Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/52D9E0549F2811EEB741D828C4F9AE02.roa
File: 52D9E0549F2811EEB741D828C4F9AE02.roa (raw, json)
Hash identifier: ZuvNwAXfD7531CCVXjA4sLPGPPCQNzq2Z02BgiWLdB8=
Subject key identifier: 73:FF:69:85:22:5F:DA:A0:DF:CA:A5:C3:0A:0C:57:2E:9F:43:DA:3B
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 0E9E
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/52D9E0549F2811EEB741D828C4F9AE02.roa
Signing time: Wed 20 Dec 2023 11:10:03 +0000
ROA not before: Wed 20 Dec 2023 11:10:03 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 180.178.152.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3742 (0xe9e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Dec 20 11:10:03 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=6582cb8b-4c42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:8e:01:0c:80:8b:91:a5:e5:0f:9b:b3:63:8f:
5a:05:e1:fd:12:84:22:35:f2:66:3c:42:4a:1a:3f:
be:f1:35:b9:2c:2f:fa:2e:d5:3d:3c:8d:6f:cf:c5:
fd:b8:c2:f7:91:cb:5f:45:f4:fa:5c:1e:b3:f9:3c:
ec:f8:5e:10:97:d3:66:fd:47:7d:52:60:2a:6c:ca:
61:12:65:f9:c7:7c:d2:a5:91:95:f4:76:55:f3:52:
06:93:cf:c4:cb:11:12:f2:3d:bd:d3:f8:48:f5:d3:
5a:4f:a6:62:ca:93:db:ba:59:da:74:12:87:66:ab:
0a:55:dd:d7:ef:ae:5a:dc:fc:d5:ed:ae:c1:e9:f3:
41:c1:61:ba:18:6c:71:92:0a:9b:64:48:dc:4a:66:
4b:6c:23:04:72:78:d3:92:d3:83:63:23:76:8a:37:
c1:ed:42:5e:f4:43:5e:5d:be:d4:ba:38:8f:40:d3:
cf:b9:fa:5c:d7:be:66:7f:c0:91:cc:42:d2:30:2d:
8c:a1:68:f9:7d:dd:29:56:ad:08:2a:91:91:8a:f0:
b4:f0:f8:51:c8:84:59:a5:5f:5f:28:32:4a:dc:af:
5b:61:78:9e:22:b1:36:72:cd:ca:64:6f:4c:31:b9:
ff:86:58:40:81:1c:6b:2b:b4:38:fa:15:3d:62:c0:
36:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:FF:69:85:22:5F:DA:A0:DF:CA:A5:C3:0A:0C:57:2E:9F:43:DA:3B
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/52D9E0549F2811EEB741D828C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
180.178.152.0/21
Signature Algorithm: sha256WithRSAEncryption
2a:67:10:3c:4c:f3:1f:7a:86:94:1e:7e:56:2d:95:90:18:51:
00:2b:f9:f6:01:1a:8f:25:90:f9:a2:ad:d8:bb:04:54:d0:a5:
68:f7:f2:b6:ed:e2:41:06:53:e2:fd:66:1f:c9:16:a2:c4:63:
a2:e3:52:f9:01:20:3b:9b:e1:88:0d:3f:99:8d:99:1d:6c:f4:
c2:c5:8e:6b:d9:2e:91:4a:b2:56:5b:d1:8d:00:77:59:00:0e:
09:e8:76:42:b6:0e:40:df:7d:cd:1b:2d:52:7a:fd:5d:aa:22:
83:9f:56:15:15:1d:fa:75:33:aa:33:da:e9:8f:7d:17:83:4a:
a2:51:1d:c7:77:4e:b1:04:cd:c9:b1:f4:67:5c:cf:dd:0d:9b:
94:08:f7:d3:b6:38:cc:f9:0d:33:8d:5c:31:b8:72:4e:a4:cd:
d6:38:09:be:0f:f3:37:ba:c0:5f:54:2a:50:fd:78:7e:52:37:
a9:77:9e:8f:55:aa:4d:11:f0:ec:d6:bb:2b:fc:18:26:00:91:
ba:a3:49:56:e5:0e:01:4e:91:95:77:35:b2:48:6e:13:d4:53:
d1:30:12:12:7b:65:f7:41:f5:ab:31:22:19:cb:1f:b7:b3:88:
c5:52:7d:c1:5d:de:88:bc:2d:e1:88:58:6f:47:f3:4b:e6:c2:
61:ee:43:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 20 13:41:36 2023 by rpki-client on console-fra.rpki-client.org