Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/836DC7CE561311EF8367DF46C4F9AE02.roa
File: 836DC7CE561311EF8367DF46C4F9AE02.roa (raw, json)
Hash identifier: TY2tj7FgxbUsqqqL/3GUmSV38SPDbIQLOZVk1tz9lho=
Subject key identifier: 30:62:09:D1:C7:2E:DF:51:20:DF:01:7F:FF:07:E8:2F:17:41:47:3C
Certificate issuer: /CN=A918FC75/serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D
Certificate serial: 03A9
Authority key identifier: 48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/836DC7CE561311EF8367DF46C4F9AE02.roa
Signing time: Fri 09 Aug 2024 05:52:08 +0000
ROA not before: Fri 09 Aug 2024 05:52:08 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 150110
IP address blocks: 203.32.23.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 12 Aug 2024 09:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 937 (0x3a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918FC75/serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D
Validity
Not Before: Aug 9 05:52:08 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=66b5ae88-807d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:0a:f5:fa:7c:4f:40:79:c2:fd:da:1c:ce:7b:
c3:f3:0e:b9:2b:b3:f4:58:f8:7f:ec:75:9f:2e:70:
af:e4:e8:c7:bd:ef:66:71:17:4a:37:80:a4:84:36:
0c:ed:78:d0:0e:cf:35:22:2c:04:c1:48:c3:72:7f:
13:d2:bc:e9:11:31:e7:33:b6:9f:07:b2:29:71:a7:
00:b8:18:d9:b6:22:cf:6d:e4:3f:f1:6d:f3:16:9e:
59:93:dc:31:02:35:65:36:14:e7:73:5f:15:6b:73:
45:29:6e:2e:20:89:af:f9:1c:76:86:4d:1b:a6:3a:
35:51:d3:ad:a9:79:78:34:23:45:b2:de:30:6e:04:
2b:40:fb:b7:1f:be:3d:0a:f7:f8:99:e6:d4:f6:e1:
96:55:5b:de:8f:45:9f:cc:6c:73:73:3e:e9:b3:38:
6b:59:a9:f6:c7:8e:e7:0b:33:88:9d:7a:8d:6e:7f:
26:ab:8a:98:62:36:71:db:29:9b:c0:87:84:65:dc:
9e:ff:02:96:f4:b3:c3:ec:d1:96:3e:67:06:39:e6:
e3:9b:c9:06:99:4e:39:4f:72:a7:90:5c:10:49:da:
87:16:88:48:1e:a9:f7:28:76:fb:54:64:d0:16:3b:
5e:8f:9f:33:63:7a:59:ae:be:82:c8:96:b2:8c:45:
66:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:62:09:D1:C7:2E:DF:51:20:DF:01:7F:FF:07:E8:2F:17:41:47:3C
X509v3 Authority Key Identifier:
keyid:48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/836DC7CE561311EF8367DF46C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.32.23.0/24
Signature Algorithm: sha256WithRSAEncryption
87:8e:e9:25:ff:b5:45:db:3c:32:be:c3:2a:71:30:88:54:80:
d0:1d:65:8d:35:0d:7c:9a:88:49:6e:25:fc:5b:1f:0b:35:8f:
29:11:c3:6d:34:22:6e:de:5d:72:e7:48:fe:c0:91:ef:0d:ed:
ae:d5:67:dc:e1:6f:57:1a:59:68:c4:05:62:3b:d6:3a:32:22:
31:45:22:ca:5b:85:4f:8b:13:e0:a5:4f:1c:f4:fe:12:e4:60:
b2:72:c7:ba:91:fd:76:8d:10:97:e1:c5:6b:74:fe:77:d7:fc:
d4:bc:28:50:5e:a9:d7:70:4c:65:8c:a0:cd:36:58:58:b5:f2:
09:ef:0d:28:cc:15:d9:d5:f4:21:59:c7:c6:9a:0a:1f:00:ef:
3d:f6:62:8c:b7:d0:33:45:3e:f1:b3:6f:7e:36:5a:c1:b6:86:
6c:42:91:c4:d8:aa:9e:16:2b:59:ea:79:f9:97:0b:c4:bd:29:
5b:7c:11:22:20:94:7b:ff:7d:aa:fd:ec:91:b6:d4:60:f4:91:
80:46:43:83:a8:b7:52:78:7d:85:44:77:95:f9:1d:9a:b7:9f:
05:f7:7f:a2:36:75:7b:50:2c:71:2d:6b:f7:5a:1e:f0:c6:66:
fc:37:48:dc:83:15:9e:9d:12:78:3b:32:d0:26:b6:dc:20:d2:
4c:d3:cb:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 12 12:10:13 2024 by rpki-client on console-ams.rpki-client.org