Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/C7F4FA368DD311EBA4C2B766C4F9AE02.roa
File: C7F4FA368DD311EBA4C2B766C4F9AE02.roa (raw, json)
Hash identifier: 0HWv+ISs+Nzco8ZvTT7GW81qmVcqrvUf+xZc35Zalxo=
Subject key identifier: D2:DE:6F:03:AF:56:D0:3E:55:5E:D9:6E:99:D3:5D:CD:5A:08:F9:6A
Certificate issuer: /CN=A911C53D/serialNumber=A5C763E8A95F6B9AB24113601DA8153A159126EE
Certificate serial: 05C4
Authority key identifier: A5:C7:63:E8:A9:5F:6B:9A:B2:41:13:60:1D:A8:15:3A:15:91:26:EE
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pcdj6Klfa5qyQRNgHagVOhWRJu4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/C7F4FA368DD311EBA4C2B766C4F9AE02.roa
Signing time: Tue 06 Aug 2024 23:51:59 +0000
ROA not before: Tue 06 Aug 2024 23:51:59 +0000
ROA not after: Tue 30 Sep 2025 00:00:00 +0000
asID: 4826
IP address blocks: 203.24.48.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 18 Nov 2024 21:36:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1476 (0x5c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911C53D/serialNumber=A5C763E8A95F6B9AB24113601DA8153A159126EE
Validity
Not Before: Aug 6 23:51:59 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=66b2b71f-12ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:47:9e:30:e0:66:d1:49:c5:54:a4:7e:81:80:
42:20:85:87:46:eb:c7:32:76:94:6a:44:c1:1f:54:
42:be:27:f8:16:ec:48:3f:7b:f6:c9:05:af:1d:49:
c1:8a:d0:16:92:ee:49:5a:50:67:ad:33:71:e0:c8:
58:6e:f3:9b:94:1d:d3:fb:6a:c2:3f:29:4d:94:6f:
6c:dc:7a:f8:30:65:d1:ca:ea:3c:9c:c9:35:04:b1:
b1:35:1b:c0:fe:5f:53:48:15:b8:15:37:2f:74:fd:
94:a6:70:94:c4:9b:5c:a4:c3:bd:74:02:ea:63:b2:
0a:6e:57:ce:8d:09:b2:b1:fe:23:d0:06:d6:29:47:
c8:30:f8:bf:ee:c2:e7:60:5d:f6:b7:b0:16:a8:95:
69:25:ca:87:9e:81:2a:5a:ea:df:15:96:db:62:8e:
4f:9e:cf:b5:fb:50:38:72:9f:6e:58:ec:9c:a9:df:
cf:0b:b9:12:eb:25:28:26:f3:58:f0:64:74:c6:aa:
d5:48:af:59:43:82:33:8f:42:21:87:20:6a:71:84:
07:01:06:5a:cc:e6:ef:5b:8c:63:7a:c2:d8:63:73:
af:f5:a2:7c:57:39:09:b9:0d:15:14:d0:cc:41:7a:
2c:59:2f:9d:e9:7b:44:a9:00:82:cf:91:1f:e2:23:
37:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:DE:6F:03:AF:56:D0:3E:55:5E:D9:6E:99:D3:5D:CD:5A:08:F9:6A
X509v3 Authority Key Identifier:
keyid:A5:C7:63:E8:A9:5F:6B:9A:B2:41:13:60:1D:A8:15:3A:15:91:26:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/pcdj6Klfa5qyQRNgHagVOhWRJu4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pcdj6Klfa5qyQRNgHagVOhWRJu4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/C7F4FA368DD311EBA4C2B766C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.24.48.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:04:aa:9b:4a:93:b6:1e:1c:2d:b7:b8:82:fc:d6:ce:c9:3c:
8d:cd:58:b3:4e:b3:80:d9:4b:03:30:29:ba:3a:30:4e:fe:d9:
e6:d4:8d:c5:bf:a7:9a:35:78:6f:60:7f:e4:07:cd:70:b5:5f:
48:dd:84:00:72:ac:b3:0d:02:13:87:ff:8e:a3:57:c1:62:8c:
8c:82:1a:1d:7e:e0:c1:53:9b:50:76:24:55:ac:fb:1a:dc:1b:
21:27:1e:0e:6f:e4:b0:e1:0b:09:57:4d:62:9a:9b:48:a2:3a:
8d:de:43:86:79:4f:be:1e:a5:cb:1d:e0:45:4b:0e:cb:d6:b0:
ea:39:bf:73:35:8c:03:7a:0d:4e:48:02:d1:eb:28:f1:ca:7c:
26:7b:3d:ee:1b:7d:ea:d3:49:ba:84:11:37:16:be:0e:d9:6e:
50:aa:f5:c2:b2:a4:b2:54:53:4b:19:11:4d:c0:43:69:f2:5a:
82:2e:83:38:8c:f5:31:bb:9f:1d:87:c0:93:bf:de:4f:ed:27:
b1:19:68:8e:86:cb:e6:a4:b9:da:f5:79:51:da:ea:eb:39:b3:
e5:6d:e5:9e:11:d7:93:94:fd:92:a9:ed:0f:4d:1e:69:e8:bc:
32:d3:2b:af:39:3a:f0:c4:ff:7e:df:3f:c0:ab:47:5d:05:ce:
22:84:66:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 19 00:48:05 2024 by rpki-client on console-fra.rpki-client.org