature Algorithm: sha256WithRSAEncryption
0d:d6:c7:b3:e9:95:cf:2f:b6:0d:44:db:0f:1a:2d:0a:51:f4:
ec:1c:36:20:9e:6a:01:1e:19:76:f3:b8:61:dc:92:ac:a3:dd:
31:60:fd:b2:81:26:92:9e:99:fb:47:72:1d:1c:26:da:05:50:
5a:30:5d:81:e6:73:b2:4c:80:d8:34:78:36:f9:e4:64:52:89:
f3:0c:bd:ac:ad:64:55:44:26:67:f1:c6:2f:37:e4:6a:75:63:
e7:b6:0f:eb:21:76:9a:c6:f6:dc:83:15:86:ea:22:41:ef:18:
36:8c:63:30:61:51:33:ae:65:d0:bb:8e:9e:98:d4:e9:3f:83:
56:20:47:04:48:ad:02:a4:db:6e:15:39:3d:87:6f:f6:03:30:
7b:ef:54:a5:80:12:73:a7:64:4c:49:37:40:78:b0:a1:e6:08:
a8:be:63:7a:ea:58:b7:1d:98:57:48:84:30:25:41:b1:61:4c:
b1:8f:84:01:9c:2c:fa:54:1f:4f:e7:50:ce:eb:de:25:a4:41:
27:87:53:c8:a2:2d:30:ac:48:02:46:3f:90:05:17:a6:ac:08:
04:68:44:39:dd:5f:a2:91:46:90:ed:c2:ed:5e:2d:68:86:e2:
0a:12:f9:f6:e7:d2:5c:41:de:2c:e1:cc:9d:fc:0c:1a:bc:25:
24:2f:c2:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 31 17:47:13 2024 by rpki-client on console-fra.rpki-client.org