Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/C74745EE78A411EE9B727757C4F9AE02.roa
File: C74745EE78A411EE9B727757C4F9AE02.roa (raw, json)
Hash identifier: 4cHXgoprDpfnPgehxihzF00tiE4MPneR6OeNYXmmQJ4=
Subject key identifier: 8A:A7:DF:E1:5A:E0:6F:8F:DB:3A:5E:0F:89:AF:58:F0:DA:01:7E:C6
Certificate issuer: /CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34
Certificate serial: 346D
Authority key identifier: 4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/C74745EE78A411EE9B727757C4F9AE02.roa
Signing time: Thu 04 Jan 2024 14:50:32 +0000
ROA not before: Thu 04 Jan 2024 14:50:32 +0000
ROA not after: Sun 02 Mar 2025 00:00:00 +0000
asID: 140499
IP address blocks: 121.46.67.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13421 (0x346d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34
Validity
Not Before: Jan 4 14:50:32 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=6596c5b7-9c9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:de:2f:04:83:e6:9d:83:1e:7f:a4:56:4d:02:
e1:a1:95:1d:c9:9f:4c:ed:88:6a:d3:ac:41:63:43:
58:68:99:bb:fd:b6:1c:97:15:87:09:fa:c5:4e:61:
4f:de:39:8a:5d:bb:ba:32:50:2e:cc:da:3b:9b:1f:
ea:f0:cb:2b:30:df:f3:ee:64:e1:48:00:6a:03:ea:
ca:ad:6a:3c:17:59:7b:33:69:86:f8:4b:9f:36:ec:
5a:0c:8d:13:de:1e:f8:b5:52:7b:d1:16:25:0b:c5:
fa:12:86:d7:7a:f0:f3:a6:54:e5:15:b6:f8:f4:d0:
ed:75:35:6b:8d:2f:43:fd:6b:7d:6b:d2:d0:92:9f:
95:d8:fa:f3:29:04:2a:8e:d5:f6:a6:e2:ba:98:ac:
eb:3d:f7:66:65:79:7e:7d:4a:24:e7:8d:af:b4:00:
5a:7e:8b:cf:0f:0a:c2:3a:e5:7b:18:c8:5c:cf:84:
dd:d2:31:fe:68:d0:41:73:7f:fc:e5:93:f7:66:a9:
82:13:63:9d:30:29:8c:16:95:3e:00:c4:71:94:c3:
27:5a:72:56:15:fb:38:39:2f:be:67:e7:25:0d:23:
71:7c:50:60:34:64:72:45:bf:cc:f1:3f:a3:c8:87:
5f:45:4c:1b:be:e8:d3:71:62:27:e0:e5:e4:6e:ae:
c9:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:A7:DF:E1:5A:E0:6F:8F:DB:3A:5E:0F:89:AF:58:F0:DA:01:7E:C6
X509v3 Authority Key Identifier:
keyid:4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/C74745EE78A411EE9B727757C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
121.46.67.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:a8:29:0b:be:bf:b7:f7:7c:a1:36:57:0f:50:a5:f9:8f:7d:
99:5b:aa:36:ac:87:84:74:c6:ec:a9:8c:27:47:d0:4a:5c:e8:
d6:81:39:b8:16:82:f1:92:ff:50:8f:b3:63:ce:19:67:e4:1c:
57:a4:9f:2e:81:76:f8:e1:a2:ba:80:af:db:62:c2:e5:43:a1:
01:3b:eb:95:35:09:8e:ef:9a:67:bf:55:85:f8:a4:54:af:9d:
a9:ec:e1:be:8b:f7:c4:90:6e:f0:24:cf:48:51:3c:c5:d3:b5:
d5:34:c8:cf:0b:33:ce:cf:17:d4:6c:7e:7c:14:27:42:35:3e:
68:33:51:3c:58:e2:da:ee:64:d1:9b:ac:61:df:00:2e:30:e7:
08:7e:fd:c8:4d:17:b8:b5:d9:eb:94:5b:3a:b4:9f:d9:42:47:
e4:64:0f:52:f2:42:8e:b7:ba:c8:5d:29:38:37:87:69:e9:77:
f4:e9:35:1d:28:8c:3c:f3:3d:9c:89:d4:0f:c4:db:0c:13:76:
1d:71:96:bd:c1:18:5a:20:09:f2:27:a8:60:9a:93:9e:59:f8:
83:34:a1:46:90:4a:d3:5a:8c:24:a9:d6:b7:5e:54:84:81:f9:
f3:a6:02:62:68:36:35:38:c6:52:1f:e2:b0:ff:a1:25:49:2a:
82:15:15:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 4 18:47:14 2024 by rpki-client on console.sobornost.net