Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/99F5CF76224411EF97B2C617C4F9AE02.roa
File: 99F5CF76224411EF97B2C617C4F9AE02.roa (raw, json)
Hash identifier: 3o/xZ+quSisbgaI70PXspW/gnZPDHXOfhYCKfD0EefM=
Subject key identifier: 81:36:00:F8:52:CD:AF:EE:87:95:24:F6:39:18:B1:4D:3C:C3:C2:A3
Certificate issuer: /CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34
Certificate serial: 3505
Authority key identifier: 4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/99F5CF76224411EF97B2C617C4F9AE02.roa
Signing time: Tue 04 Jun 2024 07:32:31 +0000
ROA not before: Tue 04 Jun 2024 07:32:31 +0000
ROA not after: Sun 02 Mar 2025 00:00:00 +0000
asID: 62164
IP address blocks: 116.90.101.0/24 maxlen: 24
116.90.105.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 01 Aug 2024 06:25:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13573 (0x3505)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34
Validity
Not Before: Jun 4 07:32:31 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=665ec30f-5a7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:d2:3f:f0:a8:73:3b:0c:c7:8b:0d:91:30:75:
69:c3:4e:74:7a:e0:7c:90:cd:52:10:bb:38:31:16:
80:48:14:0f:86:a6:07:42:b2:89:4e:a3:b4:2e:aa:
14:2e:b2:aa:b9:68:dc:df:cd:16:d2:17:9b:c9:76:
31:6f:7c:21:f0:1a:14:56:59:77:85:d7:86:2b:a6:
0f:f6:b8:03:f1:cb:00:59:86:c9:77:50:4c:7f:21:
0f:25:c1:56:ed:e6:1c:9a:68:d8:c1:ff:dd:ed:7c:
5a:5a:88:b7:f6:96:0d:0e:e1:52:0a:c3:43:58:fe:
18:15:e0:8b:c8:1a:0b:e9:4b:a0:69:1f:e8:8d:f8:
e4:9a:df:27:06:be:44:36:ba:ea:31:e3:a8:95:b6:
cb:44:27:6f:d8:de:32:c6:4a:b6:50:a9:c6:fa:fa:
a3:27:81:03:72:62:03:5e:44:ae:cb:0f:70:2e:ee:
e9:23:a6:bf:65:0b:20:7b:4f:84:a5:85:ac:2e:17:
7c:f1:50:11:29:3d:c2:22:51:ca:9f:69:a5:dc:05:
95:93:cd:c4:0b:ef:f8:0f:74:4a:90:7f:95:1e:0c:
75:76:87:4d:34:6d:6e:de:3f:99:e4:38:1c:3e:40:
e3:83:fa:91:56:7e:37:b7:92:29:01:23:8c:2e:b1:
50:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:36:00:F8:52:CD:AF:EE:87:95:24:F6:39:18:B1:4D:3C:C3:C2:A3
X509v3 Authority Key Identifier:
keyid:4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/99F5CF76224411EF97B2C617C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
116.90.101.0/24
116.90.105.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:d6:82:a9:5d:07:ab:66:b4:4e:5c:e0:37:c0:54:ed:c5:78:
1c:0d:bf:a5:79:6a:02:aa:29:fa:d2:83:5c:90:11:f1:2a:b0:
00:fd:6f:72:56:82:13:71:c3:2b:14:5d:34:ae:67:27:a5:04:
89:6c:95:14:4c:a2:d1:48:9a:ab:0e:fc:2d:ad:a7:00:99:e4:
09:1c:a6:65:7a:f7:84:8f:8e:ea:29:22:e1:14:53:9c:56:41:
6e:4a:e1:e1:36:48:b1:a1:a9:56:a8:84:42:e1:18:b9:e2:a2:
6e:77:ee:ba:1a:9e:f3:6c:5e:6d:3b:9e:fb:6b:44:43:aa:81:
c2:74:5c:61:e3:8b:3b:16:30:e1:62:9b:46:b3:ad:06:45:8d:
48:8d:fa:65:73:1d:da:f0:d7:43:aa:55:73:0c:27:97:f5:f9:
af:b1:56:e2:f7:1e:7e:20:c9:a5:ba:24:60:44:c5:78:b2:5d:
e4:88:6a:d4:b7:c1:3e:fe:26:5c:02:97:85:cb:21:a3:3b:1d:
58:d1:26:29:4d:e8:73:92:26:b4:ac:3a:22:d5:4b:3c:ac:2a:
65:af:bd:ad:cd:9f:68:43:64:ff:9b:7e:4f:fb:3a:8e:ab:fa:
f8:1f:9f:4e:05:d1:25:54:c4:dd:82:6e:95:b6:cc:ec:6d:39:
90:e5:3b:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 1 08:35:33 2024 by rpki-client on console-fra.rpki-client.org