Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/6A42C2BA624C11EEADDC3435C4F9AE02.roa
File: 6A42C2BA624C11EEADDC3435C4F9AE02.roa (raw, json)
Hash identifier: km8SV6tuklSGC7wrH5mSpEgKvFyytZLF5zs3KxAkJXQ=
Subject key identifier: 61:B7:58:FB:51:A8:C3:B7:B2:9B:B6:55:42:57:C1:49:F2:04:5A:FD
Certificate issuer: /CN=A91C6550/serialNumber=456EEA0692C6A4F26F53D2D237D1CB4DCD783305
Certificate serial: 93
Authority key identifier: 45:6E:EA:06:92:C6:A4:F2:6F:53:D2:D2:37:D1:CB:4D:CD:78:33:05
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/6A42C2BA624C11EEADDC3435C4F9AE02.roa
Signing time: Wed 04 Oct 2023 00:24:44 +0000
ROA not before: Wed 04 Oct 2023 00:24:44 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 125.62.78.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 04 Oct 2023 00:24:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147 (0x93)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C6550/serialNumber=456EEA0692C6A4F26F53D2D237D1CB4DCD783305
Validity
Not Before: Oct 4 00:24:44 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=651cb0cb-6262
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:f3:d4:5d:97:d4:b2:6d:eb:c7:c0:7c:d5:c3:
e1:cc:e4:29:dc:23:7c:f4:ef:f6:70:51:39:f3:90:
dd:17:34:5d:e8:ec:ed:8c:aa:e0:8a:a9:1c:e3:f2:
54:43:7a:09:c7:a9:d9:39:5a:8f:7c:21:ac:2f:0a:
7d:4d:ff:6d:04:b4:4c:91:9b:70:9c:94:ad:df:0a:
85:0e:4c:aa:f8:1e:16:2d:b3:a3:1a:41:64:6d:a1:
84:bb:e5:19:d3:84:7d:10:9e:c5:1a:14:8c:45:b3:
9a:b9:84:76:95:2c:a9:71:17:a7:ff:8a:13:c7:86:
b4:c0:04:bd:fe:2f:61:f8:a3:01:1c:76:15:2a:98:
7b:f7:c8:03:15:24:02:0d:e4:73:4c:ad:9c:95:ea:
fa:d2:39:4f:14:24:81:2d:e8:a5:a3:50:c1:bd:12:
a2:73:d0:ba:ba:43:8b:c6:2f:f4:46:37:78:2e:e3:
5f:5c:a5:4b:7d:9c:62:e0:16:82:b3:58:51:53:1a:
44:ad:cd:23:4c:a6:22:16:f3:cf:3c:7f:b6:67:52:
6c:f2:30:5c:03:11:ed:8e:b0:a2:8f:05:da:de:2d:
1b:6a:0f:78:f4:73:4d:30:f0:e8:4f:4e:d5:ac:40:
44:4a:79:9d:8d:9d:06:b2:c4:18:fa:62:5b:9a:39:
d4:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:B7:58:FB:51:A8:C3:B7:B2:9B:B6:55:42:57:C1:49:F2:04:5A:FD
X509v3 Authority Key Identifier:
keyid:45:6E:EA:06:92:C6:A4:F2:6F:53:D2:D2:37:D1:CB:4D:CD:78:33:05
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/6A42C2BA624C11EEADDC3435C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
125.62.78.0/24
Signature Algorithm: sha256WithRSAEncryption
14:b0:20:ae:ed:2a:25:fe:58:e0:e3:18:e4:63:1b:3b:01:1c:
b9:bf:26:7f:ae:f6:80:e5:a7:7b:32:c3:20:14:d1:ee:ec:d8:
d3:92:23:bb:df:e2:c8:7d:0f:2a:6d:6b:c5:cc:a4:d0:94:9f:
09:fd:30:d5:2e:42:ba:49:87:a5:34:4c:ab:09:58:23:90:80:
75:fa:87:e2:02:c1:b0:29:d8:a0:6c:87:50:11:d0:de:ff:37:
2a:10:d5:ea:5b:2d:e2:c8:7e:54:5e:1c:bb:bf:1b:99:b4:3e:
d4:69:00:c2:0e:ac:9e:23:c8:19:8d:20:a5:1e:8f:83:51:42:
03:82:b5:72:bc:0e:94:37:86:f8:b9:5e:ce:4a:e8:e0:a1:fa:
a9:ce:87:25:28:d0:a2:bb:a8:ae:53:ce:3d:e0:f9:5f:67:6b:
57:03:6d:a4:37:6a:5f:11:27:ea:c8:17:e7:f0:28:90:14:8b:
ef:dc:a2:12:05:0a:40:33:9e:b9:92:19:df:45:aa:ef:c3:db:
24:78:de:9b:01:a8:10:15:e2:64:65:69:8e:18:5b:64:ae:b4:
0e:c0:8b:73:3c:9f:f5:c9:6b:f2:11:17:6b:02:06:95:96:db:
88:d0:61:20:79:d8:17:df:49:be:58:8e:c0:f0:d6:c6:3e:a8:
49:51:a0:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:25 2024 by rpki-client on console-ams.rpki-client.org