Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A919ECE7/5E05DBA45FAC11EB8494452FC4F9AE02/C722A5461DBC11EF9718650FC4F9AE02.roa
File: C722A5461DBC11EF9718650FC4F9AE02.roa (raw, json)
Hash identifier: o4mC1euZXLm9ouSTlTlPI2Dp/TJvSFVvgE3c0tfW97Y=
Subject key identifier: 46:2E:F2:23:4E:71:E7:3F:CB:A5:27:52:8C:AA:6B:C9:58:14:DF:EA
Certificate issuer: /CN=A919ECE7/serialNumber=77370BC07305D19DBDACCE4BF7209E1EB6D40E33
Certificate serial: 0637
Authority key identifier: 77:37:0B:C0:73:05:D1:9D:BD:AC:CE:4B:F7:20:9E:1E:B6:D4:0E:33
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dzcLwHMF0Z29rM5L9yCeHrbUDjM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919ECE7/5E05DBA45FAC11EB8494452FC4F9AE02/C722A5461DBC11EF9718650FC4F9AE02.roa
Signing time: Wed 29 May 2024 13:14:20 +0000
ROA not before: Wed 29 May 2024 13:14:20 +0000
ROA not after: Fri 31 Jan 2025 00:00:00 +0000
asID: 137547
IP address blocks: 43.250.174.0/24 maxlen: 24
103.42.29.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 05 Aug 2024 10:47:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1591 (0x637)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919ECE7/serialNumber=77370BC07305D19DBDACCE4BF7209E1EB6D40E33
Validity
Not Before: May 29 13:14:20 2024 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=66572a2c-4a54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:e7:ef:d7:7b:6f:2c:1a:23:ee:3d:59:4b:26:
83:fe:8b:76:e4:ca:ff:b5:50:57:a3:c6:45:7a:ce:
eb:ab:a4:96:b4:e8:27:d1:b6:55:d2:a6:57:1d:ce:
ba:25:72:e9:2b:88:cb:19:d4:a9:12:98:47:a4:84:
6d:91:59:24:6b:f2:08:11:1d:02:64:dd:bc:5e:80:
0a:56:dd:25:a8:f9:2c:80:f6:49:a4:be:29:03:09:
13:b5:85:c1:cf:84:97:e8:da:0c:6b:8a:cb:6d:7d:
e9:75:d0:c5:39:b7:c9:b5:29:80:3f:e5:02:eb:2b:
59:6d:36:51:c2:84:06:95:90:6d:bd:a1:5d:3b:27:
4b:c5:6e:8c:68:fc:4b:9f:87:b6:8c:a4:f4:81:33:
92:df:3d:8f:7b:18:32:c5:54:81:de:3f:6b:46:90:
2e:b7:21:8b:56:49:8e:bc:d8:41:8a:e3:48:e1:4a:
8e:47:a4:91:6c:98:1b:b3:93:b0:3a:51:9e:a3:1a:
62:dc:24:a1:69:40:3b:f9:74:2d:c9:a6:75:f7:ef:
2c:35:10:8c:3a:77:0a:2f:7b:5a:54:2f:92:14:df:
07:24:2c:4d:a5:13:cd:f9:d1:ae:42:3f:e5:93:c4:
89:8c:c2:87:cf:a2:9a:a2:1e:50:4c:a0:b4:fd:4b:
15:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:2E:F2:23:4E:71:E7:3F:CB:A5:27:52:8C:AA:6B:C9:58:14:DF:EA
X509v3 Authority Key Identifier:
keyid:77:37:0B:C0:73:05:D1:9D:BD:AC:CE:4B:F7:20:9E:1E:B6:D4:0E:33
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919ECE7/5E05DBA45FAC11EB8494452FC4F9AE02/dzcLwHMF0Z29rM5L9yCeHrbUDjM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dzcLwHMF0Z29rM5L9yCeHrbUDjM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919ECE7/5E05DBA45FAC11EB8494452FC4F9AE02/C722A5461DBC11EF9718650FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.250.174.0/24
103.42.29.0/24
Signature Algorithm: sha256WithRSAEncryption
67:d4:51:8d:7d:f0:9c:f2:73:10:77:0a:af:01:33:a3:f2:58:
6c:da:d0:b2:ad:cd:f6:e2:8c:b6:28:32:98:ea:2b:02:d6:fa:
3e:3e:eb:ed:db:a5:64:89:0c:ab:e8:ba:f6:15:04:cf:d5:84:
cf:73:7f:88:1f:fe:00:6a:98:c0:9b:9f:c0:31:23:3e:6e:fd:
ff:48:21:c2:55:7f:5f:d7:9a:d7:e4:53:38:45:1f:d8:b8:1f:
07:8c:eb:ea:7a:12:60:ad:66:e6:4b:4c:1f:d3:42:71:a4:6b:
04:db:60:6b:20:56:ba:37:49:34:a8:c3:08:0b:5e:bf:08:6c:
ef:a8:df:7d:5e:69:82:09:da:c0:a9:4f:4b:12:1e:6f:d2:d7:
ab:20:27:1f:25:f2:43:4d:24:dc:0c:d6:4b:e6:d4:47:a5:8a:
be:de:b7:4f:aa:69:d6:33:32:62:65:ea:73:00:3d:7f:2e:5b:
db:6e:26:c0:81:8d:73:36:a3:d4:df:6c:25:c8:bc:95:71:3c:
c0:6e:4c:a4:be:92:4c:2e:cc:bd:05:21:2b:14:aa:6a:1e:ff:
ee:29:76:16:cd:38:26:d2:f6:91:a2:ab:c3:c5:48:9f:18:41:
63:2b:7f:4d:c7:04:5d:66:d0:bd:b0:d9:64:50:2c:75:d3:45:
7d:d6:56:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 5 12:53:51 2024 by rpki-client on console-ams.rpki-client.org