Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/636456A0F34411EEA4ACBE0CC4F9AE02.roa
File: 636456A0F34411EEA4ACBE0CC4F9AE02.roa (raw, json)
Hash identifier: JoeJsZDB4HuYJU674IFCWtiugOyXgMSaNsIhht9CFLM=
Subject key identifier: C9:DB:F6:09:AC:83:51:A3:98:D5:12:CA:49:A9:AF:97:13:6D:0A:94
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 1028
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/636456A0F34411EEA4ACBE0CC4F9AE02.roa
Signing time: Fri 05 Apr 2024 12:02:34 +0000
ROA not before: Fri 05 Apr 2024 12:02:34 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 202972
IP address blocks: 180.178.185.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 05 Apr 2024 20:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4136 (0x1028)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Apr 5 12:02:34 2024 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=660fe85a-e51b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:1c:0e:e3:22:d6:29:45:0e:4c:65:c3:c2:9f:
35:61:5d:21:91:4e:99:91:39:e8:8f:b4:7b:ae:c3:
ba:75:85:7e:50:68:fc:fe:88:6a:04:39:5f:e4:32:
3f:4c:2a:01:c5:40:f5:ad:9d:58:f7:38:76:99:cc:
b7:7c:38:f3:0d:fc:e6:78:35:b9:0e:1d:0e:0b:03:
3d:f1:46:62:18:36:60:82:ad:c0:5f:fb:07:75:23:
72:05:48:dd:f3:4d:05:ee:f0:a0:a8:cf:15:78:e3:
ea:0b:92:3e:f3:85:73:ad:0d:f1:de:26:58:3d:0f:
2c:59:d5:79:5a:d5:90:19:c8:45:2d:2f:1d:fa:1c:
61:ec:81:54:f9:aa:f1:38:80:fa:be:4c:53:6e:7d:
26:0f:bb:29:fb:50:cd:69:b4:9c:64:eb:ed:8f:31:
b1:00:de:b7:b1:3a:7b:30:4c:63:2c:e7:b2:98:63:
1b:0b:4c:56:37:97:78:7a:79:50:e7:f0:2c:c7:f1:
cc:0a:d4:65:a8:ba:58:3a:e0:7e:16:15:a5:37:4c:
39:e8:51:eb:f2:eb:ba:89:e2:a6:05:b3:49:28:24:
f2:a8:8c:d8:d6:3b:02:e2:e4:f3:ee:db:e7:1e:a4:
34:8c:38:7c:e1:5c:fd:01:db:d5:b2:75:9a:d7:17:
67:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:DB:F6:09:AC:83:51:A3:98:D5:12:CA:49:A9:AF:97:13:6D:0A:94
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/636456A0F34411EEA4ACBE0CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
180.178.185.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:52:f5:54:e2:09:f8:57:28:a2:39:f4:9e:a3:79:64:98:8f:
78:c7:9c:91:2f:fb:a5:7d:42:07:0a:13:4f:54:a5:9e:a1:24:
52:5a:f3:82:ad:87:63:33:62:57:15:58:d7:ea:3b:65:e3:cc:
f3:cf:c6:ab:2a:30:5d:1a:10:22:6c:6e:cb:49:23:d1:a0:a0:
86:2e:5c:2f:9c:9e:23:24:6a:bc:5a:42:eb:a0:da:13:52:4d:
62:75:62:05:00:62:e1:2d:84:53:f8:00:94:0f:ac:3b:d0:7d:
72:69:a2:15:d7:6a:d2:94:8a:82:de:80:28:e2:8e:0b:05:42:
21:c2:fa:32:0f:d6:8d:13:2a:f6:fb:bf:64:b7:6c:36:65:c9:
00:8f:2b:bf:93:c8:05:3c:c5:06:b5:1c:c1:0c:e8:a3:4c:bf:
4d:ce:2d:5e:43:87:b4:a7:0e:27:ca:c6:d7:be:7a:44:5d:28:
82:ec:ee:7c:25:b4:2d:bd:cf:4a:db:e6:1d:54:11:9b:b3:8e:
fa:a3:74:f0:59:c3:d8:13:74:c1:81:ec:94:5b:37:d4:16:c7:
8d:d2:bd:89:83:3e:fa:64:f1:05:7e:e9:b3:cc:33:98:7f:6e:
0d:c4:9c:e9:8a:bd:90:38:23:62:d6:0a:9a:74:37:98:e9:26:
06:e8:9a:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 6 00:02:27 2024 by rpki-client on console-fra.rpki-client.org