Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D7F76/DB008624F63211EA9CF70561C4F9AE02/1215F814F8B411EAA6C4ED51C4F9AE02.roa
File: 1215F814F8B411EAA6C4ED51C4F9AE02.roa (raw, json)
Hash identifier: BtGwIB2U8Y3U/ByFQBA5LfyNsYfjmgeioso4Niyb1oY=
Subject key identifier: 31:E9:8D:CA:2A:D7:8D:9A:41:6B:6B:52:F5:2E:1E:92:02:8E:E8:BC
Certificate issuer: /CN=A91D7F76/serialNumber=F73F3E11866CFCF36738F8429E4C0803B7E5BD80
Certificate serial: 076A
Authority key identifier: F7:3F:3E:11:86:6C:FC:F3:67:38:F8:42:9E:4C:08:03:B7:E5:BD:80
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9z8-EYZs_PNnOPhCnkwIA7flvYA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D7F76/DB008624F63211EA9CF70561C4F9AE02/1215F814F8B411EAA6C4ED51C4F9AE02.roa
Signing time: Thu 31 Oct 2024 21:40:00 +0000
ROA not before: Thu 31 Oct 2024 21:40:00 +0000
ROA not after: Sat 01 Mar 2025 00:00:00 +0000
asID: 7600
IP address blocks: 2001:df4:6980::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 07 Nov 2024 03:29:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1898 (0x76a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D7F76/serialNumber=F73F3E11866CFCF36738F8429E4C0803B7E5BD80
Validity
Not Before: Oct 31 21:40:00 2024 GMT
Not After : Mar 1 00:00:00 2025 GMT
Subject: CN=6723f92f-c2db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:d4:a1:5e:65:e4:69:36:17:46:27:2e:c1:a7:
0d:e2:1c:ec:11:59:c6:aa:62:2c:0d:03:99:9a:b3:
31:f6:17:c3:a7:41:10:64:d6:ee:0b:aa:0f:bc:49:
1b:7f:7c:25:7b:ff:38:76:ea:5f:64:90:8b:8e:03:
86:85:a1:25:a7:61:c6:20:4b:8f:67:e2:ed:08:b0:
ba:4c:8b:4b:bb:85:4e:31:c0:21:90:ac:64:d3:dc:
ce:77:d7:4a:f1:87:51:0f:1b:a1:52:66:99:7c:e9:
a2:dd:d2:86:26:5d:ef:ca:b4:a4:35:cf:8b:33:5e:
ba:48:3e:18:f3:a6:d0:80:f1:4e:25:78:fc:14:e8:
8e:9c:75:2e:19:50:af:eb:98:4e:18:af:2d:ae:81:
5b:27:7c:3d:0b:ce:ff:f3:7c:b6:e3:c8:78:8a:c3:
e0:00:d9:6c:d3:b8:4f:ee:38:87:ae:00:c3:e1:ae:
3b:80:2c:f3:29:7b:05:65:cd:00:e1:ac:32:46:ee:
85:0b:d4:98:1f:f5:17:4a:bf:11:db:85:1b:f9:50:
ed:83:17:62:f8:ad:01:fd:23:ce:6c:99:fb:ba:e8:
c2:1e:c9:f4:a2:17:e3:bd:4b:df:30:5b:6e:74:bd:
a8:d2:d6:49:62:62:cd:cd:34:be:05:31:eb:ea:55:
4c:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:E9:8D:CA:2A:D7:8D:9A:41:6B:6B:52:F5:2E:1E:92:02:8E:E8:BC
X509v3 Authority Key Identifier:
keyid:F7:3F:3E:11:86:6C:FC:F3:67:38:F8:42:9E:4C:08:03:B7:E5:BD:80
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D7F76/DB008624F63211EA9CF70561C4F9AE02/9z8-EYZs_PNnOPhCnkwIA7flvYA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9z8-EYZs_PNnOPhCnkwIA7flvYA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D7F76/DB008624F63211EA9CF70561C4F9AE02/1215F814F8B411EAA6C4ED51C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:df4:6980::/48
Signature Algorithm: sha256WithRSAEncryption
1c:99:8f:7b:cc:08:04:a5:c6:96:54:1e:dc:1b:a1:7b:5e:1e:
3e:8c:c3:74:a1:17:b7:27:c6:64:a2:e2:d6:53:55:39:61:25:
34:13:e7:28:15:b7:cc:bb:fd:cc:7d:03:55:fa:e4:e4:88:d8:
6d:b0:8f:76:88:99:d1:6b:87:90:5d:ac:2d:a8:ec:61:bf:09:
29:33:16:04:ca:24:61:d4:3a:38:ab:bf:e2:cb:53:38:dd:48:
e8:0f:19:01:72:8f:10:67:37:7a:67:b7:d9:be:dc:c2:89:8f:
a6:8c:b9:50:25:74:f5:66:f0:5b:87:7c:c9:2d:5a:ed:c7:0b:
6b:a2:30:02:ca:20:47:3c:90:0e:08:6a:92:fb:ae:ca:4e:2f:
bf:76:9a:55:d4:3c:93:45:96:1b:b6:06:49:e4:af:88:4b:0f:
f7:7d:9d:90:9e:7d:8e:1f:47:d8:df:ac:c3:1a:65:f1:e1:f2:
81:b2:5f:dc:e1:ab:0e:04:62:f6:84:22:11:4a:0c:da:fa:25:
7d:57:cb:a9:d6:76:1a:e7:7f:ef:1b:37:bc:55:c7:a3:f6:22:
65:f1:01:54:67:a9:d2:18:a6:29:3f:b2:c3:75:27:18:21:02:
46:c7:de:a5:9a:b1:73:3f:e3:7a:96:6d:06:e8:7b:8f:ae:a1:
e7:9c:d8:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 7 06:45:00 2024 by rpki-client on console-fra.rpki-client.org