Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6BB9/6BDEAA7E390C11EBB2181D63C4F9AE02/E0C0044C01A011EDB7451815C4F9AE02.roa
File: E0C0044C01A011EDB7451815C4F9AE02.roa (raw, json)
Hash identifier: 8h7i8Spw0lxa7+dYNFBfdkUEbw/IHeguIezkHPeRq+c=
Subject key identifier: 9A:06:61:6A:83:BF:85:DC:21:38:BA:30:40:5C:1D:4E:91:A0:49:DE
Certificate issuer: /CN=A91C6BB9/serialNumber=C79112C7C5AC36583221D1F94675196C2136EABE
Certificate serial: 0675
Authority key identifier: C7:91:12:C7:C5:AC:36:58:32:21:D1:F9:46:75:19:6C:21:36:EA:BE
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5ESx8WsNlgyIdH5RnUZbCE26r4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C6BB9/6BDEAA7E390C11EBB2181D63C4F9AE02/E0C0044C01A011EDB7451815C4F9AE02.roa
Signing time: Wed 05 Jun 2024 00:13:24 +0000
ROA not before: Wed 05 Jun 2024 00:13:24 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 17763
IP address blocks: 203.12.28.0/24 maxlen: 24
203.18.216.0/24 maxlen: 24
203.18.217.0/24 maxlen: 24
203.18.218.0/24 maxlen: 24
203.18.219.0/24 maxlen: 24
203.18.220.0/24 maxlen: 24
203.18.221.0/24 maxlen: 24
203.18.222.0/24 maxlen: 24
203.18.223.0/24 maxlen: 24
203.25.32.0/24 maxlen: 24
203.25.33.0/24 maxlen: 24
203.25.34.0/24 maxlen: 24
203.25.35.0/24 maxlen: 24
203.28.70.0/24 maxlen: 24
203.28.71.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 20 Nov 2024 21:18:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1653 (0x675)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C6BB9/serialNumber=C79112C7C5AC36583221D1F94675196C2136EABE
Validity
Not Before: Jun 5 00:13:24 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=665fada3-450a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:e4:c2:0f:76:f3:a3:23:fa:9f:b4:4f:a2:49:
07:12:39:7e:18:88:c9:cb:ee:9b:bd:c4:50:3a:0e:
29:c5:59:55:59:ab:53:65:f6:e4:61:3f:e2:1f:eb:
b2:dd:5d:66:9c:a9:73:e2:72:3c:ef:ae:ca:84:27:
55:7e:fd:29:6e:4d:78:e0:d2:54:89:8c:c0:ec:22:
f4:b1:aa:5b:82:fe:f7:63:c8:a8:4b:9a:58:0c:fe:
45:c5:83:5e:2b:57:f1:79:6e:90:c4:2e:90:36:3b:
5d:12:45:0c:f2:64:32:4c:82:69:99:83:a5:07:5b:
5b:53:61:c1:09:83:95:b8:af:ae:45:59:c0:a2:0f:
0f:17:64:1c:85:d3:d9:7a:e5:78:76:5e:95:28:ff:
3b:2b:6a:38:dc:4c:f0:6e:dd:f1:8a:57:c0:89:92:
6c:b5:34:f9:1e:e0:4e:b1:73:63:dd:b6:e3:7c:ae:
d5:b9:2a:6b:4e:ae:48:5f:b2:ed:9a:09:03:11:7a:
68:6d:d3:7c:8d:67:33:6a:5b:12:22:ce:d0:0e:9a:
aa:76:ab:12:28:da:6d:58:7e:ff:9a:42:7e:24:f7:
87:41:f5:6d:64:f8:51:33:e6:01:23:3c:da:f7:20:
28:30:9a:0d:57:b4:0e:0e:92:60:2e:2c:35:e2:fd:
85:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:06:61:6A:83:BF:85:DC:21:38:BA:30:40:5C:1D:4E:91:A0:49:DE
X509v3 Authority Key Identifier:
keyid:C7:91:12:C7:C5:AC:36:58:32:21:D1:F9:46:75:19:6C:21:36:EA:BE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C6BB9/6BDEAA7E390C11EBB2181D63C4F9AE02/x5ESx8WsNlgyIdH5RnUZbCE26r4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5ESx8WsNlgyIdH5RnUZbCE26r4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6BB9/6BDEAA7E390C11EBB2181D63C4F9AE02/E0C0044C01A011EDB7451815C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.12.28.0/24
203.18.216.0/21
203.25.32.0/22
203.28.70.0/23
Signature Algorithm: sha256WithRSAEncryption
9c:92:b4:4d:d6:d6:15:0f:d2:ad:87:f6:e2:bf:1e:f7:33:d8:
e1:4e:98:45:fa:72:85:c5:e2:13:34:05:80:dd:2f:41:55:6a:
7b:d3:1c:62:14:5a:a7:a6:58:11:b2:20:65:43:36:a8:1f:32:
9e:0d:4c:62:59:be:3a:c1:a5:6e:44:1a:7b:67:e8:93:1c:82:
89:19:1f:f5:83:9f:df:2b:b9:75:cf:f4:8c:ca:0a:8e:3c:02:
36:5b:aa:e9:83:de:52:3d:c1:e1:51:af:65:f7:51:a3:1a:36:
41:53:e0:b3:7f:7b:f7:70:5f:6c:be:f9:4b:71:f8:eb:47:41:
10:79:fc:f8:5d:bf:98:7d:2e:c2:b8:86:8a:f8:56:cb:bc:5b:
97:a2:dd:56:49:89:15:05:c5:5f:ee:8b:af:db:7a:a9:88:b0:
d2:b3:62:9f:2e:87:21:20:51:67:2f:be:71:60:0e:eb:c1:91:
7c:ff:e5:7f:d4:a0:d7:5d:c7:99:2f:0e:ce:04:09:86:84:c6:
ce:10:0e:c6:b6:58:26:0b:66:3e:0a:e8:d4:4a:52:e1:0f:99:
ea:3b:ec:f3:0b:31:bc:70:37:4f:0d:44:b7:93:d9:e8:fc:1a:
07:56:19:63:70:2f:99:e3:0e:44:96:43:ae:65:ce:23:e7:5f:
a3:fa:e0:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 20 23:15:24 2024 by rpki-client on console-fra.rpki-client.org