Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9150CF2/D00DB76EF4EE11E9AEFEA819C4F9AE02/E3020E42B50D11ECA297F383C4F9AE02.roa
File: E3020E42B50D11ECA297F383C4F9AE02.roa (raw, json)
Hash identifier: 0bBK/TKYjdv6q+AMQXuBryDSHNT7+9qj8w8L8Q5jGjk=
Subject key identifier: B8:41:B4:44:42:76:A6:61:37:CD:EB:3E:E0:1F:F4:3E:81:19:99:03
Certificate issuer: /CN=A9150CF2/serialNumber=B03E7BFB2B4BDAFA2EAA50AB7990F74FFCBCADD7
Certificate serial: 0B35
Authority key identifier: B0:3E:7B:FB:2B:4B:DA:FA:2E:AA:50:AB:79:90:F7:4F:FC:BC:AD:D7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sD57-ytL2vouqlCreZD3T_y8rdc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9150CF2/D00DB76EF4EE11E9AEFEA819C4F9AE02/E3020E42B50D11ECA297F383C4F9AE02.roa
Signing time: Thu 18 May 2023 20:00:19 +0000
ROA not before: Thu 18 May 2023 20:00:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59239
IP address blocks: 160.238.0.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 04 Sep 2023 05:23:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2869 (0xb35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9150CF2/serialNumber=B03E7BFB2B4BDAFA2EAA50AB7990F74FFCBCADD7
Validity
Not Before: May 18 20:00:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=646683d3-8f98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:ea:6a:20:59:1b:71:9f:3a:33:99:69:26:00:
d9:52:a6:96:be:cb:a2:ed:7f:05:6a:9c:c9:21:68:
d1:ed:77:d9:58:7f:dc:33:af:89:07:4c:80:03:c1:
9f:22:de:a2:ac:65:ca:a3:62:48:68:7d:7a:23:f2:
c2:dc:51:72:6c:bb:50:81:88:d5:d0:40:ec:47:1d:
e6:98:8d:3d:7e:f4:a6:43:dc:10:ce:69:dd:c2:8a:
d0:29:a9:73:68:f3:a6:24:22:86:2f:67:bc:df:a1:
b7:cf:06:a3:f3:33:ac:6f:59:b0:4c:6b:a3:0a:2e:
9a:d4:a6:1b:ff:a5:be:26:35:98:ac:f4:ae:6f:2c:
e8:de:2b:7f:6d:e8:23:71:f9:6a:0a:ee:f0:f9:8f:
ec:d7:e9:d4:68:de:15:22:8a:8e:7c:25:3d:33:46:
37:ec:0e:e4:24:28:46:ee:51:ca:05:45:28:0e:42:
28:98:e7:48:b4:6f:41:2a:67:9a:57:08:ac:0c:24:
ef:6b:4e:cb:00:16:96:3a:11:2c:69:7a:dd:89:a5:
be:4b:37:3f:85:5c:7b:a3:7b:e2:68:bc:bc:d1:b8:
7b:8f:2b:ec:b0:60:e5:5d:1c:dc:8f:2b:0c:76:7a:
c9:8d:62:ae:8f:50:7c:78:f9:fa:c7:40:56:0f:4d:
1d:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:41:B4:44:42:76:A6:61:37:CD:EB:3E:E0:1F:F4:3E:81:19:99:03
X509v3 Authority Key Identifier:
keyid:B0:3E:7B:FB:2B:4B:DA:FA:2E:AA:50:AB:79:90:F7:4F:FC:BC:AD:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9150CF2/D00DB76EF4EE11E9AEFEA819C4F9AE02/sD57-ytL2vouqlCreZD3T_y8rdc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sD57-ytL2vouqlCreZD3T_y8rdc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150CF2/D00DB76EF4EE11E9AEFEA819C4F9AE02/E3020E42B50D11ECA297F383C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.238.0.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:a7:c4:e6:0e:49:dd:ba:f6:7e:28:ac:6f:4c:59:10:e7:f3:
39:8b:52:b5:d1:ed:1f:27:a3:8c:2f:07:bc:fd:8a:fe:0f:4c:
88:6c:8d:3d:9c:40:47:d9:ec:bc:df:bf:91:c7:4a:3a:fe:e2:
71:39:9e:32:60:7c:d4:08:45:09:9d:54:23:5e:ee:a5:d3:55:
51:3b:5d:94:99:68:d2:fb:e6:df:d8:0d:47:2e:b2:43:1c:d9:
d0:67:87:36:cf:25:1b:5e:d7:0a:15:38:3a:f8:cd:bd:f7:cd:
50:0f:49:9a:94:9a:09:e2:89:c8:58:b5:73:8d:7d:ba:d4:04:
e5:9b:e3:d4:45:f0:43:00:44:d6:47:d2:29:ac:fa:94:37:86:
68:2c:4f:5b:d2:14:10:44:11:75:cb:e7:47:ff:fc:4e:f4:fa:
6f:e9:3f:a9:b9:2f:9d:2b:65:6f:72:01:0f:99:c4:a8:a5:1b:
09:a5:57:d9:78:8d:89:7a:33:01:f8:59:8c:1d:98:97:3d:d7:
ab:a7:31:42:00:84:43:f7:9c:93:5d:92:9c:a0:07:4c:b4:b6:
36:f7:ea:f6:b2:24:c8:f3:61:82:cd:fa:5e:3f:74:46:2c:f6:
d9:7b:96:18:07:da:a0:10:f9:bf:a7:bf:ea:9b:54:57:5c:3b:
ba:b2:32:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:06 2024 by rpki-client on console-fra.rpki-client.org