Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/6CF419DE31BB11EF83D58310C4F9AE02.roa
File: 6CF419DE31BB11EF83D58310C4F9AE02.roa (raw, json)
Hash identifier: coFStfgyE7vfOqhdD1E5Ziq3QiBD3MNhaD6ZEo9pYog=
Subject key identifier: B6:69:B8:66:F7:E8:AE:8A:12:41:BE:86:BF:72:90:E3:4B:06:B2:7B
Certificate issuer: /CN=A91CB7AB/serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC
Certificate serial: 0782
Authority key identifier: 3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/6CF419DE31BB11EF83D58310C4F9AE02.roa
Signing time: Sun 23 Jun 2024 23:50:53 +0000
ROA not before: Sun 23 Jun 2024 23:50:53 +0000
ROA not after: Mon 31 Mar 2025 00:00:00 +0000
asID: 7495
IP address blocks: 210.247.192.0/20 maxlen: 24
Validation: Failed, certificate revoked on Wed 10 Jul 2024 00:39:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1922 (0x782)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CB7AB
Validity
Not Before: Jun 23 23:50:53 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=6678b4dd-f6c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:66:18:67:5a:47:d0:45:24:07:67:e2:76:23:
a6:01:b8:59:25:f9:df:a8:15:dc:56:e2:4a:48:e7:
29:aa:2d:83:9f:53:1a:92:3c:f4:2a:7f:0b:bf:cb:
23:49:25:00:82:7e:6f:5a:27:41:21:39:22:ed:6c:
7e:3c:92:8a:77:1d:66:9b:c5:f8:09:f1:8f:d7:2c:
98:63:dd:25:22:f5:e5:05:91:04:eb:fe:25:13:1d:
54:5c:04:e0:3a:0f:93:b3:2e:e7:c1:09:a8:dc:d3:
76:73:75:4d:8b:94:76:22:a2:b9:a5:3f:68:80:ad:
fa:6c:56:c3:b1:af:65:4a:ef:d7:6a:10:8f:75:db:
fa:77:de:86:74:a0:50:74:de:0f:7a:d0:e1:73:55:
87:4d:2f:fc:bf:8f:54:25:70:a3:28:08:8b:28:7b:
55:b5:b6:6b:4a:e4:30:84:78:b2:84:62:8f:66:de:
39:92:de:f9:ad:7c:8b:d9:c4:fd:21:b0:64:b0:fc:
73:e5:ad:a2:75:b2:2e:b9:fc:bd:36:6d:c4:a0:bd:
5d:a3:d9:55:be:9c:67:e2:bc:d4:72:a2:00:64:60:
2f:d1:1d:cd:20:d1:55:cb:19:82:15:93:26:c1:50:
dd:01:3c:85:d2:92:e6:82:8f:8e:a2:b5:2e:31:08:
3b:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:69:B8:66:F7:E8:AE:8A:12:41:BE:86:BF:72:90:E3:4B:06:B2:7B
X509v3 Authority Key Identifier:
keyid:3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/6CF419DE31BB11EF83D58310C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
210.247.192.0/20
Signature Algorithm: sha256WithRSAEncryption
65:3b:8a:4c:db:1b:a7:b0:64:f7:01:c5:f2:41:e0:5a:93:ab:
aa:f4:31:21:4e:ba:db:42:8e:38:53:0f:da:99:e4:19:a7:2c:
33:a3:bc:b2:f1:32:15:f2:78:f0:a4:75:11:37:7b:c1:0f:04:
eb:cc:16:93:f5:0c:fb:3d:bd:ab:b5:29:d7:25:9c:9a:46:27:
6b:54:f0:f3:f1:bb:29:20:75:21:14:22:12:95:57:ce:74:81:
a3:0f:d9:26:3c:c6:a4:b6:d7:c5:60:65:6a:bd:83:9b:93:78:
a6:83:19:cf:62:de:10:d7:51:1f:96:63:84:f5:aa:08:a0:8d:
8f:53:2d:b1:4b:09:7d:de:58:c2:e1:4b:3b:fc:62:ce:cb:f2:
7f:72:a3:7f:6a:23:55:e8:a3:10:82:50:e8:7c:d6:35:82:20:
12:48:f1:c1:eb:17:09:4a:5c:cf:eb:09:8f:7a:17:b4:1c:81:
fe:b1:a6:ac:a4:9e:91:f3:5a:fb:04:74:09:8f:ae:6b:eb:b7:
36:a6:d2:cd:7f:9f:43:49:fb:31:b5:1b:4b:fc:91:62:e5:37:
c6:42:26:14:f0:7d:a1:1d:48:87:50:7a:1d:80:91:b0:66:d9:
98:2c:2d:9c:07:46:76:ee:98:7c:37:fc:e4:a6:19:dd:27:d3:
a3:a5:3a:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:31:38 2025 by rpki-client