Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/D9C432B81FCB11EEB409C35EC4F9AE02.roa
File: D9C432B81FCB11EEB409C35EC4F9AE02.roa (raw, json)
Hash identifier: gN647KVPky9+vxUyGTHropERhexuLhs18uSpwEnQ9qY=
Subject key identifier: 80:9A:94:71:4B:A1:9A:16:6E:89:5F:61:A7:CC:43:AD:93:23:9E:2E
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 0C40
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/D9C432B81FCB11EEB409C35EC4F9AE02.roa
Signing time: Tue 11 Jul 2023 09:18:09 +0000
ROA not before: Tue 11 Jul 2023 09:18:09 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 150750
IP address blocks: 223.29.224.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 19 Apr 2024 06:19:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3136 (0xc40)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Jul 11 09:18:09 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=64ad1e51-fa38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:85:da:b7:3c:a5:db:c5:5d:49:a3:0a:0e:75:
fe:83:35:11:43:ae:b8:cc:e4:8c:b2:ca:43:34:7e:
c6:cd:65:d8:eb:dd:a7:69:34:49:fe:57:c3:af:5e:
53:fa:ee:ab:e0:bc:9e:2d:c7:90:fb:4e:45:3a:0f:
89:93:62:2d:20:43:06:f0:9f:96:ef:f7:b0:8e:78:
09:e2:f0:ed:dd:39:f1:db:05:de:94:53:6d:f5:8e:
17:41:b1:a2:a0:cc:b5:ee:dc:ff:a6:29:0f:c9:eb:
58:41:00:8b:0a:fa:51:27:cd:4a:7c:1b:4d:2e:80:
db:e6:6e:4a:31:d4:c6:18:28:0c:dc:4a:42:29:30:
2d:25:73:71:33:72:86:29:5b:9d:7b:70:a1:0f:50:
69:1f:64:0c:91:6a:f3:d9:29:bd:61:71:45:53:d2:
21:5a:73:fc:a4:3b:39:ee:85:43:02:55:91:13:04:
a3:1b:98:bc:26:1e:3f:4f:32:d6:d4:fa:59:87:fc:
ff:fb:c9:9c:a1:41:0b:f5:7b:74:d0:32:d3:c2:73:
11:4d:38:71:47:60:d9:3e:98:a8:77:50:ea:3d:a0:
0f:b5:9b:a8:da:80:2f:b8:98:64:d4:88:38:d1:e7:
9d:29:46:25:de:f4:a1:9c:ad:aa:80:e8:07:5a:e1:
56:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:9A:94:71:4B:A1:9A:16:6E:89:5F:61:A7:CC:43:AD:93:23:9E:2E
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/D9C432B81FCB11EEB409C35EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
223.29.224.0/24
Signature Algorithm: sha256WithRSAEncryption
be:d8:6d:ea:a5:4a:02:a0:86:6c:52:c6:26:bf:79:a4:91:b9:
32:b3:1a:ca:f6:31:f0:63:26:72:d9:80:0b:d6:85:62:4f:8f:
df:6e:d5:32:4d:a2:0f:ff:73:c5:e9:fc:2e:e4:96:bc:6f:db:
56:64:d3:a5:65:2e:88:eb:37:90:c9:94:0b:d7:8c:f5:cb:ff:
e5:25:a0:f3:1d:71:42:a2:58:c3:f5:d5:12:54:f0:19:9b:44:
a3:f6:6e:9a:60:15:4f:49:d4:37:09:b8:fe:2d:53:1e:d0:66:
64:60:2c:a4:05:93:5a:64:47:e0:47:c3:1f:54:ca:41:aa:e0:
75:53:92:9a:53:dd:78:e2:fe:7f:c8:fa:d7:5c:b5:76:99:76:
9c:33:ab:2f:eb:03:b6:3f:60:e3:36:24:8a:e9:59:55:25:5c:
ca:cd:14:83:b4:6d:1d:bd:33:63:46:b3:92:8b:c0:46:90:32:
64:f0:28:89:71:6a:1b:f3:f9:96:7c:46:ed:ae:e2:69:f6:f8:
9a:73:a5:63:12:cf:65:18:4b:c8:a2:c2:6e:77:05:7f:a3:de:
f4:4a:f0:b8:13:13:ce:cf:76:68:91:ef:a8:1f:da:8a:4b:60:
d0:ee:9a:3e:4e:3d:dc:e3:5d:9a:9e:0b:0b:68:79:28:54:d0:
ff:73:ab:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 09:42:50 2024 by rpki-client on console-ams.rpki-client.org