Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/D25430FC1BF911EF81DB9852C4F9AE02.roa
File: D25430FC1BF911EF81DB9852C4F9AE02.roa (raw, json)
Hash identifier: mlFMzJ6yEkxQhpNbp+VbBUsOpBgwQ5D7QxIMR0+4z9I=
Subject key identifier: EC:5E:54:02:0C:CC:F6:4F:04:53:4C:7D:E2:DB:B8:FE:59:C2:B0:28
Certificate issuer: /CN=A918F550/serialNumber=A24B6A62044B70065F0506388460E4AF2F17F3FF
Certificate serial: 346C
Authority key identifier: A2:4B:6A:62:04:4B:70:06:5F:05:06:38:84:60:E4:AF:2F:17:F3:FF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/D25430FC1BF911EF81DB9852C4F9AE02.roa
Signing time: Wed 31 Jul 2024 14:31:06 +0000
ROA not before: Wed 31 Jul 2024 14:31:06 +0000
ROA not after: Tue 30 Sep 2025 00:00:00 +0000
asID: 63991
IP address blocks: 202.51.72.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 27 Sep 2024 10:55:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13420 (0x346c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918F550/serialNumber=A24B6A62044B70065F0506388460E4AF2F17F3FF
Validity
Not Before: Jul 31 14:31:06 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=66aa4aaa-1fe3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:3b:ef:ed:93:a4:67:d0:2a:88:77:a9:46:65:
98:75:e6:04:7a:af:18:5d:00:9c:8c:4f:5c:0a:31:
69:69:a9:a8:fc:db:b4:ee:ad:53:ed:c1:22:b9:34:
d9:5a:3e:34:a9:ac:6c:9c:cb:97:95:c6:6c:48:46:
ba:6c:93:fb:6a:27:1e:04:be:91:27:fd:20:31:2e:
28:ce:92:5d:98:77:7d:44:a0:1b:6f:8f:27:7e:4f:
ed:ed:a6:3b:80:1d:6a:d1:35:a5:71:bf:fb:91:3b:
8f:2b:06:c4:46:a6:29:1c:41:8c:a2:27:8e:6e:8e:
06:ac:34:e1:16:e7:44:28:bf:d8:44:46:58:bc:a0:
73:50:a2:db:b5:a0:ac:9b:1c:de:87:e5:e4:76:6a:
ab:43:76:49:c6:69:c1:cf:0b:0b:f9:2f:a3:b8:9e:
0b:74:59:ca:e4:28:b6:48:96:7e:2d:72:33:4d:5d:
db:e3:ef:40:6f:84:19:dc:45:0a:0e:3a:74:22:e2:
ce:91:66:8c:f3:0a:cb:21:c8:50:6d:ca:1f:19:af:
f6:48:4d:b3:a6:85:de:12:57:66:5a:f9:81:ff:a8:
da:10:4c:0c:02:5d:87:53:22:8d:92:d4:a9:d4:88:
2c:e5:52:f4:9e:1d:5f:69:dd:84:16:d3:f2:0b:af:
83:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:5E:54:02:0C:CC:F6:4F:04:53:4C:7D:E2:DB:B8:FE:59:C2:B0:28
X509v3 Authority Key Identifier:
keyid:A2:4B:6A:62:04:4B:70:06:5F:05:06:38:84:60:E4:AF:2F:17:F3:FF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/D25430FC1BF911EF81DB9852C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.51.72.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:5d:f8:f9:bc:6d:6e:a9:10:2d:e4:75:12:f2:70:43:e2:51:
04:74:0b:da:d3:9d:55:ae:33:47:e6:6e:9d:16:d5:63:a7:3d:
3f:5d:d9:e6:98:1d:90:3f:4f:e4:88:c9:23:c3:26:59:14:c9:
b2:3f:b1:fb:30:58:fc:3d:80:5e:dd:3f:be:e7:db:0b:21:a8:
ed:54:72:00:13:4e:55:3f:8c:68:2a:50:9f:fa:f9:f3:82:fb:
f9:69:4d:cf:57:61:4d:85:62:48:aa:16:ec:9b:2b:c5:8b:e5:
21:db:ba:e7:fe:04:c5:d6:da:51:9f:67:ba:73:a4:e6:e9:f1:
bb:8f:69:c2:45:e8:22:99:21:4d:61:a4:8e:7a:d6:49:05:3f:
08:60:d0:38:d4:50:94:bc:25:d9:be:f7:a0:a8:a0:6d:f1:23:
dd:8f:ac:55:46:e5:57:f8:e0:b1:ac:c5:1e:ce:1b:33:f0:5f:
95:ca:3f:b0:ed:f3:6c:73:15:6b:fa:b2:95:01:1a:04:77:06:
62:b8:00:84:22:ed:62:42:f9:89:fb:79:31:f8:b9:3d:b7:a9:
7c:29:82:ef:10:61:4d:75:25:5a:e6:1f:e5:a9:b2:23:5c:e1:
e2:4a:7f:a0:b6:6c:1f:45:66:3e:17:5c:45:8e:3b:1a:c9:31:
a8:ba:d4:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 27 14:05:17 2024 by rpki-client on console-ams.rpki-client.org