Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/6FCD931C96E211ED91732348C4F9AE02.roa
File: 6FCD931C96E211ED91732348C4F9AE02.roa (raw, json)
Hash identifier: uEfqbVI0kqJ0GJyp1eweCetLXyEZlQDSnRLPR97Sl3s=
Subject key identifier: AE:9F:AD:67:08:E5:53:D9:22:02:88:0C:99:81:4A:0A:26:B0:24:7A
Certificate issuer: /CN=A9191436/serialNumber=AD3BB603B14EFB26D715682FB041351EC8F9D367
Certificate serial: 110C
Authority key identifier: AD:3B:B6:03:B1:4E:FB:26:D7:15:68:2F:B0:41:35:1E:C8:F9:D3:67
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rTu2A7FO-ybXFWgvsEE1Hsj502c.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/6FCD931C96E211ED91732348C4F9AE02.roa
Signing time: Fri 31 Mar 2023 18:25:08 +0000
ROA not before: Fri 31 Mar 2023 18:25:08 +0000
ROA not after: Wed 29 May 2024 00:00:00 +0000
asID: 9902
IP address blocks: 167.179.4.0/22 maxlen: 22
167.179.4.0/24 maxlen: 24
167.179.5.0/24 maxlen: 24
167.179.6.0/24 maxlen: 24
167.179.7.0/24 maxlen: 24
167.179.8.0/21 maxlen: 21
167.179.8.0/24 maxlen: 24
167.179.9.0/24 maxlen: 24
167.179.10.0/24 maxlen: 24
167.179.11.0/24 maxlen: 24
167.179.12.0/24 maxlen: 24
167.179.13.0/24 maxlen: 24
167.179.14.0/24 maxlen: 24
167.179.15.0/24 maxlen: 24
167.179.16.0/22 maxlen: 22
167.179.16.0/24 maxlen: 24
167.179.17.0/24 maxlen: 24
167.179.18.0/24 maxlen: 24
167.179.19.0/24 maxlen: 24
167.179.28.0/22 maxlen: 22
167.179.28.0/24 maxlen: 24
167.179.29.0/24 maxlen: 24
167.179.30.0/24 maxlen: 24
167.179.31.0/24 maxlen: 24
167.179.36.0/22 maxlen: 22
167.179.36.0/24 maxlen: 24
167.179.37.0/24 maxlen: 24
167.179.39.0/24 maxlen: 24
167.179.40.0/21 maxlen: 21
167.179.46.0/24 maxlen: 24
167.179.47.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4364 (0x110c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9191436/serialNumber=AD3BB603B14EFB26D715682FB041351EC8F9D367
Validity
Not Before: Mar 31 18:25:08 2023 GMT
Not After : May 29 00:00:00 2024 GMT
Subject: CN=64272583-dad9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ef:cc:2e:a0:ab:a5:1a:b1:6e:13:97:aa:08:
ec:b8:a6:83:9c:38:76:e6:cf:48:9a:06:e6:c4:73:
3d:4b:e1:1d:99:91:f7:e8:a1:f8:8a:40:1e:b8:8e:
7b:fa:b8:dd:bb:af:d9:ce:af:5c:e8:7a:5f:ae:fc:
7d:82:c5:4e:32:a8:8c:46:99:8d:0d:68:13:81:f7:
40:72:8f:ce:24:91:74:bb:5b:50:41:52:46:5e:0d:
4b:82:ea:e1:3e:96:14:23:59:f5:1b:ee:ce:b4:a6:
8d:3b:c5:09:f9:32:01:e4:c6:3b:43:43:5d:85:20:
ba:d3:36:7b:d7:db:d3:a9:06:57:d6:5d:d4:33:8d:
dd:ec:45:a9:ff:a7:d9:1a:66:97:f4:e1:ff:b5:b4:
52:8b:cb:1a:d6:9b:28:29:e0:e3:f7:93:17:fa:aa:
84:23:55:e5:51:40:c7:e3:fb:56:63:9d:aa:9a:09:
c9:e4:e0:1f:81:2c:d7:a5:40:4d:7d:0b:f6:81:4b:
fc:72:2e:fc:f3:6f:89:24:c0:39:fc:07:af:a2:43:
52:64:d7:22:70:62:ad:66:fc:e1:32:e9:6c:00:55:
b9:51:16:4c:b3:a3:58:fb:c6:f1:d3:c4:ac:77:05:
71:a8:b7:46:9f:cc:9b:26:21:79:56:ac:50:8b:53:
2e:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:9F:AD:67:08:E5:53:D9:22:02:88:0C:99:81:4A:0A:26:B0:24:7A
X509v3 Authority Key Identifier:
keyid:AD:3B:B6:03:B1:4E:FB:26:D7:15:68:2F:B0:41:35:1E:C8:F9:D3:67
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rTu2A7FO-ybXFWgvsEE1Hsj502c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/6FCD931C96E211ED91732348C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
167.179.4.0-167.179.19.255
167.179.28.0/22
167.179.36.0-167.179.47.255
Signature Algorithm: sha256WithRSAEncryption
64:06:21:af:0b:57:3d:8f:83:06:10:39:08:4b:c6:d1:74:ec:
be:88:83:0e:11:38:23:98:14:11:75:b3:56:75:e1:05:77:35:
2e:b3:17:bf:5e:8d:ac:6f:c0:8d:d3:20:c6:fd:e7:79:09:4d:
e0:a0:7f:c4:02:7f:95:ee:d6:1b:50:8c:3f:4a:03:4c:3a:b0:
4a:32:c2:06:9c:e1:24:ab:86:be:c3:8c:89:5f:d0:00:13:36:
44:5a:e7:28:97:b9:e1:45:a2:66:b7:5a:4d:76:3f:0a:51:1d:
75:cf:3c:e6:c2:ae:6e:64:a4:53:73:73:d8:c6:60:35:1e:4d:
9b:dc:2e:a9:60:d7:50:c6:9c:c4:80:94:ee:90:df:da:5b:77:
ab:ce:88:d9:2f:0e:2a:65:e7:d2:98:70:9a:93:74:eb:e6:ee:
43:ba:a8:a7:1e:ec:a4:1b:49:66:e8:7a:f0:2e:e7:11:3f:bb:
34:0c:da:ec:f9:04:32:29:89:02:37:0b:46:b8:d4:b6:1f:37:
96:26:89:14:ec:d7:4f:7e:fd:d8:3c:61:96:19:d8:85:89:e7:
0f:6a:63:30:6a:df:06:14:c3:45:b4:72:9f:00:2f:9a:52:7c:
15:75:67:a4:36:e0:cd:aa:cc:67:9b:4d:89:73:43:19:ab:42:
17:ec:53:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:59 2023 by rpki-client on console-fra.rpki-client.org