Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/AD2A7494654B11EFA2D89154C4F9AE02.roa
File: AD2A7494654B11EFA2D89154C4F9AE02.roa (raw, json)
Hash identifier: pSxmwgBajV017joNNlJqY0Hh/JqhYjmuSmeADALDSDA=
Subject key identifier: D5:7D:24:32:9F:D2:44:C6:F2:3E:9D:BD:69:7C:8E:E1:75:CB:A8:E8
Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Certificate serial: 4510
Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/AD2A7494654B11EFA2D89154C4F9AE02.roa
Signing time: Wed 28 Aug 2024 14:41:57 +0000
ROA not before: Wed 28 Aug 2024 14:41:57 +0000
ROA not after: Thu 31 Oct 2024 00:00:00 +0000
asID: 152977
IP address blocks: 2001:df4:2dc0::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 07 Sep 2024 02:11:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17680 (0x4510)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Validity
Not Before: Aug 28 14:41:57 2024 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=66cf3735-41fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:dc:29:e3:df:f6:7e:2a:7a:d9:14:2d:65:9e:
7b:68:d5:5f:88:d2:d9:00:8e:6c:4a:10:33:59:e4:
6b:a7:8f:1f:1c:84:55:23:e8:c6:8b:dd:5d:2f:7c:
ed:5a:43:56:a4:fe:76:5b:c0:b8:7d:8d:d5:e9:3f:
20:ab:8f:ca:2b:ca:8b:e6:5b:ee:e3:e2:32:8a:cb:
22:45:c5:8b:08:c0:ad:ee:d5:63:e6:8d:2d:32:5e:
83:01:be:e6:71:1a:12:f3:19:95:31:28:34:12:13:
fd:90:0f:08:5c:04:59:78:fb:9f:e3:69:37:52:b8:
77:08:c1:49:96:56:f0:17:31:0c:30:be:c0:66:56:
cc:b9:00:00:32:00:2e:f7:0b:bd:e0:57:82:53:f4:
4b:f0:b1:4c:ec:e7:30:f0:24:ea:34:50:32:0b:84:
92:2d:5e:a2:e4:b9:dc:cc:08:aa:3d:fa:ca:4d:7d:
96:68:44:b4:da:29:77:78:30:35:c8:18:cc:bc:14:
b2:3e:e2:f1:b8:61:aa:06:dd:79:a5:2e:34:14:03:
c9:a8:17:3c:ca:0f:b1:a1:e3:e9:58:7e:37:16:39:
3c:0c:4d:88:5e:7a:12:60:01:b9:fb:53:28:1c:7f:
b6:37:5e:e1:c3:8c:71:4d:04:9b:09:67:dc:25:1b:
d5:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:7D:24:32:9F:D2:44:C6:F2:3E:9D:BD:69:7C:8E:E1:75:CB:A8:E8
X509v3 Authority Key Identifier:
keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/AD2A7494654B11EFA2D89154C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:df4:2dc0::/48
Signature Algorithm: sha256WithRSAEncryption
1e:62:5b:d5:13:7b:2b:86:d1:f8:66:4b:71:f5:de:58:b0:c3:
f0:5a:ce:62:0c:6b:81:a1:6e:17:f7:94:53:ad:ba:33:d5:62:
49:0c:87:64:f1:69:ad:93:d2:6e:a1:ff:f0:3e:d0:e0:cb:09:
2d:ae:0f:a9:27:e0:a3:fa:f9:81:77:40:93:db:59:88:d8:1d:
03:17:57:d9:20:de:c1:15:d6:63:7f:ad:a2:24:1e:42:08:db:
21:4b:d0:43:22:b4:da:f8:0b:53:13:d6:8b:da:a5:3a:cc:5d:
a6:51:1c:ce:41:0f:f3:7e:6f:bd:89:00:4c:b5:34:89:54:e4:
fd:6b:4e:95:24:76:a8:d4:04:9e:64:ac:2f:b1:d8:76:73:d2:
3b:6c:02:f9:a1:f9:aa:d1:db:35:31:4a:06:2c:b4:db:9f:d5:
72:fa:b4:19:56:b5:4b:81:30:4b:b1:07:8d:a1:6a:8b:d0:26:
9b:f3:2d:33:1a:f6:7b:39:7f:aa:52:e7:b8:5d:3f:ad:bf:48:
be:46:f3:17:83:51:df:50:b2:25:61:38:6d:9d:0d:b6:cd:14:
47:5a:17:31:81:59:2f:87:67:12:c2:2c:a5:80:e3:16:6b:79:
76:aa:66:38:10:d8:0d:f8:91:1b:d2:6b:20:f7:44:11:0e:65:
eb:05:71:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 11 08:32:28 2024 by rpki-client on console.sobornost.net