Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/5E0D3D067EA611EE82B1F470C4F9AE02.roa
File: 5E0D3D067EA611EE82B1F470C4F9AE02.roa (raw, json)
Hash identifier: eUtpXRunvAkUqIihRURneX0Es/suq0isR7mDLsC82q4=
Subject key identifier: 6A:5B:8E:41:7C:CB:5A:81:9A:DA:93:15:B3:4D:8F:34:7F:DA:C5:FB
Certificate issuer: /CN=A918FC75/serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D
Certificate serial: 02BF
Authority key identifier: 48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/5E0D3D067EA611EE82B1F470C4F9AE02.roa
Signing time: Thu 09 Nov 2023 02:19:10 +0000
ROA not before: Thu 09 Nov 2023 02:19:10 +0000
ROA not after: Sat 31 Aug 2024 00:00:00 +0000
asID: 43260
IP address blocks: 203.32.38.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 10 Dec 2023 23:24:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 703 (0x2bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918FC75/serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D
Validity
Not Before: Nov 9 02:19:10 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=654c419e-d4f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:df:c5:1f:3e:fa:0a:02:43:79:87:41:20:8d:
dd:1b:d5:0e:4e:5f:65:9a:48:56:52:8f:bf:d5:c6:
a3:09:68:8a:af:32:15:82:45:28:af:d7:13:7d:8b:
9f:04:6f:1a:eb:78:1c:83:78:26:97:3e:dc:ec:f6:
2e:6b:3f:c2:7e:bc:97:73:8a:3e:1b:af:9c:5a:9a:
a7:43:96:35:58:e2:ec:58:38:4d:fc:71:38:73:4a:
2c:35:b2:a0:22:43:be:c1:20:15:d6:dc:81:0b:27:
7b:8c:15:7e:97:c5:97:b8:10:de:91:65:44:bf:d7:
8d:6d:89:8d:8b:41:f3:c7:c0:31:6a:4a:3b:00:5f:
e4:8d:8b:85:de:d3:1c:09:ea:e1:c1:48:9f:01:2d:
66:3b:f2:57:92:52:cb:51:94:22:45:d0:76:4b:c9:
2c:3a:ce:f7:65:82:a2:d7:98:d9:94:6a:d6:96:a0:
f3:3e:6e:59:a7:57:81:8d:cf:bd:18:a1:31:42:7b:
a3:1a:94:e9:86:fb:aa:ac:0b:66:96:c3:cb:e3:5c:
bf:12:a1:d9:2d:ce:3b:66:5c:96:15:c1:aa:d7:6c:
aa:93:ad:ec:73:12:c6:45:55:40:b1:ad:74:f0:a6:
0a:66:6e:94:6b:6d:8f:6b:26:9e:9f:db:26:15:cc:
95:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:5B:8E:41:7C:CB:5A:81:9A:DA:93:15:B3:4D:8F:34:7F:DA:C5:FB
X509v3 Authority Key Identifier:
keyid:48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/5E0D3D067EA611EE82B1F470C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.32.38.0/24
Signature Algorithm: sha256WithRSAEncryption
16:0a:54:1f:9c:de:24:72:f2:6c:07:ba:d8:88:93:8f:46:e0:
39:4a:11:b4:ad:ec:aa:15:c7:8f:af:2d:7f:58:eb:7a:af:46:
9b:97:0c:0a:a2:98:90:86:f1:f0:4b:9f:96:b0:87:f9:e0:ab:
f2:40:47:07:d1:bf:7e:f5:d3:55:1b:4f:d9:d6:27:15:47:5b:
e3:7a:c5:44:78:8f:cf:5d:76:bf:78:5e:af:04:81:a3:d6:dd:
94:92:6a:2a:b2:55:5b:ed:57:69:66:24:7b:ae:fc:0e:47:af:
51:61:62:14:f7:a4:69:0e:14:98:67:9b:4f:05:a5:8b:45:d7:
b6:c0:c6:1b:a8:16:2b:d4:26:b5:9a:ba:09:f1:71:23:11:84:
f2:2c:79:22:88:f8:91:75:9c:e7:2b:1d:ca:e6:92:36:2a:8f:
67:31:5d:69:d5:02:d6:74:ed:7f:fa:b8:ae:9a:83:ac:f2:53:
e0:0c:56:93:22:62:c9:ed:ec:1d:ec:17:97:ad:bd:72:d7:48:
53:5b:3a:34:6a:70:3f:0d:8c:5c:0d:a6:46:6c:fe:6c:96:f3:
c6:bb:b9:7f:5d:fd:2a:49:c4:a7:81:a1:af:31:e6:6f:23:4c:
c8:16:cf:1c:1d:7c:5a:53:5c:93:bc:ad:da:28:9f:f4:0e:f8:
f3:1a:0b:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:46 2024 by rpki-client on console-ams.rpki-client.org