Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9142DA4/8AD49F7EBAE811ECA82F141CC4F9AE02/4DD12906171811EFB5D3DB0AC4F9AE02.roa
File: 4DD12906171811EFB5D3DB0AC4F9AE02.roa (raw, json)
Hash identifier: 2ZO9sRl9p+uUZTeEi1iwLYZycF/aYqN4DSzTA2HWxRc=
Subject key identifier: B4:E4:E5:15:D5:4A:AB:4E:A3:FE:2E:F6:18:18:6C:E1:C1:4D:57:A2
Certificate issuer: /CN=A9142DA4/serialNumber=BB4C9665E75F9E19DAD46F8B609D3444FB68ED47
Certificate serial: 02A2
Authority key identifier: BB:4C:96:65:E7:5F:9E:19:DA:D4:6F:8B:60:9D:34:44:FB:68:ED:47
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u0yWZedfnhna1G-LYJ00RPto7Uc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9142DA4/8AD49F7EBAE811ECA82F141CC4F9AE02/4DD12906171811EFB5D3DB0AC4F9AE02.roa
Signing time: Tue 21 May 2024 04:05:10 +0000
ROA not before: Tue 21 May 2024 04:05:10 +0000
ROA not after: Thu 31 Oct 2024 00:00:00 +0000
asID: 55872
IP address blocks: 115.187.96.0/19 maxlen: 19
115.187.96.0/22 maxlen: 22
115.187.100.0/22 maxlen: 22
115.187.104.0/21 maxlen: 21
115.187.112.0/20 maxlen: 20
118.82.128.0/17 maxlen: 17
118.82.128.0/18 maxlen: 18
118.82.136.0/21 maxlen: 21
118.82.144.0/20 maxlen: 20
118.82.160.0/20 maxlen: 20
118.82.176.0/21 maxlen: 21
118.82.184.0/22 maxlen: 22
118.82.188.0/23 maxlen: 23
118.82.192.0/18 maxlen: 18
118.82.192.0/21 maxlen: 21
118.82.200.0/21 maxlen: 21
118.82.208.0/21 maxlen: 21
118.82.216.0/21 maxlen: 21
118.82.232.0/21 maxlen: 21
118.82.240.0/21 maxlen: 21
118.82.248.0/21 maxlen: 21
119.235.32.0/21 maxlen: 21
202.65.162.0/23 maxlen: 23
202.65.164.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 21 May 2024 22:24:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 674 (0x2a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9142DA4/serialNumber=BB4C9665E75F9E19DAD46F8B609D3444FB68ED47
Validity
Not Before: May 21 04:05:10 2024 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=664c1d76-0e13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ae:14:9d:29:aa:f2:06:7f:a8:41:cc:43:5a:
29:5d:e0:6f:e8:ad:64:18:11:9d:d9:75:e4:e6:fa:
48:4a:3c:4e:6e:eb:58:c9:5c:08:38:2b:40:00:f1:
fb:90:dd:66:51:a1:1a:8c:a9:d7:ff:53:1a:fc:9e:
04:14:fa:26:68:81:7a:3b:2f:13:bf:1f:68:3c:27:
4f:04:0b:2a:33:9d:85:d8:a4:08:86:79:45:4b:d3:
36:13:e0:2f:a6:e4:9b:14:9e:4c:b3:12:03:41:39:
ed:f5:ed:2f:2f:d8:1d:ec:d0:b2:54:a2:95:ad:89:
5b:71:e9:02:32:6b:ca:61:61:94:31:f6:06:bf:67:
81:7c:ca:fe:a9:fe:be:81:67:99:6c:fa:c2:df:49:
ae:46:40:81:69:37:ac:71:df:28:d4:f6:20:83:41:
00:b9:73:c2:bb:11:68:91:8c:37:16:68:e6:09:1d:
a6:8c:b0:4a:a6:34:4d:5a:82:c0:4a:47:e2:fc:c9:
69:0a:44:3c:96:64:00:e6:39:14:da:20:54:5f:6a:
a1:e9:94:c5:9a:06:03:d3:4d:88:3b:2d:cb:50:d3:
53:8c:bc:00:c0:bd:98:fc:12:05:12:6b:34:2f:9b:
34:9a:10:2f:0d:4d:ab:d3:53:58:5b:45:3d:dc:09:
03:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:E4:E5:15:D5:4A:AB:4E:A3:FE:2E:F6:18:18:6C:E1:C1:4D:57:A2
X509v3 Authority Key Identifier:
keyid:BB:4C:96:65:E7:5F:9E:19:DA:D4:6F:8B:60:9D:34:44:FB:68:ED:47
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9142DA4/8AD49F7EBAE811ECA82F141CC4F9AE02/u0yWZedfnhna1G-LYJ00RPto7Uc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u0yWZedfnhna1G-LYJ00RPto7Uc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142DA4/8AD49F7EBAE811ECA82F141CC4F9AE02/4DD12906171811EFB5D3DB0AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
115.187.96.0/19
118.82.128.0/17
119.235.32.0/21
202.65.162.0-202.65.167.255
Signature Algorithm: sha256WithRSAEncryption
7d:e8:59:9c:84:3b:47:0e:7f:37:df:d5:c9:42:10:e4:23:33:
b4:42:f5:12:e0:41:5a:1a:24:c3:a2:a9:cd:70:d4:f4:76:4e:
83:2f:15:82:20:7a:62:94:a2:2a:73:6a:60:26:eb:18:14:ef:
58:32:97:16:c3:aa:91:ae:81:c0:10:63:5b:45:10:37:f0:c3:
51:65:0a:5b:ed:72:54:b1:06:ae:e5:e8:b0:41:4b:1b:aa:04:
af:14:fb:38:77:74:46:11:ca:e2:92:59:dc:4e:be:9c:42:43:
4f:94:1e:f4:c1:88:df:4f:f7:e0:16:8b:6a:51:c2:6a:31:3c:
50:9b:63:be:df:7f:98:85:78:ee:fc:c5:fb:25:d3:4e:7e:7b:
cc:ee:7a:3d:fe:89:15:ab:24:1e:76:d3:de:d2:9e:9d:c2:c0:
4b:70:39:2d:a6:5e:03:3c:56:5c:bf:cc:9c:11:f7:85:0d:d0:
08:c4:4b:4e:1c:4f:0a:93:b6:8b:3d:d5:a9:ea:66:c4:3e:89:
a8:a2:57:5e:f8:ea:5a:61:74:bc:35:95:e4:80:c8:e6:b6:86:
d5:7a:49:94:db:32:6b:a4:22:af:d4:d3:d3:50:d5:e2:1e:52:
6c:9b:77:e9:a2:b8:18:e2:b1:03:19:a0:77:ff:14:70:30:6a:
bd:68:e2:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:04 2024 by rpki-client on console-fra.rpki-client.org