Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/368DABCED70311EF87D57E6DC4F9AE02.roa
File: 368DABCED70311EF87D57E6DC4F9AE02.roa (raw, json)
Hash identifier: UemZ/LzrboUoPAHISTiTnmqWiJgcTvb0UzR6bSQS7SE=
Subject key identifier: 8B:50:31:51:47:D1:46:DC:DF:51:D1:0C:70:7E:43:FB:36:1E:ED:09
Certificate issuer: /CN=A91C167F/serialNumber=C7338DF1B768C05074CDAED0FDB1A4C14ADFB8B5
Certificate serial: CE
Authority key identifier: C7:33:8D:F1:B7:68:C0:50:74:CD:AE:D0:FD:B1:A4:C1:4A:DF:B8:B5
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xzON8bdowFB0za7Q_bGkwUrfuLU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/368DABCED70311EF87D57E6DC4F9AE02.roa
Signing time: Mon 20 Jan 2025 07:50:28 +0000
ROA not before: Mon 20 Jan 2025 07:50:28 +0000
ROA not after: Thu 01 May 2025 00:00:00 +0000
asID: 150696
IP address blocks: 157.15.135.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 23 Jan 2025 09:35:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 206 (0xce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C167F
Validity
Not Before: Jan 20 07:50:28 2025 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=678e0043-e0b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e8:c0:ee:62:c0:84:28:a8:a9:a4:ca:3a:45:
6f:b8:0c:57:92:6e:56:32:a9:fc:7d:3c:a8:53:5d:
4a:c8:a9:bd:aa:c5:70:5c:3d:98:83:4a:0f:c2:2b:
14:5a:1b:aa:31:b2:60:97:6b:b2:24:74:53:b2:f7:
97:45:2c:ab:96:bd:93:88:39:da:4c:a8:aa:a2:de:
1f:7a:f1:62:47:9c:ec:3d:6e:11:d8:c5:72:06:26:
ba:80:1b:15:1d:f5:d7:18:23:24:e3:50:1b:ee:fa:
48:f2:ff:9f:46:59:1e:7f:99:ef:31:7e:ce:c8:60:
d9:b4:2e:4b:bc:17:16:93:7f:85:a2:20:39:f8:79:
0a:88:8f:4c:dd:68:49:f7:b3:4e:fb:d0:03:92:95:
74:e2:e4:4a:16:c7:00:a6:2d:e1:fc:27:9e:00:df:
04:e7:d1:5e:9e:d5:ac:7d:0b:0e:ce:1b:b1:89:58:
a9:90:84:c9:68:8e:ea:3b:c8:0c:72:9c:c0:17:68:
43:60:d2:db:52:ee:77:25:04:ee:0f:84:f7:ea:3e:
f1:15:f5:1c:08:8e:3b:26:6d:f4:7b:4a:35:6f:46:
42:3a:e7:be:9a:c3:e6:e8:68:23:20:0f:52:4d:9a:
27:31:05:da:39:71:bd:7c:ba:35:56:da:e2:ee:8e:
2f:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:50:31:51:47:D1:46:DC:DF:51:D1:0C:70:7E:43:FB:36:1E:ED:09
X509v3 Authority Key Identifier:
keyid:C7:33:8D:F1:B7:68:C0:50:74:CD:AE:D0:FD:B1:A4:C1:4A:DF:B8:B5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/xzON8bdowFB0za7Q_bGkwUrfuLU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xzON8bdowFB0za7Q_bGkwUrfuLU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/368DABCED70311EF87D57E6DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.15.135.0/24
Signature Algorithm: sha256WithRSAEncryption
63:fa:a3:78:fe:65:d0:64:60:f6:2f:ec:56:5d:0f:b7:58:d9:
bf:0c:05:aa:ea:99:dd:4a:99:8f:1e:e8:6c:5d:bb:d3:db:6f:
40:86:0d:83:0d:56:e2:1d:af:1a:3e:4c:41:39:bc:0f:67:fb:
18:48:3b:35:90:a1:56:d6:04:df:d9:62:bd:a4:58:ef:2a:dd:
8a:19:77:b2:1c:f7:16:87:63:c6:80:4e:69:0b:e7:45:06:e3:
c4:97:57:ac:5b:87:16:eb:fa:89:02:0f:84:0c:d6:fa:4f:1d:
ff:a4:10:61:fb:41:22:e8:b0:e3:b0:1c:cf:a9:ad:f5:a5:e4:
c5:e5:82:d9:e3:48:75:af:97:b3:fb:00:1a:e4:aa:88:e4:f3:
11:e7:f4:03:d9:9a:81:76:04:97:02:bd:c4:dc:b9:74:02:4c:
52:22:ba:9c:a6:9b:74:1b:df:a3:3b:7a:b4:11:93:15:ac:df:
c3:a7:13:ee:fa:94:d2:49:f3:9b:6a:f7:86:b1:75:20:aa:be:
e5:a0:d9:2d:a7:93:7d:93:0c:92:1e:da:53:81:ac:07:db:05:
ae:73:2c:72:d6:8d:6d:26:56:ba:e5:7b:d3:64:10:ff:83:58:
5d:66:04:0f:72:8c:5c:db:82:09:87:14:67:34:97:a0:93:12:
4e:cd:71:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 23:49:14 2025 by rpki-client