Route Origin Authorization
$ rpki-client -vvf rpki.sub.apnic.net/repository/A917447B0000/1/323030313a6466343a353134633a3a2f34382d3438203d3e20313533333436.roa
File: 323030313a6466343a353134633a3a2f34382d3438203d3e20313533333436.roa (raw, json)
Hash identifier: dqeOZ/w+XH5bLYPbin6nNJo90aCcBDQmU9w+LphFW2I=
Subject key identifier: 5F:88:D4:6E:B7:7C:87:88:F5:57:C6:17:A8:58:DC:1F:97:ED:19:CB
Certificate issuer: /CN=A917447B0000/serialNumber=7A443962573EC01D5131651F90F46DA19AFC21D2
Certificate serial: 4B21764F56EBAB116F224EF6C028B338107E89C8
Authority key identifier: 7A:44:39:62:57:3E:C0:1D:51:31:65:1F:90:F4:6D:A1:9A:FC:21:D2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ekQ5Ylc-wB1RMWUfkPRtoZr8IdI.cer
Subject info access: rsync://rpki.sub.apnic.net/repository/A917447B0000/1/323030313a6466343a353134633a3a2f34382d3438203d3e20313533333436.roa
Signing time: Sat 28 Sep 2024 16:30:07 +0000
ROA not before: Sat 28 Sep 2024 16:25:07 +0000
ROA not after: Sat 27 Sep 2025 16:30:07 +0000
asID: 153346
IP address blocks: 2001:df4:514c::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 04 Nov 2024 11:27:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:21:76:4f:56:eb:ab:11:6f:22:4e:f6:c0:28:b3:38:10:7e:89:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917447B0000/serialNumber=7A443962573EC01D5131651F90F46DA19AFC21D2
Validity
Not Before: Sep 28 16:25:07 2024 GMT
Not After : Sep 27 16:30:07 2025 GMT
Subject: CN=5F88D46EB77C8788F557C617A858DC1F97ED19CB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:9b:4a:df:d6:1e:75:09:cd:f5:37:14:a1:0c:
6e:a0:37:c7:54:30:11:62:97:63:d1:65:df:1f:dd:
a9:17:75:15:ec:84:a2:32:2d:2e:94:a6:37:90:29:
7f:ea:ac:98:c1:01:12:68:d1:71:b3:2c:da:a7:3b:
17:20:c2:91:28:eb:3c:89:a4:bc:5a:6e:54:78:4b:
3e:7f:63:af:3c:f8:0a:61:18:ef:7d:99:4f:d2:c5:
93:21:0a:48:fe:db:02:78:51:c6:28:d1:6c:8e:eb:
03:b9:2f:48:36:6c:d8:b5:c9:ec:94:8e:25:94:c1:
84:e8:4c:6b:6b:2e:87:ea:28:a8:0e:c8:d9:65:2e:
34:3b:19:9e:d1:0e:09:2c:83:87:0d:4b:67:9a:b1:
c7:5a:9d:71:fd:23:3a:44:a5:fd:7f:f0:eb:ec:b1:
bb:a9:4f:df:c8:1d:6f:2c:40:7e:0b:c6:8d:12:2a:
37:09:19:8f:ca:0d:6c:ab:62:f9:7d:64:96:e5:19:
c4:c4:f6:d1:29:0b:bd:b2:d3:9c:4d:43:fc:c3:d8:
65:42:05:f7:f7:9d:0e:7c:59:4a:03:2a:08:57:9b:
09:fb:80:9e:29:d3:6a:32:98:e9:d8:4d:b5:40:05:
24:77:a6:a2:18:81:52:60:5b:5d:9d:99:a8:45:3d:
c3:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:88:D4:6E:B7:7C:87:88:F5:57:C6:17:A8:58:DC:1F:97:ED:19:CB
X509v3 Authority Key Identifier:
keyid:7A:44:39:62:57:3E:C0:1D:51:31:65:1F:90:F4:6D:A1:9A:FC:21:D2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.sub.apnic.net/repository/A917447B0000/1/7A443962573EC01D5131651F90F46DA19AFC21D2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ekQ5Ylc-wB1RMWUfkPRtoZr8IdI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A917447B0000/1/323030313a6466343a353134633a3a2f34382d3438203d3e20313533333436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df4:514c::/48
Signature Algorithm: sha256WithRSAEncryption
10:ca:8b:ad:c7:26:97:f7:8e:83:dd:7d:e4:49:90:03:51:a9:
b8:3e:28:4d:e1:f7:ce:4b:9c:d8:5b:67:2e:fa:36:1d:87:2c:
e8:cd:c2:59:21:f0:07:31:24:de:ed:05:e4:a4:7c:e9:49:26:
6f:cf:eb:c8:05:76:92:c7:82:5f:d3:9f:ed:c3:73:1c:2c:1c:
de:b3:1e:6f:ee:7a:13:d5:d7:dc:f3:cf:94:6f:fe:c8:49:28:
7a:87:03:39:8c:b7:26:70:29:6e:2f:00:7e:b2:88:32:2d:1f:
1c:c7:7b:1f:90:94:1e:d5:ac:99:90:b6:bf:57:7d:70:cb:45:
71:7f:bc:fe:b2:94:d3:48:d0:85:d3:97:0d:53:5a:c9:40:f8:
31:51:50:c1:d4:a8:c2:e0:27:7b:c6:a2:5a:57:be:48:b0:9f:
02:8d:bf:06:d4:9c:8f:96:3b:ba:40:de:32:0d:ed:2b:4f:ec:
c8:30:de:fa:fe:ba:7e:f4:7c:3f:ad:d9:60:8a:06:91:84:b5:
c5:a4:9e:b7:1f:64:4b:42:82:8d:b5:3c:bb:91:4b:99:28:71:
48:27:b8:20:13:77:99:ae:d5:65:78:fc:10:ee:ae:be:a1:37:
51:79:d8:96:7e:b9:7c:5e:bd:b9:49:1c:b3:01:19:cd:77:6f:
1c:c1:b1:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 4 14:07:44 2024 by rpki-client on console-ams.rpki-client.org