Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/D2F532B8DB1811ED8F1E9C50C4F9AE02.roa
File: D2F532B8DB1811ED8F1E9C50C4F9AE02.roa (raw, json)
Hash identifier: oIPJSk59t3+QjqwdGCaK+M4Vss5s22AcLCixqVLGKLA=
Subject key identifier: 8D:7B:C4:BE:6F:2A:34:F0:6E:F3:F7:BC:D7:BC:F8:CC:C8:EC:9C:B8
Certificate issuer: /CN=A918FC75/serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D
Certificate serial: 01FF
Authority key identifier: 48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/D2F532B8DB1811ED8F1E9C50C4F9AE02.roa
Signing time: Thu 01 Jun 2023 06:54:49 +0000
ROA not before: Thu 01 Jun 2023 06:54:49 +0000
ROA not after: Sat 31 Aug 2024 00:00:00 +0000
asID: 207633
IP address blocks: 203.32.25.0/24 maxlen: 24
203.32.28.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 11 Aug 2023 22:27:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 511 (0x1ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918FC75/serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D
Validity
Not Before: Jun 1 06:54:49 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=647840b8-76d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:a4:5c:d3:a5:bd:90:0a:dc:b7:95:2f:c8:f2:
e4:d0:7d:43:af:67:d8:53:f5:72:1f:1d:53:e7:5b:
07:da:7e:92:95:b5:09:c9:08:d5:46:d1:03:c9:c8:
bb:e5:bb:59:7c:fd:1e:bc:4d:dd:66:cb:d5:6e:20:
0f:f8:79:e2:71:13:49:55:cc:4a:76:f6:ce:ed:e8:
28:75:98:b4:5b:0e:3c:36:b1:31:6d:ba:76:89:0b:
19:fd:b5:15:23:34:92:1a:8e:b8:e8:af:b6:4c:e5:
5f:b8:97:d6:57:d6:44:f6:92:7f:77:44:f3:aa:2f:
23:de:6a:7f:59:5b:98:7e:3c:23:56:27:23:af:a3:
42:e5:7b:7f:e5:a1:d6:fc:c8:fe:c6:5d:e8:3a:8c:
ab:51:6c:71:31:35:84:34:51:3c:fe:14:22:55:8e:
2c:23:5e:09:7d:c1:d8:80:c3:a5:fb:81:55:b6:18:
e6:a6:98:3c:9c:00:40:d1:84:8c:a6:8f:c5:c9:1e:
21:40:0d:8f:17:95:06:16:c9:1b:f2:e7:4a:b8:a2:
a6:34:91:fe:75:51:cb:3d:ac:ab:91:cc:ab:0a:dd:
e8:8b:dd:6d:45:72:cf:fd:89:83:a4:5b:b9:e9:69:
af:fd:85:df:e0:19:3a:3d:b9:6b:ad:2a:45:f7:53:
88:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:7B:C4:BE:6F:2A:34:F0:6E:F3:F7:BC:D7:BC:F8:CC:C8:EC:9C:B8
X509v3 Authority Key Identifier:
keyid:48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/D2F532B8DB1811ED8F1E9C50C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.32.25.0/24
203.32.28.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:76:8e:79:b1:50:9d:10:56:12:4a:6d:c1:3f:43:37:7f:ea:
30:8f:00:3a:e1:18:dd:b2:be:a7:2f:60:c0:bf:23:c9:ac:55:
77:07:5f:cb:49:8e:e1:ca:63:b5:18:69:14:07:f6:93:8d:42:
ff:5d:40:c1:5e:40:c9:49:5e:1e:54:3a:a3:2a:b3:a7:b5:e1:
1f:71:bb:1a:64:78:5d:e1:bf:5c:6f:e4:18:06:e1:e4:7a:1a:
10:f3:f4:f3:8d:64:ea:17:21:35:6a:d8:6b:ee:d2:8a:8d:05:
7c:a8:1e:8a:4a:28:08:69:7b:cb:78:ee:15:fa:5e:11:74:b0:
1b:c6:30:bb:eb:a8:8f:d0:ad:d3:60:4f:52:c9:b6:86:f1:0f:
39:10:c2:e1:92:77:1a:8d:ee:c7:26:01:0e:99:41:7b:5b:4a:
5b:03:ba:3b:b4:7a:23:3d:39:15:c0:77:4e:df:48:a4:49:47:
da:47:ac:8e:24:b1:de:b6:9a:0c:ef:56:d4:cf:a1:17:bd:e0:
0d:9b:8c:78:6d:49:71:5b:86:30:ff:4f:08:12:c0:a4:b8:74:
90:fc:ca:a6:46:20:ca:e0:3d:d8:61:98:20:0a:1b:6d:d1:de:
c0:09:75:d4:a3:55:58:2d:db:22:33:77:85:ea:44:ce:b6:5f:
4f:4f:7a:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:46 2024 by rpki-client on console-ams.rpki-client.org