Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/9BE1CE403EDB11EE9A042084C4F9AE02.roa
File: 9BE1CE403EDB11EE9A042084C4F9AE02.roa (raw, json)
Hash identifier: n2qnuprc1I4tLHZE96ZiesGr1+yBcn+65flB8xez/O0=
Subject key identifier: 91:12:E6:95:27:97:B6:E6:87:B4:AE:E6:6D:8F:55:C6:9E:21:E2:99
Certificate issuer: /CN=A9197390/serialNumber=A135B814E1EB1E27C9597EED2E822854930D3FCF
Certificate serial: 6A
Authority key identifier: A1:35:B8:14:E1:EB:1E:27:C9:59:7E:ED:2E:82:28:54:93:0D:3F:CF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oTW4FOHrHifJWX7tLoIoVJMNP88.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/9BE1CE403EDB11EE9A042084C4F9AE02.roa
Signing time: Thu 11 Jan 2024 06:27:49 +0000
ROA not before: Thu 11 Jan 2024 06:27:49 +0000
ROA not after: Sun 02 Mar 2025 00:00:00 +0000
asID: 132781
IP address blocks: 202.6.80.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 04 Sep 2024 09:31:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106 (0x6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9197390/serialNumber=A135B814E1EB1E27C9597EED2E822854930D3FCF
Validity
Not Before: Jan 11 06:27:49 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=659f8a65-89cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:a5:1c:28:bb:42:97:fd:71:f4:01:10:32:90:
bc:62:f3:65:c0:bb:cc:5c:8d:ad:99:ee:13:26:ea:
76:75:69:4f:2b:2e:43:0f:ed:8c:af:66:42:33:91:
79:29:a1:83:eb:21:b6:12:34:24:7a:ae:41:96:76:
15:ff:3d:05:48:fc:25:5b:3e:c1:cf:12:1c:c8:78:
cf:75:1a:4b:cd:2c:dc:45:e3:5f:67:5c:ca:91:bd:
74:bc:22:a7:23:ec:33:29:d7:41:62:b7:a5:ce:ef:
2f:15:2f:7d:13:a0:af:1c:e2:e4:d7:bf:3a:71:5c:
69:ee:42:f6:40:e5:33:b8:22:70:2b:b0:84:47:fd:
7e:83:b1:7e:cc:bb:ad:82:2e:d3:a7:11:02:d0:3f:
99:8a:07:1c:80:6e:41:c8:42:25:d8:74:4c:82:12:
ce:aa:62:e9:a6:6e:90:cf:42:1e:eb:39:33:b4:45:
7d:8c:90:01:07:5a:ed:69:ae:40:a4:60:50:c5:8f:
97:ba:a4:9b:9b:a7:c5:cf:99:92:9a:20:2a:00:2a:
14:44:46:ee:36:f5:ad:56:9d:de:21:c9:6a:48:4f:
9c:a9:a8:c6:b1:34:9c:4e:76:0c:ab:de:49:41:e3:
f9:78:2a:ed:6e:77:00:b7:af:40:ac:1e:d6:45:24:
4b:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:12:E6:95:27:97:B6:E6:87:B4:AE:E6:6D:8F:55:C6:9E:21:E2:99
X509v3 Authority Key Identifier:
keyid:A1:35:B8:14:E1:EB:1E:27:C9:59:7E:ED:2E:82:28:54:93:0D:3F:CF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oTW4FOHrHifJWX7tLoIoVJMNP88.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/9BE1CE403EDB11EE9A042084C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.6.80.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:4a:6b:bd:07:51:6c:8f:c6:4b:67:c9:bf:f3:c8:bd:a0:9f:
b2:26:b3:05:a5:a3:33:12:57:2f:5c:a7:97:d6:01:3b:18:16:
3b:2f:b2:f4:0a:bc:cb:26:1d:0e:e7:52:3e:95:e7:13:34:48:
49:87:b4:b5:d1:de:72:43:b2:59:38:15:e3:02:92:0a:28:8a:
52:6c:63:3f:22:8d:51:7a:62:0b:f7:27:86:77:bc:86:d5:c9:
42:60:4b:c5:a5:3f:ca:eb:ae:cf:94:c9:00:c3:85:43:36:ac:
5c:d5:91:92:95:13:5e:85:5b:b7:70:8b:0f:16:7e:73:5f:13:
49:70:d1:43:39:98:f1:03:e1:26:71:ad:09:3f:5d:df:6d:99:
50:11:59:67:95:8d:69:3b:67:c4:bf:12:ef:b0:c8:86:ca:c8:
43:ef:7d:e3:a5:2e:b9:c5:13:b5:76:54:06:7c:5a:3f:19:a2:
9b:98:14:38:bb:b6:76:c9:f9:6c:1b:d5:83:13:a6:9a:e9:f2:
68:2a:1b:9b:07:b0:b8:eb:38:ce:20:40:6c:b2:0e:83:35:13:
55:64:fe:c0:5c:a5:02:2b:71:18:01:86:e9:0d:6f:05:c6:79:
c9:5f:21:50:15:9c:f5:ae:bb:4a:71:e7:52:41:19:3b:25:f0:
ee:10:53:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 4 10:11:22 2024 by rpki-client on console-fra.rpki-client.org