Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/74FC9A60611E11EF80D08B44C4F9AE02.roa
File: 74FC9A60611E11EF80D08B44C4F9AE02.roa (raw, json)
Hash identifier: cSntP2GG5qa9qZUrRw1SwMN3CWUoiaG1f111qf+iZZI=
Subject key identifier: 8B:BE:05:F1:8E:A3:8D:15:76:B8:3E:96:A2:55:51:DF:66:E3:44:00
Certificate issuer: /CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34
Certificate serial: 354D
Authority key identifier: 4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/74FC9A60611E11EF80D08B44C4F9AE02.roa
Signing time: Fri 23 Aug 2024 07:08:11 +0000
ROA not before: Fri 23 Aug 2024 07:08:11 +0000
ROA not after: Sun 02 Mar 2025 00:00:00 +0000
asID: 134489
IP address blocks: 116.90.115.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 28 Oct 2024 12:36:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13645 (0x354d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34
Validity
Not Before: Aug 23 07:08:11 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=66c8355b-77a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:bb:b5:dd:17:f0:14:39:1f:17:aa:e1:8c:06:
1a:14:f2:8a:0e:bf:c4:93:58:2d:de:b6:b8:98:d6:
96:87:50:9d:06:85:fe:a3:92:2e:d3:44:8f:52:c8:
9c:86:a4:8b:f9:8f:ae:1e:97:fd:04:e7:43:9f:e4:
76:b8:d8:b6:61:78:df:cd:b8:d0:f0:05:a0:69:db:
20:dc:76:c2:cd:59:27:57:29:bf:48:41:06:42:3b:
6a:73:7e:6e:e4:aa:6a:da:f1:70:eb:be:fb:a6:1a:
8f:89:b2:9b:d3:4c:16:98:dd:96:75:85:e3:d5:e6:
42:53:36:ff:86:b2:2c:cc:7f:85:97:50:6b:60:c7:
1a:49:8b:3a:31:75:ac:56:ed:97:5a:bf:bf:23:3f:
8e:c5:bc:b2:c5:53:8c:71:32:ca:46:10:0f:42:dd:
a6:da:e4:56:4c:d5:e1:de:73:4c:07:bc:ea:79:be:
3b:6d:c2:b2:01:e4:5a:f5:69:73:eb:3a:cc:f7:da:
a0:77:a4:4d:84:52:d3:83:21:2a:a2:0b:74:64:72:
41:75:06:5f:90:9c:63:b1:89:d6:41:e5:a8:fd:85:
96:84:c8:d8:94:c6:f8:16:ff:67:2a:d2:b1:5e:bd:
6b:41:e3:78:af:d8:25:2c:9c:16:6d:cc:01:39:ef:
94:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:BE:05:F1:8E:A3:8D:15:76:B8:3E:96:A2:55:51:DF:66:E3:44:00
X509v3 Authority Key Identifier:
keyid:4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/74FC9A60611E11EF80D08B44C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
116.90.115.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:26:af:dc:61:45:bf:ed:c7:b5:e4:a8:b8:08:dc:ee:50:cd:
e2:92:81:f5:c4:92:29:b6:12:11:cf:f5:da:14:87:b5:1a:e6:
3b:5f:d6:97:4f:39:76:6e:60:55:91:c7:cc:58:05:69:3a:e1:
d2:7f:1c:13:83:ff:df:28:62:7f:f4:73:33:69:90:50:d2:f5:
cf:c7:14:bd:91:05:6e:b5:22:4b:5b:db:34:03:b7:cc:8a:4b:
9c:a9:ed:e4:74:ed:1b:dd:a3:dd:f0:5d:42:e3:80:d8:5c:2c:
01:9b:67:cc:29:3a:3b:14:02:7c:88:69:7f:84:63:81:22:a1:
90:5a:2a:f3:b7:86:0d:61:b1:90:73:8d:23:e7:01:ae:e9:93:
59:29:15:52:13:c2:03:1f:11:bb:ef:9b:eb:b6:90:67:a4:9e:
10:63:19:19:e9:4a:e7:ed:d3:b4:b9:7f:cd:00:c2:a7:45:bc:
75:99:00:4d:8a:b6:e9:c1:b5:ee:7a:d2:42:d8:8f:8e:dd:35:
44:ad:9b:9e:c7:7a:da:6c:99:b4:4a:1e:df:02:88:14:49:90:
0b:72:d1:5b:a9:65:5c:97:c3:8b:80:24:82:49:d4:8c:d2:a0:
f9:ec:50:6c:43:2e:40:5b:19:a6:39:61:2a:ad:70:d6:64:43:
14:41:52:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 28 14:24:42 2024 by rpki-client on console-ams.rpki-client.org