Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/3DDD46441E0111E9A590C837C4F9AE02.roa
File: 3DDD46441E0111E9A590C837C4F9AE02.roa (raw, json)
Hash identifier: kygLSTWZ7rVc1zA/Ek/sSR0BSwVwdgMBsOJr8WO2FF4=
Subject key identifier: BE:C7:90:D9:A7:D4:C3:F3:E9:E6:50:08:82:4D:35:90:A3:CD:4E:9B
Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C
Certificate serial: 36F0
Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/3DDD46441E0111E9A590C837C4F9AE02.roa
Signing time: Wed 26 Jul 2023 10:48:23 +0000
ROA not before: Wed 26 Jul 2023 10:48:23 +0000
ROA not after: Mon 30 Sep 2024 00:00:00 +0000
asID: 17556
IP address blocks: 114.109.249.0/24 maxlen: 24
115.87.70.0/24 maxlen: 24
115.87.71.0/24 maxlen: 24
115.87.72.0/24 maxlen: 24
115.87.73.0/24 maxlen: 24
119.46.99.0/24 maxlen: 24
119.46.254.0/23 maxlen: 24
210.86.191.0/24 maxlen: 24
2001:fb0:10b2::/48 maxlen: 48
2001:fb1:3009:1::/64 maxlen: 64
2001:fb1:3009:2::/64 maxlen: 64
2001:fb1:3009:3::/64 maxlen: 64
2001:fb1:3009:5::/64 maxlen: 64
2001:fb1:3009:6::/64 maxlen: 64
2001:fb1:3009:7::/64 maxlen: 64
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14064 (0x36f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C
Validity
Not Before: Jul 26 10:48:23 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=64c0f9f7-38fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:e1:e1:41:b6:38:d3:21:53:7b:ec:6a:ac:59:
77:9e:60:00:f4:2a:7c:86:ea:06:88:14:af:dd:eb:
8e:13:3b:4f:60:6f:46:f8:78:46:7d:3c:8b:f6:e3:
94:0d:fa:7f:ca:0c:c7:95:1c:da:05:a2:21:a2:a7:
8f:b2:1c:f7:af:27:c0:46:f4:ed:80:8d:b0:10:86:
28:ae:97:3a:fb:e2:16:b7:4a:f8:e9:7a:58:03:18:
70:73:98:d4:bf:2e:fa:8e:23:13:8f:f9:e5:f7:c3:
f5:fa:2b:ae:d7:8a:6a:be:2f:80:87:d6:89:d5:f6:
bc:ec:bd:5b:c5:46:50:f3:dc:22:b6:1d:25:18:cd:
18:e4:19:57:60:e0:67:23:6a:f4:53:55:fb:71:9c:
6c:e4:6a:e9:2c:a1:f6:26:39:ac:44:4e:8b:33:42:
d1:40:1b:a8:3c:0c:56:43:ca:92:fd:fa:2c:bc:a9:
f3:77:fa:50:ff:97:d0:0f:86:1f:a1:7a:55:a9:79:
b3:b7:80:2a:de:78:ab:5c:76:c9:1d:99:6d:34:fe:
4d:4c:54:63:48:19:58:54:fa:3b:ab:e3:78:3d:01:
cf:e5:46:f3:4a:77:14:5d:83:5c:24:d1:e7:b6:74:
17:a7:48:e1:fd:14:02:cf:23:98:8e:ce:ec:f3:d6:
b1:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:C7:90:D9:A7:D4:C3:F3:E9:E6:50:08:82:4D:35:90:A3:CD:4E:9B
X509v3 Authority Key Identifier:
keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/3DDD46441E0111E9A590C837C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
114.109.249.0/24
115.87.70.0-115.87.73.255
119.46.99.0/24
119.46.254.0/23
210.86.191.0/24
IPv6:
2001:fb0:10b2::/48
2001:fb1:3009:1::-2001:fb1:3009:3:ffff:ffff:ffff:ffff
2001:fb1:3009:5::-2001:fb1:3009:7:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
ac:77:ab:66:db:6d:58:1d:c2:1f:7f:4b:c1:af:4e:56:c5:dd:
d5:1b:90:28:26:9b:a0:06:4e:98:f0:ad:e0:bc:89:52:15:d8:
2d:56:5a:ac:94:3a:d7:ee:aa:83:04:e9:4a:71:70:2f:94:48:
5e:65:a9:75:d1:08:a7:17:f5:13:b1:de:06:51:13:8a:96:51:
be:3c:36:84:9b:3a:b2:c8:ef:f6:e8:d4:16:9d:b4:08:cf:f9:
24:c1:73:a6:1d:c4:52:bf:fc:bc:38:83:5f:d4:23:cc:70:3e:
38:13:9e:d1:e0:2e:7b:5a:55:37:7f:95:53:0c:86:32:cb:8e:
d7:33:ae:54:ac:eb:c2:63:1f:fe:f3:b6:f9:45:bf:52:48:bd:
d3:f9:d9:57:72:5c:b8:a6:a9:02:fa:4d:28:11:a7:03:30:a2:
68:6c:2a:e7:a0:76:83:82:d6:6e:94:12:ef:4e:3f:f4:d3:12:
5f:ec:c8:7b:6d:7c:b1:30:35:03:9a:05:16:be:41:ed:9e:78:
91:ac:e4:0a:9e:af:bf:31:06:f2:2a:28:59:cb:70:a7:25:42:
35:06:92:4a:ad:79:e9:95:8c:c8:c6:32:7f:57:e0:d6:1c:2e:
13:a6:7b:80:30:08:eb:6c:b1:0c:2b:9e:63:59:4f:17:3e:ec:
80:95:2b:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:35:37 2023 by rpki-client on console.sobornost.net