Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/07F7DF6A2E3311EFA1B2DE55C4F9AE02.roa
File: 07F7DF6A2E3311EFA1B2DE55C4F9AE02.roa (raw, json)
Hash identifier: RYs2tB1R5KgdcK4pL/d8veyUV9PgI0CaSI+xjGr977E=
Subject key identifier: A8:2F:6A:B5:99:90:68:8D:37:99:90:88:02:71:63:3B:95:15:35:A4
Certificate issuer: /CN=A915E475/serialNumber=745FF4F063AB5D171E05251B31E294A4BC7973B1
Certificate serial: 0951
Authority key identifier: 74:5F:F4:F0:63:AB:5D:17:1E:05:25:1B:31:E2:94:A4:BC:79:73:B1
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dF_08GOrXRceBSUbMeKUpLx5c7E.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/07F7DF6A2E3311EFA1B2DE55C4F9AE02.roa
Signing time: Wed 19 Jun 2024 11:56:58 +0000
ROA not before: Wed 19 Jun 2024 11:56:58 +0000
ROA not after: Mon 30 Dec 2024 00:00:00 +0000
asID: 24233
IP address blocks: 103.1.52.0/22 maxlen: 22
116.255.42.0/24 maxlen: 24
123.176.118.0/24 maxlen: 24
125.253.9.0/24 maxlen: 24
125.253.18.0/24 maxlen: 24
125.253.19.0/24 maxlen: 24
125.253.58.0/24 maxlen: 24
125.253.59.0/24 maxlen: 24
202.144.160.0/20 maxlen: 20
203.132.68.0/23 maxlen: 23
203.132.74.0/23 maxlen: 23
203.132.76.0/22 maxlen: 22
203.132.80.0/21 maxlen: 21
203.132.82.0/24 maxlen: 24
203.212.16.0/21 maxlen: 24
Validation: Failed, certificate revoked on Tue 13 Aug 2024 06:12:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2385 (0x951)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915E475/serialNumber=745FF4F063AB5D171E05251B31E294A4BC7973B1
Validity
Not Before: Jun 19 11:56:58 2024 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=6672c78a-ace7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c4:0f:d8:26:f7:a2:b5:88:24:73:09:b3:87:
92:fa:7a:2a:c5:31:3e:ab:6e:15:5d:b3:cd:95:f3:
db:a5:dd:4f:00:28:39:5f:b7:b0:19:83:7d:c5:ac:
53:f3:21:50:8e:9d:b8:d2:1f:ab:58:7b:33:cd:3c:
64:d7:09:2e:8c:ff:de:25:90:00:f5:97:78:48:9e:
56:33:63:d7:ea:0b:e7:ec:c3:99:f8:f6:1a:f2:92:
b2:0a:23:07:ae:01:1a:ea:04:ce:7a:46:68:dd:8b:
1b:ae:e4:c3:60:8b:74:57:d8:e7:d8:29:9c:35:1c:
7e:5c:a6:a5:fe:21:05:13:49:c9:b0:02:21:8a:52:
74:35:d3:ff:a4:78:e7:c7:6a:df:49:75:70:3b:f5:
ab:9d:02:69:ba:e8:8a:33:27:e9:5f:7e:e1:46:68:
8c:5e:7c:e9:dd:42:f2:04:6c:c9:02:ca:75:ea:6c:
f0:03:19:09:3b:b1:a7:25:b7:ca:ce:78:14:f5:4a:
fb:77:34:b3:f3:c1:09:d3:9b:8b:3b:7a:06:4e:d4:
6a:9b:c4:e1:f5:7f:cf:8b:70:03:ad:04:cc:f3:65:
64:be:ce:e4:7e:12:df:f7:44:33:6b:e8:a0:8a:f0:
70:63:75:24:85:62:8b:01:8c:66:72:03:6e:c7:63:
04:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:2F:6A:B5:99:90:68:8D:37:99:90:88:02:71:63:3B:95:15:35:A4
X509v3 Authority Key Identifier:
keyid:74:5F:F4:F0:63:AB:5D:17:1E:05:25:1B:31:E2:94:A4:BC:79:73:B1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/dF_08GOrXRceBSUbMeKUpLx5c7E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dF_08GOrXRceBSUbMeKUpLx5c7E.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/07F7DF6A2E3311EFA1B2DE55C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.1.52.0/22
116.255.42.0/24
123.176.118.0/24
125.253.9.0/24
125.253.18.0/23
125.253.58.0/23
202.144.160.0/20
203.132.68.0/23
203.132.74.0-203.132.87.255
203.212.16.0/21
Signature Algorithm: sha256WithRSAEncryption
8a:51:bb:c5:e1:a7:ba:b1:23:db:03:d2:29:83:b0:83:40:f9:
f7:0c:8e:e7:40:dc:a6:e9:d8:16:9d:22:1d:09:3c:b9:06:ab:
94:d9:af:9d:62:63:4b:61:67:65:28:77:28:a4:a3:12:2e:78:
57:9f:e4:92:be:24:55:7e:c8:93:63:b5:d7:3c:59:db:f3:17:
a5:3a:64:71:26:94:4a:1d:b6:03:d7:1c:e0:31:3b:d3:1c:61:
31:c6:11:4b:d8:36:b4:88:90:e5:78:01:0f:0b:c3:02:25:70:
e6:b3:5c:04:c9:2a:a7:8e:61:33:00:1f:ad:28:a7:92:58:d3:
a2:3d:97:38:a7:1f:e4:40:20:b7:ae:6f:23:0d:4c:fc:00:9c:
86:ac:87:7b:a8:12:fc:a5:67:67:89:f8:9f:e9:15:d2:00:bc:
99:ad:ab:1f:ed:d5:8f:0b:49:22:4e:d1:db:de:74:50:46:0f:
cb:34:31:30:5f:a0:14:5f:ff:c3:0d:99:8f:18:7d:c0:ba:8c:
93:05:07:09:fc:a1:e6:15:ab:a3:9c:cd:32:e1:68:20:8f:dc:
cc:5a:05:38:64:86:04:ce:c2:54:f3:b4:2b:eb:a0:58:de:11:
cb:b0:64:66:d3:35:35:2c:1b:22:5e:1b:00:9c:6e:76:62:cf:
ca:41:0b:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 13 07:40:39 2024 by rpki-client on console-fra.rpki-client.org