Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9128/86A79556485011ECBDD48E5DC4F9AE02/DF750786892611EEA35DE632C4F9AE02.roa
File: DF750786892611EEA35DE632C4F9AE02.roa (raw, json)
Hash identifier: X6t5xfK/tgCcRzESgp+VC7gjP7Uc+z+yj95HncUdxng=
Subject key identifier: DF:00:D0:AB:1F:75:C7:60:82:4E:B0:8F:00:AE:9D:DA:A0:5F:F2:C9
Certificate issuer: /CN=A91B9128/serialNumber=A6DB5ED7F50766D0795BF356BE5523063C60ACDC
Certificate serial: 0385
Authority key identifier: A6:DB:5E:D7:F5:07:66:D0:79:5B:F3:56:BE:55:23:06:3C:60:AC:DC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ptte1_UHZtB5W_NWvlUjBjxgrNw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B9128/86A79556485011ECBDD48E5DC4F9AE02/DF750786892611EEA35DE632C4F9AE02.roa
Signing time: Mon 11 Dec 2023 02:14:02 +0000
ROA not before: Mon 11 Dec 2023 02:14:02 +0000
ROA not after: Sun 02 Mar 2025 00:00:00 +0000
asID: 149995
IP address blocks: 2401:1660:14::/48 maxlen: 48
2401:1660:15::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 28 Jun 2024 18:51:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 901 (0x385)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B9128/serialNumber=A6DB5ED7F50766D0795BF356BE5523063C60ACDC
Validity
Not Before: Dec 11 02:14:02 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=6576706a-f8ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:f6:1c:26:95:ef:82:b4:9c:8d:c2:f8:c4:35:
74:a2:2b:68:b3:12:c8:a5:df:66:f0:61:ce:17:34:
cb:e5:f5:25:ad:29:df:df:7b:d9:81:b7:08:92:6f:
26:76:f4:a7:c5:1a:4c:1a:d8:50:00:d5:50:3b:95:
52:7f:3d:55:9f:ce:a9:42:ea:74:25:c0:88:9f:c9:
b2:38:71:e9:0c:2f:7e:0a:68:36:54:f1:dc:27:a9:
73:88:d0:a6:87:f4:a6:2a:cc:7d:5d:1d:06:5a:67:
0d:47:5f:42:4c:f7:1c:8c:68:3f:93:7e:75:e9:0b:
24:35:e1:03:4e:87:e6:f0:1a:a3:18:2a:cb:a3:b3:
d7:4c:8a:78:9d:b6:06:d9:c2:5d:52:2c:2e:39:e3:
8a:ae:17:78:8c:aa:57:5c:e7:d6:9a:74:6e:e3:d7:
3b:b3:c1:8e:43:40:59:d3:6d:6a:b2:db:4e:f9:6d:
ad:f1:65:27:f7:84:9f:3e:ab:43:f4:a6:8e:14:26:
37:47:d4:99:1b:51:da:50:f3:37:25:cf:33:4b:aa:
d6:5a:f5:2f:6f:13:b5:6f:59:7c:27:b8:24:f1:32:
24:f4:3f:03:f5:7e:9d:50:ed:1e:f2:de:7a:ff:67:
f5:1e:4f:39:f1:d0:5f:45:21:77:d8:9e:88:ae:21:
0d:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:00:D0:AB:1F:75:C7:60:82:4E:B0:8F:00:AE:9D:DA:A0:5F:F2:C9
X509v3 Authority Key Identifier:
keyid:A6:DB:5E:D7:F5:07:66:D0:79:5B:F3:56:BE:55:23:06:3C:60:AC:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B9128/86A79556485011ECBDD48E5DC4F9AE02/ptte1_UHZtB5W_NWvlUjBjxgrNw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ptte1_UHZtB5W_NWvlUjBjxgrNw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9128/86A79556485011ECBDD48E5DC4F9AE02/DF750786892611EEA35DE632C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:1660:14::/47
