Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/4AAC7D766E7F11EEBFD6B873C4F9AE02.roa
File: 4AAC7D766E7F11EEBFD6B873C4F9AE02.roa (raw, json)
Hash identifier: 4DgzQVwUTwx6ObEDCckL3KeSgZxevm4Y7PXcGHrdDwE=
Subject key identifier: E7:4A:A4:43:AE:6E:AD:14:F6:6A:A6:04:08:02:F4:0B:42:BB:58:2F
Certificate issuer: /CN=A91756B7/serialNumber=83D96F1DEA72A99D234B4456D6F6675DC7E6061E
Certificate serial: 05AE
Authority key identifier: 83:D9:6F:1D:EA:72:A9:9D:23:4B:44:56:D6:F6:67:5D:C7:E6:06:1E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g9lvHepyqZ0jS0RW1vZnXcfmBh4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/4AAC7D766E7F11EEBFD6B873C4F9AE02.roa
Signing time: Thu 19 Oct 2023 12:59:09 +0000
ROA not before: Thu 19 Oct 2023 12:59:09 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 137961
IP address blocks: 202.94.165.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 26 Oct 2023 07:59:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1454 (0x5ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91756B7/serialNumber=83D96F1DEA72A99D234B4456D6F6675DC7E6061E
Validity
Not Before: Oct 19 12:59:09 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=6531281d-1e99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:e5:fc:f8:c6:3d:9e:76:b6:53:b1:9f:d7:70:
52:22:0b:cb:fa:33:9f:07:0d:bb:d0:12:f5:c6:13:
6b:64:8b:6e:3d:99:64:b6:40:6d:63:d0:a2:5f:b1:
13:a4:07:dc:2a:26:1f:64:9b:a5:56:33:dd:d3:b9:
df:5d:79:fc:f7:ad:19:7f:22:d3:78:49:48:77:83:
67:01:9d:1c:0f:2d:e6:f0:2a:5d:f5:ea:02:d2:27:
6d:40:46:85:dd:00:72:36:1a:36:8e:27:e8:9b:be:
65:02:82:6c:36:f6:de:2c:28:d7:49:45:60:a1:c1:
a4:a8:93:01:30:b2:27:8b:f6:2e:55:bd:7e:fb:c5:
71:ba:19:e2:f1:9a:5f:14:79:08:92:83:49:3c:ae:
8d:ed:8d:f9:22:4e:2a:ec:64:51:5f:cc:66:a4:dd:
3f:b0:8b:0a:92:9f:3d:47:21:bf:b8:ee:9a:16:cc:
61:94:b8:26:1c:e8:97:8a:5e:93:91:f8:cc:a0:b2:
06:e4:9f:fb:b6:40:70:36:c7:10:dc:bb:24:33:cf:
83:a7:7e:77:e3:2a:5d:96:7a:1b:6a:23:e5:cf:11:
9c:66:24:af:55:d0:43:2b:3f:f9:c7:1d:3c:89:6e:
fd:52:c9:1e:24:61:e0:58:bc:79:d4:a5:77:40:3c:
ae:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:4A:A4:43:AE:6E:AD:14:F6:6A:A6:04:08:02:F4:0B:42:BB:58:2F
X509v3 Authority Key Identifier:
keyid:83:D9:6F:1D:EA:72:A9:9D:23:4B:44:56:D6:F6:67:5D:C7:E6:06:1E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/g9lvHepyqZ0jS0RW1vZnXcfmBh4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g9lvHepyqZ0jS0RW1vZnXcfmBh4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/4AAC7D766E7F11EEBFD6B873C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.94.165.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:47:14:58:38:e0:59:b6:2f:fd:83:26:f3:50:ed:75:61:b1:
68:0a:65:17:c5:2a:a5:df:ef:b2:c1:f9:ab:a2:01:c4:51:4b:
4a:98:a4:5b:cb:50:6d:f0:3d:c8:26:a6:43:2a:60:24:51:20:
21:4c:bf:42:ad:6d:b8:75:80:70:df:08:7e:eb:b9:cc:9d:6b:
fe:99:0e:8b:68:67:39:ab:0d:19:af:02:36:91:b3:03:f2:b6:
5f:a2:83:3d:d1:5e:9a:43:79:fd:51:70:14:00:cf:f4:be:f4:
19:50:7d:5c:9a:da:c4:a2:8e:bd:03:66:ec:af:3a:b2:f7:48:
36:c0:5a:94:9d:bc:93:87:51:1e:29:41:8e:01:6e:08:8c:aa:
91:e1:43:42:e2:b3:2a:d6:a9:f9:d0:56:f1:85:7f:e3:18:ef:
73:bc:46:18:10:ed:a4:19:fb:c9:2d:ba:b1:d8:eb:24:2b:f2:
0d:6b:dc:9d:ff:c6:46:39:7c:8b:3b:1e:c2:a8:a6:43:81:66:
53:2c:95:95:90:df:d6:6e:46:df:cb:61:20:2c:79:f6:ff:91:
97:a1:bd:55:6c:c2:2a:ef:a7:ea:42:f6:1d:94:43:e7:1a:6f:
a0:e9:28:1e:c8:6c:59:d2:02:62:f0:a3:1f:36:60:df:c3:ef:
66:15:25:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:12 2024 by rpki-client on console-fra.rpki-client.org