Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/9E94108CCAA411EC9868DE0EC4F9AE02.roa
File: 9E94108CCAA411EC9868DE0EC4F9AE02.roa (raw, json)
Hash identifier: P+inelr1dM0o1q/Q5EVb00bnXt/8XL/++f1nfphBoqs=
Subject key identifier: 2D:F3:56:D4:AB:2E:47:BD:5B:21:6D:B2:6F:38:E5:80:BD:34:0E:6E
Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5
Certificate serial: 0C58
Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/9E94108CCAA411EC9868DE0EC4F9AE02.roa
Signing time: Sun 26 May 2024 21:31:34 +0000
ROA not before: Sun 26 May 2024 21:31:34 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 138517
IP address blocks: 2406:840:9840::/44 maxlen: 48
Validation: Failed, certificate revoked on Thu 06 Jun 2024 14:16:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3160 (0xc58)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5
Validity
Not Before: May 26 21:31:34 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=6653aa36-eff8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:91:0a:a7:38:32:d4:b8:4c:1e:ea:5a:87:71:
8f:1c:74:b4:23:06:b8:49:63:76:7b:7a:1a:8a:a1:
74:6d:10:21:bc:c4:6d:1a:66:31:ac:9e:e8:fa:6c:
22:1c:88:22:a4:85:0e:78:91:d4:e1:3d:43:a7:2c:
25:ec:4f:aa:cf:25:10:ab:6f:db:39:fe:47:e0:9a:
f0:b0:88:ab:2e:35:86:51:4d:f5:94:b5:85:18:ed:
a7:f7:c7:b1:5a:c4:e9:06:40:6c:a8:ab:22:b5:78:
53:5c:bc:2c:27:e9:f1:53:14:0e:4f:17:1f:84:c7:
05:13:28:01:cf:fd:2e:d0:ea:7f:14:68:cb:70:88:
75:62:66:39:0a:4d:88:cd:df:a1:45:db:bf:ce:e5:
d3:42:e1:e9:4a:30:14:21:7b:14:c0:f4:14:8a:1f:
d6:04:d9:c8:98:b0:e8:12:1f:bb:82:50:b5:4e:38:
a0:6e:38:05:c2:41:22:31:d4:bb:af:af:49:4a:31:
0e:de:93:21:e7:0d:ee:6e:56:bb:2f:c5:65:12:b0:
f9:96:83:7d:9b:dd:e0:a9:57:da:c1:62:49:44:a0:
0b:57:6f:86:4f:c7:6e:c2:07:4f:34:ac:c9:d5:44:
e7:27:19:69:dc:51:f3:f1:43:dd:49:68:36:d5:23:
92:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:F3:56:D4:AB:2E:47:BD:5B:21:6D:B2:6F:38:E5:80:BD:34:0E:6E
X509v3 Authority Key Identifier:
keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/9E94108CCAA411EC9868DE0EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:840:9840::/44
Signature Algorithm: sha256WithRSAEncryption
a7:a4:21:64:9f:89:69:a4:12:1e:9b:6b:5e:e3:bf:a5:61:6e:
97:63:ed:ff:ca:ca:23:b1:a3:b9:9e:1b:f3:86:e2:ce:f9:83:
bb:6b:69:3e:f2:63:a0:ed:29:5b:d0:c7:84:b4:33:43:98:b5:
09:15:f4:cb:98:92:de:97:b7:69:f6:7a:0e:fe:d9:95:1f:6b:
2b:c6:53:4a:44:73:09:8e:6f:7d:a8:80:13:3d:8f:74:b8:16:
ea:7b:15:4a:53:d0:82:59:2c:57:3b:12:41:dd:46:97:7f:fc:
15:ad:98:ae:ed:f9:ba:4c:9f:51:c5:8d:0e:40:8e:9b:fa:c3:
56:e3:5a:34:06:80:f5:bf:0c:d3:f3:e2:38:63:5b:b9:71:be:
60:a5:cd:77:5b:72:ad:88:cd:34:42:f1:a3:d0:55:58:41:4c:
4b:43:45:3f:09:33:3a:93:ee:87:08:bb:bc:86:0c:16:af:c2:
d9:6b:d6:c3:3d:00:14:16:54:ea:d4:7e:0a:6f:9e:f7:49:45:
14:c7:8c:95:ed:ec:d3:f9:83:8d:14:16:3e:a8:20:5f:e6:51:
31:a2:12:f9:33:6a:a6:ed:94:09:11:38:b3:da:65:3b:4d:8b:
c5:72:59:c4:73:1a:5e:f7:7f:77:f8:3f:1f:1b:25:90:a3:89:
6d:51:0f:8f
-----BEGIN CERTIFICATE-----
MIIFdDCCBFygAwIBAgICDFgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE
RTExQ0ExQTUwHhcNMjQwNTI2MjEzMTM0WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NjUzYWEzNi1lZmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAxJEKpzgy1LhMHupah3GPHHS0Iwa4SWN2e3oaiqF0bRAhvMRtGmYxrJ7o+mwi
HIgipIUOeJHU4T1Dpywl7E+qzyUQq2/bOf5H4JrwsIirLjWGUU31lLWFGO2n98ex
WsTpBkBsqKsitXhTXLwsJ+nxUxQOTxcfhMcFEygBz/0u0Op/FGjLcIh1YmY5Ck2I
zd+hRdu/zuXTQuHpSjAUIXsUwPQUih/WBNnImLDoEh+7glC1TjigbjgFwkEiMdS7
r69JSjEO3pMh5w3ubla7L8VlErD5loN9m93gqVfawWJJRKALV2+GT8duwgdPNKzJ
1UTnJxlp3FHz8UPdSWg21SOS3QIDAQABo4ICmDCCApQwHQYDVR0OBBYEFC3zVtSr
Lke9WyFtsm845YC9NA5uMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2
MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv
YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvOUU5NDEwOEND
QUE0MTFFQzk4NjhERTBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E
EzARMA8EAgACMAkDBwQkBghAmEAwDQYJKoZIhvcNAQELBQADggEBAKekIWSfiWmk
Eh6ba17jv6Vhbpdj7f/KyiOxo7meG/OG4s75g7traT7yY6DtKVvQx4S0M0OYtQkV
9MuYkt6Xt2n2eg7+2ZUfayvGU0pEcwmOb32ogBM9j3S4Fup7FUpT0IJZLFc7EkHd
Rpd//BWtmK7t+bpMn1HFjQ5Ajpv6w1bjWjQGgPW/DNPz4jhjW7lxvmClzXdbcq2I
zTRC8aPQVVhBTEtDRT8JMzqT7ocIu7yGDBavwtlr1sM9ABQWVOrUfgpvnvdJRRTH
jJXt7NP5g40UFj6oIF/mUTGiEvkzaqbtlAkROLPaZTtNi8VyWcRzGl73f3f4Px8b
JZCjiW1RD48=
-----END CERTIFICATE-----
Generated at Mon Jun 10 14:41:26 2024 by rpki-client on console.sobornost.net