Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/C7302A64DBE411EE8C94284DC4F9AE02.roa
File: C7302A64DBE411EE8C94284DC4F9AE02.roa (raw, json)
Hash identifier: L9Edsw4cwDkjPdklSazpxC3UAZNSUanfev7v6QCEaDE=
Subject key identifier: 26:31:E7:75:9C:50:6A:28:74:D2:18:74:4D:D6:48:B8:2A:A8:F7:2A
Certificate issuer: /CN=A91510AD/serialNumber=E1E6908A16EC813DAA0BD64797AE9DBDEB092257
Certificate serial: 34BA
Authority key identifier: E1:E6:90:8A:16:EC:81:3D:AA:0B:D6:47:97:AE:9D:BD:EB:09:22:57
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/C7302A64DBE411EE8C94284DC4F9AE02.roa
Signing time: Wed 06 Mar 2024 18:10:14 +0000
ROA not before: Wed 06 Mar 2024 18:10:13 +0000
ROA not after: Mon 30 Dec 2024 00:00:00 +0000
asID: 44893
IP address blocks: 175.29.0.0/18 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Mar 2024 19:45:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13498 (0x34ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91510AD/serialNumber=E1E6908A16EC813DAA0BD64797AE9DBDEB092257
Validity
Not Before: Mar 6 18:10:13 2024 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=65e8b185-94e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:0a:2b:5d:dd:75:b3:77:a6:47:6c:5a:23:f6:
a3:04:5c:6f:f9:fc:63:9b:aa:cb:de:eb:31:18:a9:
8f:02:d7:63:d7:63:dc:a5:e6:97:39:f4:93:a3:51:
f7:8c:49:38:60:a3:6d:d6:84:11:68:ae:14:f5:1b:
48:ba:d3:1a:66:b1:81:d6:47:1c:34:fa:82:54:02:
4f:81:65:03:a1:5e:f8:39:cb:f9:b7:91:c3:ff:b8:
8d:c9:8e:c9:61:17:2b:cd:3d:76:01:ba:cc:34:38:
e7:bf:47:26:96:a8:52:6e:6a:39:72:05:34:e0:e2:
20:f1:22:ca:21:e7:21:ca:2d:0d:9f:ec:bc:6d:c4:
17:2f:95:59:3f:3d:f8:60:c0:86:2f:0a:b2:a8:f5:
9f:41:40:da:de:13:8b:7d:35:5a:a1:96:b5:08:48:
3f:d6:d4:e3:98:1c:e2:fe:2b:d7:03:70:e8:13:89:
20:55:44:2d:de:c3:b8:72:2c:9c:0f:bc:7e:4f:e1:
4b:d2:2c:ac:c4:09:74:7e:2a:1c:3a:0d:2b:22:5b:
f8:75:e2:7b:0b:60:47:ba:0e:88:d7:c0:b5:ab:32:
f0:87:03:68:47:c4:ea:f0:1e:a9:5f:28:73:a6:59:
0b:8c:50:36:5f:49:05:f4:bf:44:53:24:bf:db:86:
4d:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:31:E7:75:9C:50:6A:28:74:D2:18:74:4D:D6:48:B8:2A:A8:F7:2A
X509v3 Authority Key Identifier:
keyid:E1:E6:90:8A:16:EC:81:3D:AA:0B:D6:47:97:AE:9D:BD:EB:09:22:57
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/C7302A64DBE411EE8C94284DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
175.29.0.0/18
Signature Algorithm: sha256WithRSAEncryption
28:6f:9c:ee:08:d7:11:41:ae:44:8d:04:49:2f:1e:0d:80:bc:
d0:ce:b8:79:21:42:32:74:53:8d:b2:c5:5e:52:47:10:c9:6b:
4f:db:80:bd:9c:51:12:e8:db:b5:63:9d:28:cb:23:5e:7a:ca:
c7:c4:2c:a3:ca:d6:93:56:fb:9b:ef:27:99:be:fe:18:08:eb:
64:b1:2b:fa:4a:ef:3c:23:cb:cf:f7:61:f3:43:c3:c4:26:5b:
7e:f7:39:c3:ad:29:a7:08:cb:76:f8:37:85:3a:34:04:d3:92:
d1:93:83:af:40:ed:28:f6:26:f3:5e:83:6b:66:66:f2:18:a5:
f8:93:6b:07:7e:ff:c3:0c:1f:4a:71:5d:fc:71:35:ba:23:9c:
50:dc:de:a5:e6:4b:42:4c:d8:ce:44:c0:cb:56:a6:36:2a:f8:
f1:51:73:79:5c:1c:f7:14:5c:da:73:59:a9:7e:de:33:9f:ed:
c8:ef:5c:be:01:b1:23:05:30:26:a9:ed:52:32:b5:ca:ea:64:
e9:4a:f5:b6:cb:dd:bc:d7:54:02:49:8e:76:db:c9:b2:b6:44:
bb:5a:01:b5:69:70:ba:eb:37:b6:a2:31:11:8b:f5:19:f9:e4:
ca:10:7c:55:e3:62:18:64:13:50:38:63:20:05:52:f3:94:4c:
cc:fb:a8:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 7 02:57:18 2024 by rpki-client on console.sobornost.net