Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/6B79840438FF11EF831E8E68C4F9AE02.roa
File: 6B79840438FF11EF831E8E68C4F9AE02.roa (raw, json)
Hash identifier: fU93YkK0VXJ3srfSfL2TNEWhUNc2wO+n7j061G0VYG0=
Subject key identifier: FE:D1:00:88:51:58:97:EB:1F:0C:1E:60:C6:39:FC:77:45:DA:02:56
Certificate issuer: /CN=A91E6134/serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3
Certificate serial: 0ADB
Authority key identifier: 9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/6B79840438FF11EF831E8E68C4F9AE02.roa
Signing time: Wed 03 Jul 2024 05:45:14 +0000
ROA not before: Wed 03 Jul 2024 05:45:14 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 7922
IP address blocks: 139.190.32.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 Jul 2024 07:31:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2779 (0xadb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134
Validity
Not Before: Jul 3 05:45:14 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=6684e56a-11f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:e7:7c:31:a1:90:b3:eb:0b:29:fb:12:2d:33:
87:c6:e6:7d:69:9c:fe:25:29:94:46:31:42:4a:98:
0c:d0:60:25:77:2c:e5:99:af:00:41:55:4a:81:43:
56:11:1c:f6:68:c9:29:cf:ca:03:15:e2:73:d5:d5:
ad:37:08:0b:4d:d3:6c:b9:d8:0b:2c:07:1f:d7:de:
f4:e1:71:cc:3f:b3:10:4a:22:cf:8e:e3:ca:22:8d:
22:0f:56:cd:cf:4f:99:c6:a7:09:77:10:98:74:44:
d3:8b:9c:a5:97:90:8c:dc:bf:3b:95:f3:2b:0c:1f:
5f:2a:ad:6f:61:bc:46:07:0a:a9:a6:50:61:c4:31:
6d:9c:77:77:4f:fd:2c:c9:ee:86:4f:66:1a:79:01:
47:4a:ba:82:e0:6c:1e:2c:fa:21:ae:1b:69:23:87:
ae:6a:36:6b:f4:e3:8b:33:f6:71:33:90:80:59:0e:
5d:f6:08:8c:37:a9:cc:b2:a0:a9:83:83:ed:56:2c:
39:c2:98:41:8d:f8:77:73:e4:71:86:96:6a:87:df:
0c:d1:04:9a:b3:f0:4e:f1:38:7d:c3:67:cc:d6:a6:
3a:d9:2b:ba:b4:80:3f:e1:f3:d1:c4:18:be:f1:bb:
35:2b:ab:70:c0:f5:f4:97:23:39:40:e4:02:54:af:
f2:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:D1:00:88:51:58:97:EB:1F:0C:1E:60:C6:39:FC:77:45:DA:02:56
X509v3 Authority Key Identifier:
keyid:9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/6B79840438FF11EF831E8E68C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
139.190.32.0/22
Signature Algorithm: sha256WithRSAEncryption
70:e4:a1:f6:4f:da:36:95:fe:59:48:4a:ec:db:b1:81:11:ab:
2f:be:d8:2f:31:41:5e:f3:8a:00:db:cc:0f:10:28:5b:87:02:
43:d9:6c:55:26:59:45:5f:30:5b:8a:a2:82:bf:f1:ba:e8:54:
dc:ac:30:68:4c:01:09:ee:a6:70:89:59:cf:c9:02:9f:6c:24:
cd:17:92:da:1b:37:bc:26:20:f4:82:ce:02:83:0d:50:90:90:
2d:83:6b:78:a0:b7:c8:a1:ef:dc:02:f3:1e:33:d5:03:51:59:
36:10:c4:16:96:e6:7a:83:ca:70:b9:45:2f:5f:82:73:e8:7c:
d8:03:4e:a7:49:c3:c5:b5:e4:77:82:58:fd:e1:a7:5a:74:5f:
5e:7b:e6:a3:87:e6:8c:27:41:e0:51:ac:94:b0:0d:98:14:0b:
0b:7c:97:ff:a1:01:87:a8:d6:b9:19:9f:ee:8c:03:ad:c3:6c:
c1:e4:52:90:66:c4:88:2c:39:16:6c:6f:ba:e1:83:1c:14:dd:
4d:48:1a:bd:89:8d:8e:8c:d7:11:24:5a:3d:20:d1:1f:4a:6a:
28:95:d8:50:ca:fb:c6:da:47:53:f3:b9:06:56:cc:c0:e1:7a:
ee:c3:b1:ea:fb:ce:c0:ad:b4:b7:b4:53:27:50:6f:8e:b3:db:
6b:46:2f:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:45:22 2025 by rpki-client