Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EEAF9/E61E7D5CE90011EAB59F6971C4F9AE02/57F6CEF6E90211EA90508273C4F9AE02.roa
File: 57F6CEF6E90211EA90508273C4F9AE02.roa (raw, json)
Hash identifier: 4MPn228qeCmaCUawXu73fAIrfe9xyRU0ytinuJC8HQ4=
Subject key identifier: 17:05:9E:3A:58:16:69:48:B7:91:88:A7:8A:5B:CB:69:C9:DE:40:65
Certificate issuer: /CN=A91EEAF9/serialNumber=DEBD28537A92EB13DA80F79884AEFB7F5169A879
Certificate serial: 06E1
Authority key identifier: DE:BD:28:53:7A:92:EB:13:DA:80:F7:98:84:AE:FB:7F:51:69:A8:79
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3r0oU3qS6xPagPeYhK77f1FpqHk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EEAF9/E61E7D5CE90011EAB59F6971C4F9AE02/57F6CEF6E90211EA90508273C4F9AE02.roa
Signing time: Wed 06 Dec 2023 22:29:54 +0000
ROA not before: Wed 06 Dec 2023 22:29:54 +0000
ROA not after: Fri 31 Jan 2025 00:00:00 +0000
asID: 59216
IP address blocks: 2001:df7:1000::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 22 Oct 2024 06:21:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1761 (0x6e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EEAF9/serialNumber=DEBD28537A92EB13DA80F79884AEFB7F5169A879
Validity
Not Before: Dec 6 22:29:54 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=6570f5e2-ff38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:57:ec:99:df:1e:f8:18:0b:9d:ea:96:28:dd:
09:58:7c:76:08:27:a9:cd:fe:5d:2d:7f:51:54:cb:
74:58:4f:58:81:8a:af:4d:9e:4c:bb:2a:ce:22:97:
74:b0:91:9b:bf:7d:27:65:7a:f0:15:4e:a8:6a:6e:
5f:61:89:4d:73:e3:d5:df:de:fd:ce:8f:ee:e8:a2:
e8:21:ff:cc:63:40:c4:a9:f3:59:c5:72:0e:53:5f:
6b:fd:8e:d2:d9:32:af:96:63:b4:68:d2:89:7a:b7:
7f:0b:1d:3f:fc:78:a5:49:aa:18:0e:c4:af:4e:87:
5b:28:76:bd:90:8b:36:cc:e3:bf:ee:16:71:09:5b:
a6:03:5c:84:d2:eb:60:bc:a9:e2:cc:a2:9d:28:92:
48:71:be:eb:9c:33:ee:f3:a0:1f:8b:8e:ff:e6:ee:
4b:91:7f:ad:46:33:33:f4:a4:72:a2:61:8a:b2:2c:
3f:2f:6b:08:d8:31:d8:02:85:3d:56:64:09:8f:5a:
4a:04:4b:83:52:7f:ec:24:3b:8c:38:32:64:9d:30:
a2:48:cf:6b:d0:f5:72:97:4c:fb:4f:d5:4d:86:fd:
25:20:d8:96:ec:03:4d:5a:be:40:b0:c1:9f:b7:2b:
0e:cc:32:93:87:41:31:1e:8e:04:0b:2d:b5:ba:4e:
77:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:05:9E:3A:58:16:69:48:B7:91:88:A7:8A:5B:CB:69:C9:DE:40:65
X509v3 Authority Key Identifier:
keyid:DE:BD:28:53:7A:92:EB:13:DA:80:F7:98:84:AE:FB:7F:51:69:A8:79
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EEAF9/E61E7D5CE90011EAB59F6971C4F9AE02/3r0oU3qS6xPagPeYhK77f1FpqHk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3r0oU3qS6xPagPeYhK77f1FpqHk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EEAF9/E61E7D5CE90011EAB59F6971C4F9AE02/57F6CEF6E90211EA90508273C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:df7:1000::/48
