Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAF02/EACD4876764A11E98C87B582C4F9AE02/096550F8845611E9A0B0DB57C4F9AE02.roa
File: 096550F8845611E9A0B0DB57C4F9AE02.roa (raw, json)
Hash identifier: K32i00h6upf9Hzkuf/FaKvJFdzACMksV6IfzD23pe+4=
Subject key identifier: 7F:D3:E9:C3:D8:DD:00:79:30:F8:FF:11:6D:01:8B:21:6B:EF:CD:4E
Certificate issuer: /CN=A91AAF02/serialNumber=BA8D6FE5D828C05399B3E1AA658FC058861FDCE0
Certificate serial: 0E06
Authority key identifier: BA:8D:6F:E5:D8:28:C0:53:99:B3:E1:AA:65:8F:C0:58:86:1F:DC:E0
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo1v5dgowFOZs-GqZY_AWIYf3OA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91AAF02/EACD4876764A11E98C87B582C4F9AE02/096550F8845611E9A0B0DB57C4F9AE02.roa
Signing time: Mon 20 Nov 2023 18:36:13 +0000
ROA not before: Mon 20 Nov 2023 18:36:13 +0000
ROA not after: Fri 31 Jan 2025 00:00:00 +0000
asID: 4767
IP address blocks: 2403:e240::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 05 Feb 2024 06:36:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3590 (0xe06)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91AAF02/serialNumber=BA8D6FE5D828C05399B3E1AA658FC058861FDCE0
Validity
Not Before: Nov 20 18:36:13 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=655ba71d-0b61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:6f:13:ee:b4:7d:94:0e:a0:4c:ff:cf:f1:da:
b6:14:02:67:ee:d6:b9:93:26:0e:a1:bd:46:47:54:
d7:bd:95:77:7a:35:7a:d7:79:f5:2c:df:d0:ae:5c:
16:f7:fc:7b:8c:67:e9:22:7f:78:05:15:51:eb:4f:
54:66:55:d7:c5:79:b7:60:db:a4:74:51:91:8e:f6:
c2:fc:b0:20:64:bd:93:1a:a7:7f:dd:f9:6f:ea:65:
a5:03:4a:ed:d9:59:df:88:33:14:40:a1:8e:23:dc:
d8:d9:ef:3e:a0:6f:66:31:66:aa:ae:6f:f3:8a:5d:
09:cf:9e:e6:68:94:e6:9d:2f:ad:6a:6f:c6:d3:56:
78:07:1e:4a:df:ef:a5:2a:d7:11:e9:ea:cc:84:40:
ce:2d:d2:78:d1:16:52:03:a4:dd:c4:ba:74:7b:a9:
48:bb:9b:81:74:0a:0a:54:f6:b9:f6:96:5b:00:5c:
d4:e0:08:40:79:19:54:bf:df:6c:47:5e:8a:2f:d4:
7e:0e:92:b1:20:c4:65:55:3e:6b:50:fb:87:c3:64:
26:5b:29:d3:93:1b:f1:1b:29:ef:93:bf:a7:91:3b:
48:c6:53:da:f2:ab:3f:ea:ba:0f:a9:36:aa:ed:b2:
ec:8f:90:c1:12:24:56:a7:06:21:fe:1d:d3:62:7c:
85:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:D3:E9:C3:D8:DD:00:79:30:F8:FF:11:6D:01:8B:21:6B:EF:CD:4E
X509v3 Authority Key Identifier:
keyid:BA:8D:6F:E5:D8:28:C0:53:99:B3:E1:AA:65:8F:C0:58:86:1F:DC:E0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91AAF02/EACD4876764A11E98C87B582C4F9AE02/uo1v5dgowFOZs-GqZY_AWIYf3OA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo1v5dgowFOZs-GqZY_AWIYf3OA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAF02/EACD4876764A11E98C87B582C4F9AE02/096550F8845611E9A0B0DB57C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:e240::/32
Signature Algorithm: sha256WithRSAEncryption
11:47:b6:f2:44:80:4a:a1:90:0c:d1:8e:89:69:23:73:44:99:
69:5e:83:ca:93:54:1c:ff:b0:73:fd:ae:a2:95:40:81:a7:ff:
8b:44:0a:bf:97:49:df:77:b0:0e:ea:16:fe:ce:85:e6:bf:0e:
10:84:27:d2:82:da:ba:d5:b7:ea:43:60:3c:bb:fe:50:35:02:
42:98:1f:54:88:ef:f1:9e:37:d6:a6:98:7d:95:c0:5d:63:17:
76:78:9d:81:1d:88:f3:3a:04:81:0b:e1:ec:4f:d0:c0:7d:b1:
ab:95:40:f5:70:59:08:b8:f2:6c:09:00:ae:99:4e:44:f2:7a:
d8:d7:27:fd:ef:79:0f:d8:eb:94:04:9c:00:8a:c5:2b:c1:96:
18:8b:ca:e3:c9:5f:bf:3b:61:38:16:11:95:80:18:9c:62:53:
e8:ff:f7:c3:39:6b:e0:94:9c:ce:3b:7c:80:5a:9a:31:db:70:
55:f5:b6:ce:b9:bc:e4:6e:19:01:ae:b8:da:89:da:03:3f:67:
a1:28:00:52:a1:d1:66:d6:a4:31:f8:39:15:81:42:28:eb:15:
ab:23:ac:2e:34:34:e3:7c:3f:2d:cf:ac:2b:a8:80:60:76:73:
3b:03:17:cd:81:7d:bd:99:11:15:5f:c1:26:d8:c5:41:57:0e:
a5:74:ad:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 27 00:58:03 2024 by rpki-client on console.sobornost.net