Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A912582A/78D7496EDDE811EEA3B0E713C4F9AE02/690FA4F8DDE911EE941C8616C4F9AE02.roa
File: 690FA4F8DDE911EE941C8616C4F9AE02.roa (raw, json)
Hash identifier: TzTskh1EXnnXRoHpIoeKDbk1NGpUY9aCQqaJZRMb3Wc=
Subject key identifier: 79:C5:43:FE:A8:AB:5B:F8:90:D7:C7:82:6C:27:47:37:15:DE:6D:EC
Certificate issuer: /CN=A912582A/serialNumber=7A0FD032BC281210B3C9522B47158D56CCDEA60A
Certificate serial: 02
Authority key identifier: 7A:0F:D0:32:BC:28:12:10:B3:C9:52:2B:47:15:8D:56:CC:DE:A6:0A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eg_QMrwoEhCzyVIrRxWNVszepgo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912582A/78D7496EDDE811EEA3B0E713C4F9AE02/690FA4F8DDE911EE941C8616C4F9AE02.roa
Signing time: Sat 09 Mar 2024 07:48:25 +0000
ROA not before: Sat 09 Mar 2024 07:48:25 +0000
ROA not after: Wed 28 May 2025 00:00:00 +0000
asID: 152632
IP address blocks: 202.36.122.0/23 maxlen: 23
202.36.122.0/24 maxlen: 24
202.36.123.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 14 Jul 2024 14:59:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912582A/serialNumber=7A0FD032BC281210B3C9522B47158D56CCDEA60A
Validity
Not Before: Mar 9 07:48:25 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=65ec1449-0c21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:c2:d6:59:00:71:69:65:12:05:69:16:62:8b:
ae:45:bd:5e:e5:36:23:d8:b5:89:d6:42:e0:de:47:
c1:6e:33:71:51:e1:70:6c:1b:f7:2f:3f:04:56:5d:
78:19:bb:79:76:6d:9d:42:8a:ef:c1:86:17:f4:01:
df:21:6c:22:b0:50:b2:c8:19:c6:66:39:06:33:ca:
28:65:36:5d:c3:fd:8b:c8:5d:37:2e:32:f6:9d:79:
9f:54:76:24:e7:83:0e:ff:bd:a1:51:eb:b8:6f:af:
b3:e6:67:dd:9d:6c:60:5c:26:4e:13:67:64:a8:ce:
e9:4c:c2:a2:d6:76:e9:d4:11:0e:e1:d6:39:d3:9d:
d9:93:c1:ee:76:67:a9:ad:df:ea:11:3f:88:21:75:
ad:1d:66:7d:6f:14:b0:fd:3b:4f:0e:5b:fc:2b:14:
a3:50:e5:1c:a9:6b:a0:67:34:6a:8e:b7:e8:62:73:
b8:60:ea:6b:f8:e4:c4:82:59:84:48:84:d6:e9:53:
26:8c:8c:2f:a6:f5:1a:11:37:98:e7:c9:12:cf:26:
fe:15:00:fe:5e:5e:25:af:f7:55:03:4e:7d:9b:cd:
6a:63:3d:18:61:b5:b0:f0:47:ba:2a:af:b1:54:d9:
42:cf:e6:e6:0c:1e:a2:26:c0:e5:1e:52:09:db:03:
16:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:C5:43:FE:A8:AB:5B:F8:90:D7:C7:82:6C:27:47:37:15:DE:6D:EC
X509v3 Authority Key Identifier:
keyid:7A:0F:D0:32:BC:28:12:10:B3:C9:52:2B:47:15:8D:56:CC:DE:A6:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912582A/78D7496EDDE811EEA3B0E713C4F9AE02/eg_QMrwoEhCzyVIrRxWNVszepgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eg_QMrwoEhCzyVIrRxWNVszepgo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912582A/78D7496EDDE811EEA3B0E713C4F9AE02/690FA4F8DDE911EE941C8616C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.36.122.0/23
Signature Algorithm: sha256WithRSAEncryption
7e:0a:1e:67:0a:ee:b0:3b:90:14:fc:a8:d8:39:31:45:8a:12:
83:e6:16:5e:2a:3c:65:de:b5:34:12:57:16:19:4b:0b:cf:60:
e3:94:32:cc:86:ff:ee:98:3d:13:77:d2:47:c1:62:61:7a:a9:
d7:53:a8:f7:ca:8f:e0:1a:4b:61:f2:87:b6:a2:cd:dd:82:65:
98:94:d8:f5:9f:6b:05:0d:ca:ce:2c:8d:b0:a2:69:1b:29:ed:
6c:58:35:6a:03:e0:56:46:33:1b:eb:a5:f4:11:03:0e:47:3d:
cb:36:5f:e1:4f:29:7c:96:b7:f4:40:83:62:35:aa:bd:14:82:
84:b6:30:1e:f9:ea:47:b6:5b:b4:94:4b:1d:17:ec:8f:d4:6b:
46:f1:ee:de:cc:b6:f2:75:3a:1f:f3:d4:71:a5:e3:04:8c:5d:
21:b2:8f:b7:65:ab:a1:f8:5f:80:75:ae:56:77:58:03:aa:6b:
e2:a9:93:72:38:4d:6f:ce:46:6b:d5:15:e1:bf:71:f3:4b:a7:
6d:09:cb:8a:88:a7:55:ce:d6:68:8c:81:ca:f0:b4:b2:2a:ea:
66:58:7b:c2:db:b3:ef:1d:f2:ca:26:30:74:b9:49:c0:8b:c6:
51:4e:a6:66:80:1c:5d:5c:64:89:fb:00:48:ab:a7:7c:b8:1c:
c4:55:2e:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 14 18:05:55 2024 by rpki-client on console-ams.rpki-client.org