Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/E55A7E02602B11EEBB9E8409C4F9AE02.roa
File: E55A7E02602B11EEBB9E8409C4F9AE02.roa (raw, json)
Hash identifier: S0rc2k0Qd39ugAP6vftMFYEpD0U3Uby66RtXNh++Kug=
Subject key identifier: F1:3D:F0:4B:31:C6:3F:DC:21:C8:81:16:63:AA:76:52:4C:35:7F:95
Certificate issuer: /CN=A918FC75/serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D
Certificate serial: 0286
Authority key identifier: 48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/E55A7E02602B11EEBB9E8409C4F9AE02.roa
Signing time: Sun 01 Oct 2023 07:26:54 +0000
ROA not before: Sun 01 Oct 2023 07:26:54 +0000
ROA not after: Sat 31 Aug 2024 00:00:00 +0000
asID: 216394
IP address blocks: 203.32.7.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 03 Nov 2023 20:17:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 646 (0x286)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918FC75/serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D
Validity
Not Before: Oct 1 07:26:54 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=65191f3e-9bc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:d3:44:5e:4b:60:87:09:cf:ab:e2:1f:cb:cb:
7e:1e:36:d0:2e:7c:7c:40:d9:f5:64:b9:3e:08:3c:
6c:0d:55:52:0b:40:ac:34:fb:01:43:77:23:10:20:
6d:1a:6e:fd:bb:73:e1:55:77:e8:c5:64:84:8f:35:
b8:b7:71:0a:33:82:33:98:c3:80:f6:77:47:88:21:
d5:89:7f:2b:93:f7:0f:85:c0:b8:a4:4e:41:e0:6f:
36:8f:06:dd:d4:d3:db:a0:66:93:52:97:ae:94:dc:
2f:fd:4b:d9:9d:4c:27:43:e1:38:8a:fb:f6:34:06:
bd:40:37:2d:e9:f3:c6:ad:30:d6:42:93:a3:09:a6:
c8:5e:7a:f8:ce:dd:31:b4:5e:0a:cf:95:51:20:f3:
e5:28:97:a1:2f:6c:91:59:7e:3d:cf:a1:94:20:66:
b7:72:5a:a8:9d:56:de:7b:c1:dc:63:0c:51:34:a5:
0d:6b:f4:c4:98:4a:0b:6e:59:1e:74:61:81:0b:ac:
1f:51:75:03:f6:b3:18:58:aa:40:83:5d:66:d3:6b:
2c:34:c0:f8:56:5b:c1:ba:fd:66:62:43:53:46:b0:
52:5b:bb:17:dd:12:ab:6d:2f:72:78:58:07:f1:10:
f7:99:a7:96:91:20:84:7e:b1:40:b4:26:fd:5b:00:
7d:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:3D:F0:4B:31:C6:3F:DC:21:C8:81:16:63:AA:76:52:4C:35:7F:95
X509v3 Authority Key Identifier:
keyid:48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/E55A7E02602B11EEBB9E8409C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.32.7.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:eb:80:e0:75:38:d2:f6:45:bf:64:c1:12:d2:27:a4:8b:96:
76:30:8b:dc:20:aa:13:69:56:3b:df:a8:c3:62:51:cf:47:47:
95:a1:ea:3e:3f:e9:55:8d:14:47:ec:0f:f6:1d:22:5b:be:90:
bc:eb:63:82:74:db:ff:8f:08:44:06:55:a1:2e:fd:4c:f7:56:
7b:b0:f6:68:68:c9:ac:f9:cc:b1:1d:2b:f4:63:ac:f4:0b:f1:
9d:90:f9:0e:f7:b7:4a:15:0b:d3:5f:d4:0e:d5:67:bc:fb:4c:
00:ba:06:f4:a0:8b:f5:1f:28:ba:e5:9f:4b:fd:1c:ca:4b:97:
d5:3e:8a:5f:44:4f:62:92:26:0c:02:e0:50:45:64:62:4e:3a:
41:35:4a:50:1f:05:ab:70:23:c2:b1:bd:08:05:82:27:98:94:
55:51:a4:b6:f1:37:16:ba:c2:30:02:18:cb:bf:fa:ab:7a:9f:
d0:b8:df:ae:a0:39:cf:be:ff:e5:ec:d8:d4:45:d3:64:b0:a4:
72:6b:39:2c:0c:f2:c5:5c:7e:e0:aa:00:2f:5d:17:6f:c3:84:
c0:3a:e9:af:6b:06:f6:4a:7b:c8:73:5e:2d:d8:66:af:fc:b3:
5e:2d:81:59:78:e9:17:f8:14:c2:46:e5:55:38:88:6c:46:ae:
40:58:fe:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:33 2024 by rpki-client on console-fra.rpki-client.org