Signature Algorithm: sha256WithRSAEncryption
2e:d3:d2:7d:af:08:53:a2:05:92:15:f0:27:e7:00:4e:e5:e6:
85:05:cf:2e:e2:66:10:cf:91:cc:84:be:c0:d9:e8:1c:ef:2f:
d6:33:ff:92:92:28:11:0f:d3:ef:ae:c1:23:49:d1:6b:c8:81:
fe:e5:6a:c9:d8:00:d0:4b:5b:c7:31:9b:d0:f4:b1:0d:22:5c:
23:cd:fb:e6:50:7c:1b:37:82:08:3a:7d:ae:2e:c9:d7:b1:da:
b9:89:94:37:68:76:7d:f1:80:7f:6e:eb:85:83:3e:9d:e2:bb:
3f:6e:28:aa:18:64:ce:a6:89:8c:2b:c3:2c:f9:7a:fa:ac:74:
13:eb:e6:0b:bc:62:04:44:bb:4a:f3:52:8e:a8:50:c1:0f:41:
e9:51:98:da:b1:61:99:8f:67:64:c3:7c:11:ee:e8:76:5a:47:
1e:3f:84:8e:4a:11:ff:61:4f:e9:76:39:ff:4d:06:40:d1:d6:
be:90:ae:d7:23:5e:83:3f:5b:b6:65:12:3d:60:b8:63:bc:5d:
f8:f0:fe:be:db:1e:73:ef:ae:bb:29:49:e7:9a:77:b2:ef:8a:
17:33:21:b1:aa:23:da:d1:11:66:15:18:bf:4b:51:6a:70:71:
b8:8e:08:26:37:37:6b:c9:47:16:22:4f:57:a2:f7:a8:94:92:
5d:60:ef:d2
-----BEGIN CERTIFICATE-----
MIIFdDCCBFygAwIBAgICBuEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RUVBRjkxMTAvBgNVBAUTKERFQkQyODUzN0E5MkVCMTNEQTgwRjc5ODg0QUVGQjdG
NTE2OUE4NzkwHhcNMjMxMjA2MjIyOTU0WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NTcwZjVlMi1mZjM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA4Ffsmd8e+BgLneqWKN0JWHx2CCepzf5dLX9RVMt0WE9YgYqvTZ5MuyrOIpd0
sJGbv30nZXrwFU6oam5fYYlNc+PV3979zo/u6KLoIf/MY0DEqfNZxXIOU19r/Y7S
2TKvlmO0aNKJerd/Cx0//HilSaoYDsSvTodbKHa9kIs2zOO/7hZxCVumA1yE0utg
vKnizKKdKJJIcb7rnDPu86Afi47/5u5LkX+tRjMz9KRyomGKsiw/L2sI2DHYAoU9
VmQJj1pKBEuDUn/sJDuMODJknTCiSM9r0PVyl0z7T9VNhv0lINiW7ANNWr5AsMGf
tysOzDKTh0ExHo4ECy21uk53tQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFBcFnjpY
FmlIt5GIp4pby2nJ3kBlMB8GA1UdIwQYMBaAFN69KFN6kusT2oD3mISu+39Raah5
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUFGOS9FNjFFN0Q1Q0U5
MDAxMUVBQjU5RjY5NzFDNEY5QUUwMi8zcjBvVTNxUzZ4UGFnUGVZaEs3N2YxRnBx
SGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzNyMG9VM3FTNnhQYWdQZVloSzc3ZjFGcHFIay5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RUVBRjkvRTYxRTdENUNFOTAwMTFFQUI1OUY2OTcxQzRGOUFFMDIvNTdGNkNFRjZF
OTAyMTFFQTkwNTA4MjczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E
EzARMA8EAgACMAkDBwAgAQ33EAAwDQYJKoZIhvcNAQELBQADggEBAC7T0n2vCFOi
BZIV8CfnAE7l5oUFzy7iZhDPkcyEvsDZ6BzvL9Yz/5KSKBEP0++uwSNJ0WvIgf7l
asnYANBLW8cxm9D0sQ0iXCPN++ZQfBs3ggg6fa4uydex2rmJlDdodn3xgH9u64WD
Pp3iuz9uKKoYZM6miYwrwyz5evqsdBPr5gu8YgREu0rzUo6oUMEPQelRmNqxYZmP
Z2TDfBHu6HZaRx4/hI5KEf9hT+l2Of9NBkDR1r6QrtcjXoM/W7ZlEj1guGO8Xfjw
/r7bHnPvrrspSeead7LvihczIbGqI9rREWYVGL9LUWpwcbiOCCY3N2vJRxYiT1ei
96iUkl1g79I=
-----END CERTIFICATE-----
Generated at Tue Oct 22 08:30:04 2024 by rpki-client on console-fra.rpki-client.org