Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/EAE1412460CD11EEB151723AC4F9AE02.roa
File: EAE1412460CD11EEB151723AC4F9AE02.roa (raw, json)
Hash identifier: QhiodXyUoMNYwuJ76SJzyfSxZzYQy9JmoAKmV8onzzI=
Subject key identifier: 6F:DC:3D:68:43:6B:9B:68:35:F4:64:26:E6:81:02:A7:83:F8:8C:52
Certificate issuer: /CN=A9125475/serialNumber=4440F6C422E9500C7D46A62D7DEB70D33A88750E
Certificate serial: 34BC
Authority key identifier: 44:40:F6:C4:22:E9:50:0C:7D:46:A6:2D:7D:EB:70:D3:3A:88:75:0E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/EAE1412460CD11EEB151723AC4F9AE02.roa
Signing time: Mon 02 Oct 2023 02:46:42 +0000
ROA not before: Mon 02 Oct 2023 02:46:42 +0000
ROA not after: Wed 31 Jan 2024 00:00:00 +0000
asID: 4651
IP address blocks: 61.19.0.0/24 maxlen: 24
61.19.1.0/24 maxlen: 24
61.19.2.0/24 maxlen: 24
61.19.4.0/24 maxlen: 24
61.19.7.0/24 maxlen: 24
61.19.9.0/24 maxlen: 24
61.19.14.0/24 maxlen: 24
122.155.224.0/24 maxlen: 24
122.155.225.0/24 maxlen: 24
122.155.226.0/24 maxlen: 24
122.155.228.0/24 maxlen: 24
122.155.228.40/30 maxlen: 30
122.155.230.0/24 maxlen: 24
122.155.232.0/24 maxlen: 24
122.155.236.0/24 maxlen: 24
122.155.237.0/24 maxlen: 24
122.155.238.0/24 maxlen: 24
122.155.244.0/22 maxlen: 24
202.47.253.0/24 maxlen: 24
2001:c38:5000::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13500 (0x34bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9125475/serialNumber=4440F6C422E9500C7D46A62D7DEB70D33A88750E
Validity
Not Before: Oct 2 02:46:42 2023 GMT
Not After : Jan 31 00:00:00 2024 GMT
Subject: CN=651a2f12-de7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:e7:d6:f1:60:5c:17:da:58:7e:b2:e5:e8:8b:
ae:cc:96:2a:93:20:5e:11:6b:4f:21:78:14:cf:e8:
1a:b3:86:e6:da:9a:25:60:8a:1c:9d:2e:ec:d8:1d:
da:a7:5a:f8:6a:57:59:be:70:4e:54:5f:0b:cc:b1:
23:df:97:52:be:da:31:88:65:72:47:7b:18:8d:b7:
df:87:ad:cc:72:ca:ef:80:dd:67:bd:3a:14:be:24:
c4:2d:07:b3:5a:5a:c4:79:f1:aa:50:36:12:b4:cc:
73:1c:f3:18:7f:f2:24:65:c9:3c:3c:14:4a:bf:6d:
df:5e:94:a2:f7:92:16:2a:8a:89:28:52:e0:47:36:
65:f2:25:7a:e0:5d:14:97:f0:19:79:70:99:56:02:
dd:57:9d:12:03:db:a5:56:3c:d9:e5:0d:8d:32:a6:
af:50:e0:60:f0:37:5b:00:c1:28:e5:5d:07:18:45:
51:17:1d:05:b0:c3:0f:2f:f6:23:5b:84:da:1d:4e:
2b:76:0c:92:a5:a8:9e:b5:86:ee:59:3f:ee:7c:5d:
e5:dd:19:bb:41:50:29:f7:b3:bc:ea:66:39:10:b3:
76:8f:eb:99:6b:d3:e2:43:fc:90:d0:6f:cb:d9:2d:
9f:84:d1:b8:36:f5:4a:b5:7c:95:13:7b:f8:cd:ed:
86:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:DC:3D:68:43:6B:9B:68:35:F4:64:26:E6:81:02:A7:83:F8:8C:52
X509v3 Authority Key Identifier:
keyid:44:40:F6:C4:22:E9:50:0C:7D:46:A6:2D:7D:EB:70:D3:3A:88:75:0E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/RED2xCLpUAx9RqYtfetw0zqIdQ4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/EAE1412460CD11EEB151723AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
61.19.0.0-61.19.2.255
61.19.4.0/24
61.19.7.0/24
61.19.9.0/24
61.19.14.0/24
122.155.224.0-122.155.226.255
122.155.228.0/24
122.155.230.0/24
122.155.232.0/24
122.155.236.0-122.155.238.255
122.155.244.0/22
202.47.253.0/24
IPv6:
2001:c38:5000::/48
Signature Algorithm: sha256WithRSAEncryption
e5:29:f4:d3:5a:51:a9:9b:50:8d:61:dc:7f:1b:35:f0:5a:d4:
23:23:96:f0:4b:b1:d1:3c:fe:f9:09:65:8f:67:57:83:8f:5e:
e8:29:18:2a:1f:2f:19:ef:61:e6:2a:eb:fd:55:3e:62:50:62:
1b:fa:d2:a0:07:20:f1:e0:f2:a3:cd:59:49:58:42:99:6d:1b:
2e:bd:73:e9:a9:fb:74:3d:71:3f:e1:57:57:20:6c:e5:53:e5:
d5:f6:da:2f:fc:02:b4:97:82:81:02:ca:75:c0:49:5e:3d:13:
27:5d:1f:84:ae:97:1e:49:3a:09:11:46:1d:c4:1b:fa:ae:4f:
a1:79:c1:44:42:31:3a:77:a9:9c:bb:ff:ce:db:0f:ec:b2:21:
80:4e:05:7b:2b:97:10:51:1e:77:14:07:9a:01:6a:ea:0e:98:
b8:33:f8:67:87:35:4a:fb:25:4e:7e:2e:04:9d:50:88:8f:e1:
87:3f:b6:8a:ac:9a:94:50:3a:b5:5f:99:65:9d:cd:c4:1b:20:
f0:9a:94:3c:9e:f7:d8:02:6f:ff:f5:20:07:91:e6:14:bc:84:
3d:67:01:ef:c5:78:cb:9c:60:d4:ea:42:87:41:c9:fb:a5:69:
14:64:9d:7b:8f:07:21:2f:c9:03:0a:68:47:26:8a:54:d5:40:
c6:c0:27:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 3 02:56:43 2023 by rpki-client on console-ams.rpki-client.org