Signature Algorithm: sha256WithRSAEncryption
d1:55:23:c1:d8:10:19:1c:61:9b:bc:f9:d5:09:db:6e:0a:f2:
72:8d:1d:eb:54:2d:73:87:d0:f8:40:1a:ee:ad:26:c9:21:a9:
84:fc:04:2e:55:7d:48:d5:d4:37:c3:44:13:91:85:1a:f7:74:
f0:b8:82:6c:f0:76:ae:a0:f2:9c:e9:67:9d:76:33:17:1d:43:
85:c7:b8:60:34:8a:21:88:0e:bf:9d:c9:64:36:a4:97:1b:44:
aa:69:ba:b3:ac:4b:09:06:ab:79:04:59:fc:c7:29:4f:ff:cb:
5f:d2:bb:4e:af:e5:99:e1:e5:f6:4a:3f:4e:14:07:56:18:5c:
77:a3:b6:f8:0a:82:9e:06:05:33:a9:a5:d9:63:c2:c4:41:58:
2c:d9:f9:bf:21:78:70:f5:c6:5b:df:59:cf:d8:1a:a3:60:54:
f0:49:d0:03:07:9e:8e:fa:80:fa:10:b2:65:ea:d2:31:bc:b0:
e1:ff:21:64:62:36:b0:d9:8a:dc:08:ca:3b:31:ce:1d:74:ba:
8a:ad:4d:e5:4a:ed:16:2f:74:ec:bb:75:76:20:1b:03:e5:ba:
d2:a8:7f:2b:e5:52:45:45:06:b9:9b:bb:e4:ec:0b:84:2d:5a:
04:ce:71:35:0f:45:f3:12:cb:53:4f:05:d6:e6:fa:2e:dd:6c:
c2:7b:90:58
-----BEGIN CERTIFICATE-----
MIIFdDCCBFygAwIBAgICA4UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QjkxMjgxMTAvBgNVBAUTKEE2REI1RUQ3RjUwNzY2RDA3OTVCRjM1NkJFNTUyMzA2
M0M2MEFDREMwHhcNMjMxMjExMDIxNDAyWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD
VQQDEw02NTc2NzA2YS1mOGVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAofYcJpXvgrScjcL4xDV0oitosxLIpd9m8GHOFzTL5fUlrSnf33vZgbcIkm8m
dvSnxRpMGthQANVQO5VSfz1Vn86pQup0JcCIn8myOHHpDC9+Cmg2VPHcJ6lziNCm
h/SmKsx9XR0GWmcNR19CTPccjGg/k3516QskNeEDTofm8BqjGCrLo7PXTIp4nbYG
2cJdUiwuOeOKrhd4jKpXXOfWmnRu49c7s8GOQ0BZ021qsttO+W2t8WUn94SfPqtD
9KaOFCY3R9SZG1HaUPM3Jc8zS6rWWvUvbxO1b1l8J7gk8TIk9D8D9X6dUO0e8t56
/2f1Hk858dBfRSF32J6IriENcQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFN8A0Ksf
dcdggk6wjwCundqgX/LJMB8GA1UdIwQYMBaAFKbbXtf1B2bQeVvzVr5VIwY8YKzc
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTEyOC84NkE3OTU1NjQ4
NTAxMUVDQkRENDhFNURDNEY5QUUwMi9wdHRlMV9VSFp0QjVXX05XdmxVakJqeGdy
TncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3B0dGUxX1VIWnRCNVdfTld2bFVqQmp4Z3JOdy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QjkxMjgvODZBNzk1NTY0ODUwMTFFQ0JERDQ4RTVEQzRGOUFFMDIvREY3NTA3ODY4
OTI2MTFFRUEzNURFNjMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E
EzARMA8EAgACMAkDBwEkARZgABQwDQYJKoZIhvcNAQELBQADggEBANFVI8HYEBkc
YZu8+dUJ224K8nKNHetULXOH0PhAGu6tJskhqYT8BC5VfUjV1DfDRBORhRr3dPC4
gmzwdq6g8pzpZ512MxcdQ4XHuGA0iiGIDr+dyWQ2pJcbRKppurOsSwkGq3kEWfzH
KU//y1/Su06v5Znh5fZKP04UB1YYXHejtvgKgp4GBTOppdljwsRBWCzZ+b8heHD1
xlvfWc/YGqNgVPBJ0AMHno76gPoQsmXq0jG8sOH/IWRiNrDZitwIyjsxzh10uoqt
TeVK7RYvdOy7dXYgGwPlutKofyvlUkVFBrmbu+TsC4QtWgTOcTUPRfMSy1NPBdbm
+i7dbMJ7kFg=
-----END CERTIFICATE-----
Generated at Fri Jun 28 23:14:49 2024 by rpki-client on console-fra.rpki-client.org