Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9190D72/8B25AD04D22B11EEBC145343C4F9AE02/6D2E4280D4D711EE89EF955BC4F9AE02.roa
File: 6D2E4280D4D711EE89EF955BC4F9AE02.roa (raw, json)
Hash identifier: 7a4zJTtUNaVChBwfNvXJUvEKrqEA15NjZfo+j3NZeYI=
Subject key identifier: 46:AF:C8:2B:AB:93:93:42:09:9D:35:CC:5C:FA:A8:ED:FF:63:8D:69
Certificate issuer: /CN=A9190D72/serialNumber=1EB9AE8BF5959FE8BF2EB82B923B717EFF3106C5
Certificate serial: 06
Authority key identifier: 1E:B9:AE:8B:F5:95:9F:E8:BF:2E:B8:2B:92:3B:71:7E:FF:31:06:C5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hrmui_WVn-i_Lrgrkjtxfv8xBsU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9190D72/8B25AD04D22B11EEBC145343C4F9AE02/6D2E4280D4D711EE89EF955BC4F9AE02.roa
Signing time: Mon 26 Feb 2024 18:47:01 +0000
ROA not before: Mon 26 Feb 2024 18:47:01 +0000
ROA not after: Wed 28 May 2025 00:00:00 +0000
asID: 152586
IP address blocks: 2401:8360:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 25 Jul 2024 18:34:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6 (0x6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9190D72/serialNumber=1EB9AE8BF5959FE8BF2EB82B923B717EFF3106C5
Validity
Not Before: Feb 26 18:47:01 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=65dcdca5-03c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:91:e7:0b:50:23:57:0c:c3:c7:24:4a:8d:61:
94:1b:80:d3:c0:4a:4c:39:6f:3b:b7:6a:2a:45:bb:
fb:7c:a3:9b:00:a5:d2:5c:c1:4d:36:1b:6a:69:02:
7d:31:7b:52:78:b7:ca:21:57:32:c4:38:7a:52:4d:
c1:56:74:db:4d:22:83:92:48:a3:96:e9:a7:a2:5d:
38:43:b5:a4:e1:5f:c0:7a:5f:fc:59:ec:e7:92:7c:
23:a3:52:4a:c1:81:96:50:97:a6:d8:24:71:c9:ac:
63:3c:42:a0:4e:3f:a7:c4:89:94:ff:06:75:27:a6:
39:8a:bd:5d:d4:ba:74:c4:13:6f:e7:0c:ec:7c:bc:
4b:d3:7d:46:44:09:0d:46:75:28:df:62:0a:7f:d9:
5c:1d:50:75:fb:46:fd:94:ab:ff:d3:a8:b2:d0:38:
59:58:4e:00:37:de:3b:7f:11:fd:e3:9b:cf:16:f4:
04:b8:b1:6e:c2:ed:bb:18:f7:f5:45:86:3a:7b:51:
d6:57:33:27:b9:f4:d7:92:33:4c:06:34:d5:e4:fb:
72:ec:3c:f3:cf:67:e8:b3:b5:70:53:fe:22:6a:e8:
c8:9a:27:5f:14:83:ed:98:ce:bf:e6:7c:29:86:a1:
75:e0:13:98:e8:d3:f9:dc:ca:b5:0a:83:d8:b7:b2:
37:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:AF:C8:2B:AB:93:93:42:09:9D:35:CC:5C:FA:A8:ED:FF:63:8D:69
X509v3 Authority Key Identifier:
keyid:1E:B9:AE:8B:F5:95:9F:E8:BF:2E:B8:2B:92:3B:71:7E:FF:31:06:C5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9190D72/8B25AD04D22B11EEBC145343C4F9AE02/Hrmui_WVn-i_Lrgrkjtxfv8xBsU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hrmui_WVn-i_Lrgrkjtxfv8xBsU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9190D72/8B25AD04D22B11EEBC145343C4F9AE02/6D2E4280D4D711EE89EF955BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:8360:1::/48
Signature Algorithm: sha256WithRSAEncryption
b2:8d:20:1d:28:81:c6:0c:18:9c:bb:4e:49:9f:03:a8:ed:70:
53:5d:b2:a9:34:18:7f:03:bd:b9:13:dd:3f:80:ec:bf:a6:ad:
56:44:c4:9c:f3:47:0a:f3:be:37:b8:c9:a0:33:4a:b2:f2:8b:
6a:2c:41:e8:fa:bb:70:04:af:d9:22:e4:8e:70:62:b1:c6:cf:
c5:b8:71:5e:f4:67:7a:c1:10:4c:4b:e3:21:31:74:f8:e4:e8:
62:b8:58:5d:7e:4c:04:1f:af:6d:ab:57:6a:ff:ab:d7:10:0f:
58:fe:f5:91:1f:c7:e6:b7:3d:f3:fd:64:b8:fb:1b:c2:e6:57:
c2:e4:5e:76:8a:0a:04:36:84:f2:52:df:fd:61:31:da:cf:4d:
39:e4:e1:8c:e3:7e:ad:7d:80:0f:d0:b1:ec:7d:ff:ae:24:41:
0c:a7:00:e5:c6:e0:52:ff:d9:18:68:56:85:a5:d7:87:8d:c5:
8c:a5:c9:ca:b6:d8:f4:4d:f1:52:a5:8b:66:c9:b7:fd:6b:f0:
d7:4d:86:e5:69:95:ec:6d:6d:bd:aa:67:9b:69:32:f9:45:7d:
69:83:6a:35:0b:e8:d6:fc:ab:95:e6:63:67:60:87:f0:0e:02:
8b:0f:b4:1a:a7:78:65:39:48:ba:70:e9:c3:07:f5:e9:cb:0d:
14:ca:6d:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 25 21:18:57 2024 by rpki-client on console-ams.rpki-client.org