Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/4492383A979211EFAD14BE87C4F9AE02.roa
File: 4492383A979211EFAD14BE87C4F9AE02.roa (raw, json)
Hash identifier: Ic1+GEE+PBW94WYvMRXIt9AAn96JBaBbVIyYsY0tqGk=
Subject key identifier: 15:41:4B:C4:A0:56:80:14:E4:F9:C1:10:CE:76:C6:D2:02:CA:8A:1C
Certificate issuer: /CN=A91D226F/serialNumber=87F0596871B515BBB3D2982DC6FB9C12DEF4C234
Certificate serial: 011B
Authority key identifier: 87:F0:59:68:71:B5:15:BB:B3:D2:98:2D:C6:FB:9C:12:DE:F4:C2:34
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_BZaHG1Fbuz0pgtxvucEt70wjQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/4492383A979211EFAD14BE87C4F9AE02.roa
Signing time: Thu 31 Oct 2024 14:13:14 +0000
ROA not before: Thu 31 Oct 2024 14:13:14 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 153371
IP address blocks: 2001:df2:7cc0::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 04 Nov 2024 17:45:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 283 (0x11b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D226F/serialNumber=87F0596871B515BBB3D2982DC6FB9C12DEF4C234
Validity
Not Before: Oct 31 14:13:14 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=6723907a-7688
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:99:a4:d6:b5:62:e7:31:9f:d1:2a:2b:b7:b0:
68:fa:8a:92:1f:d8:b5:2c:63:66:32:7f:40:f2:66:
db:98:63:d0:9d:97:76:81:9c:99:d4:7b:0f:35:98:
f7:10:9e:66:71:46:d8:dd:d1:a3:d1:90:ca:a4:e1:
a6:7e:ed:cb:1f:b8:2e:c2:b7:14:49:74:39:ed:5e:
ec:17:98:b3:fc:b1:04:25:a0:2e:56:43:e1:d3:ef:
74:2d:e3:b7:04:76:e4:90:e5:2c:3b:07:62:12:b0:
ad:de:8c:9d:14:0d:5b:d0:62:40:6e:62:79:20:de:
e0:66:f5:63:6b:4c:08:fd:6c:3f:ae:87:db:0c:ed:
25:5a:3d:c3:01:db:0f:09:2e:20:0f:b6:01:84:96:
d1:cb:06:d5:f7:88:ff:b5:b8:5c:ea:35:94:ef:aa:
a6:85:1a:f3:1a:c5:83:ad:1b:2c:40:e4:74:b2:16:
f0:98:b8:40:9b:00:4f:d5:d2:69:f7:51:e8:9b:29:
50:4c:47:02:60:fb:3f:8a:3e:81:84:e5:85:05:14:
4c:0d:21:11:d9:e1:82:b4:fd:19:69:e4:03:ac:82:
23:00:df:c7:4b:73:d9:42:26:bb:44:a3:b6:b6:06:
27:eb:8a:00:13:82:e1:24:39:f4:1e:47:1e:94:f1:
16:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:41:4B:C4:A0:56:80:14:E4:F9:C1:10:CE:76:C6:D2:02:CA:8A:1C
X509v3 Authority Key Identifier:
keyid:87:F0:59:68:71:B5:15:BB:B3:D2:98:2D:C6:FB:9C:12:DE:F4:C2:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_BZaHG1Fbuz0pgtxvucEt70wjQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/4492383A979211EFAD14BE87C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:df2:7cc0::/48
Signature Algorithm: sha256WithRSAEncryption
9d:70:b6:2d:3c:aa:1b:75:e0:ae:86:a2:b1:b5:b5:b5:35:97:
4d:21:31:2d:7f:05:a0:41:7f:e5:cd:d2:2d:d5:9d:44:97:ab:
8f:be:02:22:8a:9c:ad:16:2a:4a:fe:f7:a7:be:6f:e1:18:a5:
5a:e7:83:4a:58:86:cb:ab:c6:d1:9a:ca:a8:ad:15:af:d9:94:
e2:53:80:d3:75:be:68:dd:db:69:cd:52:60:a5:89:82:13:c4:
8a:ba:42:2a:f4:82:de:50:83:0f:7f:6e:ad:1f:9b:34:2a:86:
5f:30:66:f0:2a:70:84:a5:82:e7:26:e5:b6:55:03:1d:34:73:
4b:74:d9:06:77:b5:dd:00:4f:c6:8b:24:3d:bd:0a:c8:82:43:
d4:53:13:39:a6:ee:47:a5:2f:7c:c5:d3:7c:ae:16:15:16:09:
d0:09:e9:d9:50:a3:d1:03:38:a3:58:7d:b3:de:d0:cc:83:27:
a6:d8:d2:71:15:c2:bb:13:d8:9f:f3:72:0c:60:1a:82:8d:83:
17:f0:3f:d3:a7:ae:1e:64:a0:c2:db:85:04:f3:c2:2a:71:a8:
89:4b:d4:4f:24:31:22:e2:16:89:13:e5:be:31:9e:4a:60:ab:
cf:11:0b:50:3f:ad:f8:9e:fc:4a:2c:1f:1b:e6:ef:e0:32:73:
b8:6b:25:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 4 21:29:22 2024 by rpki-client on console-fra.rpki-client.org