Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6CAF/F3E0FAE4B6F411EEAC203810C4F9AE02/ACCC32D0D53611EE993C3C1BC4F9AE02.roa
File: ACCC32D0D53611EE993C3C1BC4F9AE02.roa (raw, json)
Hash identifier: Fl9sRIi6r69XQw9rfvRkk8nDFzUbWW3Ike1vGNynB0w=
Subject key identifier: AA:E8:A4:9B:87:84:8F:B3:93:7F:43:C5:38:6A:8C:D3:F9:84:E3:10
Certificate issuer: /CN=A91C6CAF/serialNumber=9F02DA3AB5FB45317507C48021CE0A8B937255C9
Certificate serial: 1A
Authority key identifier: 9F:02:DA:3A:B5:FB:45:31:75:07:C4:80:21:CE:0A:8B:93:72:55:C9
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nwLaOrX7RTF1B8SAIc4Ki5NyVck.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C6CAF/F3E0FAE4B6F411EEAC203810C4F9AE02/ACCC32D0D53611EE993C3C1BC4F9AE02.roa
Signing time: Tue 27 Feb 2024 06:08:50 +0000
ROA not before: Tue 27 Feb 2024 06:08:50 +0000
ROA not after: Mon 31 Mar 2025 00:00:00 +0000
asID: 133605
IP address blocks: 157.10.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 09 Sep 2024 08:10:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26 (0x1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C6CAF/serialNumber=9F02DA3AB5FB45317507C48021CE0A8B937255C9
Validity
Not Before: Feb 27 06:08:50 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=65dd7c72-9536
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e1:a5:1a:93:4c:29:9d:ed:42:36:98:90:6e:
fb:72:3c:48:e7:01:1b:5e:f0:a4:b8:21:cf:69:56:
26:e1:de:ce:61:3c:8d:60:83:9e:ef:bc:0b:bc:89:
20:dd:47:7f:40:c8:44:70:6d:bd:51:46:e7:67:7b:
49:e8:67:6d:14:e6:b8:2c:2c:15:3d:fb:c9:fe:62:
01:a9:81:f9:ca:72:a3:d1:f6:c8:26:ea:f8:c9:0a:
12:d9:d4:9c:a4:91:96:79:53:1e:cb:10:00:9a:86:
84:eb:59:74:96:45:42:41:3a:0e:37:74:d4:44:64:
be:b4:28:b6:a7:7c:12:42:c4:b6:4a:a6:8a:ba:e1:
5a:a9:b4:61:10:00:4c:8d:99:5c:33:52:c1:63:73:
93:16:75:2e:2a:7b:11:c1:9c:39:b7:b2:52:0d:d3:
0f:a6:f2:ed:7d:27:d3:b2:9a:28:8c:39:fa:a9:e1:
ec:26:4f:8b:0a:b2:c7:20:fe:34:4a:c3:2a:c7:fa:
06:77:59:f6:2b:17:c1:e9:5a:d9:d6:ef:e9:0d:3c:
47:08:f6:65:8f:fe:d8:5e:ad:1d:41:b4:eb:12:b7:
78:23:28:4f:da:12:93:8e:20:c5:b2:6a:62:bc:b3:
0d:52:c0:2a:a8:0a:29:e5:2c:51:36:e8:fd:89:b3:
28:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:E8:A4:9B:87:84:8F:B3:93:7F:43:C5:38:6A:8C:D3:F9:84:E3:10
X509v3 Authority Key Identifier:
keyid:9F:02:DA:3A:B5:FB:45:31:75:07:C4:80:21:CE:0A:8B:93:72:55:C9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C6CAF/F3E0FAE4B6F411EEAC203810C4F9AE02/nwLaOrX7RTF1B8SAIc4Ki5NyVck.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nwLaOrX7RTF1B8SAIc4Ki5NyVck.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6CAF/F3E0FAE4B6F411EEAC203810C4F9AE02/ACCC32D0D53611EE993C3C1BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.10.239.0/24
Signature Algorithm: sha256WithRSAEncryption
89:a9:7e:cc:bf:76:f5:0d:e7:e4:2c:06:b2:ea:c0:18:98:25:
8e:d8:ff:ca:1c:dc:d0:36:59:86:09:19:ef:eb:9e:37:97:cc:
c4:68:e3:7f:cf:78:c8:50:17:5d:9a:4e:44:3b:61:05:a3:3e:
0b:44:a5:fb:2d:df:2b:b7:6e:2f:1e:04:f2:5e:09:dd:fb:12:
6e:dc:75:2f:89:d2:e3:ae:c2:45:79:ec:9d:6b:63:e2:11:ce:
93:7f:0a:f5:35:fa:00:b5:ee:87:0e:87:92:20:9e:f7:ff:24:
61:6f:d3:26:e3:51:4a:2f:c9:8c:0f:0f:0d:55:3a:c8:db:56:
33:83:0d:21:70:e4:bc:d2:b7:18:9d:01:e6:8c:f1:73:01:d6:
76:ad:a9:0f:1e:30:b9:23:33:92:e4:21:47:ea:4d:d0:69:78:
3b:45:8c:d5:31:de:64:58:aa:f5:81:cb:98:12:6e:2c:da:9f:
59:f4:89:c6:30:87:07:45:23:47:17:70:69:d2:3e:c5:27:8f:
de:40:26:31:61:ef:da:a6:17:18:09:9d:cc:b7:e3:1a:b6:60:
b9:26:db:66:3c:aa:8d:1a:bb:3e:8b:eb:ca:f5:7d:de:10:4d:
01:f8:72:f2:b0:b4:a6:3c:67:43:88:c6:23:18:c7:51:7a:39:
af:3d:fe:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 9 10:15:51 2024 by rpki-client on console-ams.rpki-client.org