Route Origin Authorization
$ rpki-client -vvf rpki.sub.apnic.net/repository/A9150E4D0000/0/323430313a323036303a323030303a3a2f34302d3430203d3e20313437303230.roa
File: 323430313a323036303a323030303a3a2f34302d3430203d3e20313437303230.roa (raw, json)
Hash identifier: OWi5s18994o+bbpwCKpNuSfeOxsN4BUm8AGNsUtpwvY=
Subject key identifier: BF:AD:98:25:0F:0F:F7:D7:3C:49:63:08:78:E0:D1:D9:E7:BB:9B:C2
Certificate issuer: /CN=A9150E4D0000/serialNumber=6228A3C6D637801692F7D7D48251DAD36A3CDB7F
Certificate serial: 4F96CAB2E9A82F4D024A1778B16826795AA13404
Authority key identifier: 62:28:A3:C6:D6:37:80:16:92:F7:D7:D4:82:51:DA:D3:6A:3C:DB:7F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YiijxtY3gBaS99fUglHa02o8238.cer
Subject info access: rsync://rpki.sub.apnic.net/repository/A9150E4D0000/0/323430313a323036303a323030303a3a2f34302d3430203d3e20313437303230.roa
Signing time: Wed 10 Apr 2024 22:56:34 +0000
ROA not before: Wed 10 Apr 2024 22:51:34 +0000
ROA not after: Wed 09 Apr 2025 22:56:34 +0000
asID: 147020
IP address blocks: 2401:2060:2000::/40 maxlen: 40
Validation: Failed, certificate revoked on Sat 01 Jun 2024 22:05:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:96:ca:b2:e9:a8:2f:4d:02:4a:17:78:b1:68:26:79:5a:a1:34:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9150E4D0000/serialNumber=6228A3C6D637801692F7D7D48251DAD36A3CDB7F
Validity
Not Before: Apr 10 22:51:34 2024 GMT
Not After : Apr 9 22:56:34 2025 GMT
Subject: CN=BFAD98250F0FF7D73C49630878E0D1D9E7BB9BC2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:5f:83:54:3e:ed:90:81:40:d8:14:dc:e8:00:
0e:e8:c3:e6:3c:80:8e:0f:30:56:ea:6a:5d:db:8a:
a8:e9:10:c7:b6:c5:e1:20:17:12:2c:69:5e:a3:7d:
1e:81:da:43:ae:40:78:56:f8:3d:7f:6e:b8:f3:14:
70:fc:50:d2:94:da:8a:ac:27:cf:fc:81:e7:68:a6:
66:13:26:5f:2b:0c:08:a8:76:27:05:a4:bf:4b:b7:
e4:16:2b:d6:39:a4:f8:d5:6b:e5:19:70:db:c1:04:
44:1e:b4:ef:98:2d:55:cc:e3:3f:15:4a:9f:80:ba:
94:4e:73:77:77:c4:88:7e:4b:69:43:96:7f:12:0d:
1c:f7:86:33:5e:be:a1:58:54:ac:ce:13:a9:b8:55:
36:79:cd:e0:91:7f:a4:d7:50:14:63:4f:dd:b0:ab:
6e:2f:c0:19:b1:04:c7:47:00:43:ec:46:fb:34:4b:
27:00:ca:d7:7c:40:24:dc:30:d8:b9:44:ff:0f:95:
6d:e6:fd:42:5c:0b:ad:0e:dc:b0:83:7f:3b:c5:b1:
d1:51:ab:a9:6b:a2:22:e6:70:e4:93:0c:b8:5a:d2:
1a:4d:8e:4f:97:a2:c3:2f:47:93:02:08:a0:4f:70:
02:9a:79:5d:88:89:59:5a:ec:6b:8d:71:d3:09:7c:
a9:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:AD:98:25:0F:0F:F7:D7:3C:49:63:08:78:E0:D1:D9:E7:BB:9B:C2
X509v3 Authority Key Identifier:
keyid:62:28:A3:C6:D6:37:80:16:92:F7:D7:D4:82:51:DA:D3:6A:3C:DB:7F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.sub.apnic.net/repository/A9150E4D0000/0/6228A3C6D637801692F7D7D48251DAD36A3CDB7F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YiijxtY3gBaS99fUglHa02o8238.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A9150E4D0000/0/323430313a323036303a323030303a3a2f34302d3430203d3e20313437303230.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2401:2060:2000::/40
Signature Algorithm: sha256WithRSAEncryption
6f:4c:a9:69:dd:ef:80:96:73:59:91:4d:a3:5e:9b:79:93:5e:
c0:a8:8b:7c:20:bb:9a:13:1e:8c:ef:05:34:3a:e7:47:0a:6f:
c4:7f:aa:77:f1:21:22:60:96:67:1b:87:bc:e7:6c:19:98:bb:
94:28:63:64:a9:7d:4f:d9:32:55:09:52:ed:2f:03:64:ed:7d:
7b:1d:c9:1c:87:96:4d:1a:1b:cb:12:79:9f:74:bf:cf:df:34:
b1:df:54:71:cd:a1:d7:d5:ab:b4:01:ea:82:87:68:86:7b:ad:
b6:12:ac:11:8d:e1:02:fe:1a:12:7e:a9:50:28:92:c0:75:f4:
42:c1:4d:43:d9:c8:d7:ad:e8:fc:12:6f:cc:93:f0:1b:7c:78:
83:ba:ac:c3:bf:8a:43:6f:e5:6d:b5:7c:f3:74:94:29:49:0b:
1d:48:3b:32:d4:4e:cd:d7:ab:ec:5d:f8:89:74:e6:3b:8f:53:
93:a3:b6:41:7a:fc:7d:2f:75:b4:9e:41:ad:65:4b:ce:46:20:
ae:b9:9c:a1:bd:60:f6:82:54:e8:39:f1:bf:57:26:65:c7:45:
e6:70:5b:9a:9d:9c:98:cd:fe:4e:67:9c:22:a3:fb:a7:09:cc:
b8:e3:bf:dc:a1:95:98:81:22:7c:3b:f5:b1:41:3f:26:f7:28:
d0:ab:e7:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:24 2024 by rpki-client on console-fra.rpki-client.org