Route Origin Authorization
$ rpki-client -vvf rpki.sub.apnic.net/repository/A917447B0000/1/323030313a6466343a353134653a3a2f34382d3438203d3e20313533333436.roa
File: 323030313a6466343a353134653a3a2f34382d3438203d3e20313533333436.roa (raw, json)
Hash identifier: sI07zzSAXGixhhWNEulodEuHS3fOeXcgCleyhRICyvI=
Subject key identifier: 63:04:CB:4B:97:B5:34:3D:42:2E:19:E1:0D:E1:92:FF:2C:2E:2D:23
Certificate issuer: /CN=A917447B0000/serialNumber=7A443962573EC01D5131651F90F46DA19AFC21D2
Certificate serial: 6F761E6C435ACABF085C517750007230F39ED99C
Authority key identifier: 7A:44:39:62:57:3E:C0:1D:51:31:65:1F:90:F4:6D:A1:9A:FC:21:D2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ekQ5Ylc-wB1RMWUfkPRtoZr8IdI.cer
Subject info access: rsync://rpki.sub.apnic.net/repository/A917447B0000/1/323030313a6466343a353134653a3a2f34382d3438203d3e20313533333436.roa
Signing time: Sat 28 Sep 2024 16:30:32 +0000
ROA not before: Sat 28 Sep 2024 16:25:32 +0000
ROA not after: Sat 27 Sep 2025 16:30:32 +0000
asID: 153346
IP address blocks: 2001:df4:514e::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 04 Nov 2024 11:27:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:76:1e:6c:43:5a:ca:bf:08:5c:51:77:50:00:72:30:f3:9e:d9:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917447B0000/serialNumber=7A443962573EC01D5131651F90F46DA19AFC21D2
Validity
Not Before: Sep 28 16:25:32 2024 GMT
Not After : Sep 27 16:30:32 2025 GMT
Subject: CN=6304CB4B97B5343D422E19E10DE192FF2C2E2D23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ce:67:33:be:8e:a6:d8:27:42:7a:55:cd:3a:
62:56:20:7e:bf:63:fb:55:1f:ce:93:8f:8e:de:c4:
b9:f6:46:bc:53:1d:0b:85:74:46:ff:c7:cb:38:55:
78:42:24:e3:db:f6:64:62:bc:52:e9:0f:fa:65:c5:
03:96:c2:83:2b:1e:03:9d:ed:f0:f6:95:48:82:e3:
50:04:5b:eb:dd:31:0b:a7:a2:44:f4:72:0f:b2:a1:
eb:69:bb:78:bf:38:2c:da:fb:b9:e0:09:89:4d:49:
18:0e:b0:0b:c5:9e:53:41:33:04:64:ae:ae:a1:b3:
23:7b:6b:ad:d4:d6:a4:7b:9a:e6:1e:b1:00:b4:ea:
85:37:b4:41:58:f8:ea:8e:4b:53:f8:83:85:57:01:
b3:37:a0:e2:3e:d1:f2:5b:08:44:d7:8e:fe:53:01:
8b:aa:cb:f4:1c:0c:4b:a6:13:b5:35:28:95:e0:66:
ca:b8:5b:3e:ae:81:f0:50:83:9f:ae:59:30:0b:ed:
b9:41:b7:ae:ed:24:04:cd:d6:e2:04:10:45:3b:01:
e1:a3:c2:4f:59:5f:55:6f:1b:00:e9:00:fe:2c:41:
88:ca:f9:0a:c4:9e:c4:a7:97:c1:47:f9:31:9a:f6:
87:53:be:2a:e7:6e:97:2b:02:31:8a:82:ce:4d:35:
11:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:04:CB:4B:97:B5:34:3D:42:2E:19:E1:0D:E1:92:FF:2C:2E:2D:23
X509v3 Authority Key Identifier:
keyid:7A:44:39:62:57:3E:C0:1D:51:31:65:1F:90:F4:6D:A1:9A:FC:21:D2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.sub.apnic.net/repository/A917447B0000/1/7A443962573EC01D5131651F90F46DA19AFC21D2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ekQ5Ylc-wB1RMWUfkPRtoZr8IdI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A917447B0000/1/323030313a6466343a353134653a3a2f34382d3438203d3e20313533333436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df4:514e::/48
Signature Algorithm: sha256WithRSAEncryption
5e:63:35:99:c2:c4:37:e7:3a:14:9e:d1:ef:21:9f:f6:84:3c:
53:6d:24:82:bc:36:dd:81:4b:e4:ed:da:08:68:5c:b9:94:87:
35:43:26:bc:a3:c3:8f:d5:63:1c:fd:01:df:57:d6:91:bd:78:
a7:ad:c7:4f:84:0f:df:6f:89:7b:d4:c8:85:70:57:ef:9e:49:
36:c4:bc:b5:16:57:7d:9b:65:0b:80:db:a6:ba:44:b6:9d:a0:
ee:d2:8f:28:e9:35:53:b6:f6:a0:fc:b9:92:35:52:59:a8:c7:
db:8a:84:10:80:5c:ce:9f:b1:2f:03:4e:5b:5d:af:fd:dd:16:
26:ac:86:b9:5e:ae:0a:37:8b:b6:e6:71:69:19:1c:b1:8e:32:
d1:2b:6a:cd:fb:f7:04:ab:5f:95:e7:01:82:46:46:4c:ba:e1:
53:3b:a5:b6:6f:b3:27:98:da:23:58:86:c9:38:aa:28:a0:cf:
46:be:76:a7:03:1a:21:1b:20:95:30:2a:d6:58:ac:a8:e7:da:
3c:63:46:cd:a4:76:bb:cd:13:cd:aa:4f:94:6e:73:fc:7f:54:
9c:d0:7b:7d:b1:4d:4f:d8:36:7f:f3:a0:fb:9f:d3:e1:62:e6:
84:77:b0:5a:27:97:b4:b8:8d:5c:71:8c:57:97:af:cb:b6:83:
f2:91:a5:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 4 14:58:13 2024 by rpki-client on console-fra.rpki-client.org