Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5098/C6809196AC9711E6A491DC17C4F9AE02/33750762DB9A11E99FEBB04BC4F9AE02.roa
File: 33750762DB9A11E99FEBB04BC4F9AE02.roa (raw, json)
Hash identifier: GEDc2iesbeyZO7Zf9F6Ky9+Y+ZIwY3kJtHyD7V2UKKg=
Subject key identifier: DF:60:AC:0E:09:3C:DE:EA:B6:93:48:69:73:57:1D:BD:76:BB:51:14
Certificate issuer: /CN=A91A5098/serialNumber=099714A70E6F401289108209D6A7F4859F9800CC
Certificate serial: 1C37
Authority key identifier: 09:97:14:A7:0E:6F:40:12:89:10:82:09:D6:A7:F4:85:9F:98:00:CC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A5098/C6809196AC9711E6A491DC17C4F9AE02/33750762DB9A11E99FEBB04BC4F9AE02.roa
Signing time: Fri 08 Sep 2023 16:43:10 +0000
ROA not before: Fri 08 Sep 2023 16:43:10 +0000
ROA not after: Sun 01 Dec 2024 00:00:00 +0000
asID: 45204
IP address blocks: 180.149.64.0/18 maxlen: 21
180.149.69.14/32 maxlen: 32
180.149.90.0/24 maxlen: 24
180.149.91.0/24 maxlen: 24
180.149.93.0/24 maxlen: 24
180.149.94.0/24 maxlen: 24
180.149.95.0/24 maxlen: 24
180.149.96.0/24 maxlen: 24
180.149.97.0/24 maxlen: 24
180.149.98.0/24 maxlen: 24
180.149.99.0/24 maxlen: 24
180.149.100.0/22 maxlen: 24
180.149.112.0/24 maxlen: 24
180.149.117.0/24 maxlen: 24
180.149.118.0/24 maxlen: 24
2401:d600::/32 maxlen: 48
Validation: Failed, certificate revoked on Wed 25 Oct 2023 08:54:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7223 (0x1c37)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A5098/serialNumber=099714A70E6F401289108209D6A7F4859F9800CC
Validity
Not Before: Sep 8 16:43:10 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=64fb4f1e-4cf1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:6d:d8:5f:0b:3e:fc:fe:16:10:e5:5f:c8:95:
45:5e:2e:21:08:e7:04:3d:29:d3:e2:9a:2a:30:c6:
3d:82:d3:eb:5d:a7:21:ae:55:da:06:ed:2f:a2:0c:
2b:72:9a:d2:07:a7:d5:93:03:b1:24:d9:b8:86:1e:
eb:69:dd:27:d9:b2:fe:f8:86:e5:dc:dc:5e:06:c7:
a1:97:87:be:71:3c:cc:e8:32:73:d3:46:29:1c:93:
19:0a:2e:4a:b8:e4:ae:9a:86:2e:1f:99:e4:fc:45:
c5:0e:11:5f:fb:09:34:7c:47:25:10:e7:23:48:54:
ac:21:10:2b:b6:a8:30:b8:b0:b4:0c:14:7f:db:5b:
58:de:4f:5b:b7:5c:02:4d:a3:22:04:9c:63:2b:06:
c5:99:e8:3a:82:42:9c:2e:48:59:cd:ee:46:71:70:
fb:9a:87:21:3e:0c:03:c3:1a:59:74:3b:e8:32:01:
47:8f:0c:9f:bb:6d:27:ed:5a:cc:e9:ac:90:ad:a2:
5c:ac:c0:54:ea:52:fd:87:be:d7:35:61:72:bc:cc:
b2:24:b8:10:db:da:48:3c:70:73:99:c3:b4:ea:06:
a1:d8:48:eb:ae:3e:71:79:ee:ad:c4:1c:48:42:10:
f7:b0:e5:f4:b1:ae:e0:25:c4:2e:c3:ad:30:0a:12:
f6:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:60:AC:0E:09:3C:DE:EA:B6:93:48:69:73:57:1D:BD:76:BB:51:14
X509v3 Authority Key Identifier:
keyid:09:97:14:A7:0E:6F:40:12:89:10:82:09:D6:A7:F4:85:9F:98:00:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A5098/C6809196AC9711E6A491DC17C4F9AE02/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5098/C6809196AC9711E6A491DC17C4F9AE02/33750762DB9A11E99FEBB04BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
180.149.64.0/18
IPv6:
2401:d600::/32
Signature Algorithm: sha256WithRSAEncryption
0a:46:1b:f5:0d:26:d5:7e:a6:0a:ab:c4:61:df:b5:de:77:98:
15:8e:bc:04:e6:06:9e:3b:97:93:1e:8c:7b:b2:b5:62:41:84:
82:be:77:a3:f3:bf:24:09:4c:b6:16:18:e1:22:fc:68:8b:02:
af:ba:1a:4f:ca:98:c0:19:15:df:14:59:69:bb:77:1c:77:0d:
44:d5:e7:d6:90:d6:de:5b:8d:75:5e:67:6d:a5:cc:2d:a8:79:
a9:28:42:c0:ad:c9:12:bb:a8:aa:85:78:6e:2a:2a:f7:55:3e:
14:f6:92:23:24:94:94:fe:4c:9f:41:1d:c4:3c:1b:0c:fe:38:
1e:32:7c:b4:0b:46:2b:a4:a1:be:62:d0:47:05:66:24:86:19:
25:c7:60:fe:6f:6e:11:25:e5:b0:dc:a1:f3:ba:92:4a:25:67:
7d:50:68:60:6c:e9:e2:0a:62:fc:71:fa:bc:e2:56:c1:ac:08:
1e:10:42:95:f0:41:6e:29:0c:53:4a:d3:e3:95:12:13:9a:17:
47:1a:19:54:16:72:1f:bf:cf:4d:a6:73:77:25:4a:44:89:42:
96:9e:21:8e:69:d9:2c:9f:16:d8:7c:4a:53:ba:81:64:45:14:
d7:49:3a:b0:4b:e2:35:6b:20:27:d1:54:0b:37:66:89:c4:68:
a7:a8:27:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:53 2024 by rpki-client on console-ams.rpki-client.org