Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/78841A1EC45111EF9D399128C4F9AE02.roa
File: 78841A1EC45111EF9D399128C4F9AE02.roa (raw, json)
Hash identifier: hmET98jSbY84HWw1Ff069kemOUaLOUc6xLuKVO1YIE4=
Subject key identifier: 6C:E4:26:04:EB:22:3F:50:B1:22:3A:07:34:C6:4A:18:A8:46:0B:33
Certificate issuer: /CN=A91CEAE0/serialNumber=9DF4FEDFF92A9E7F6E02BFC054AD339853D9DD32
Certificate serial: 9F
Authority key identifier: 9D:F4:FE:DF:F9:2A:9E:7F:6E:02:BF:C0:54:AD:33:98:53:D9:DD:32
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/78841A1EC45111EF9D399128C4F9AE02.roa
Signing time: Fri 27 Dec 2024 12:52:47 +0000
ROA not before: Fri 27 Dec 2024 12:52:47 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 214189
IP address blocks: 160.22.155.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 08 Feb 2025 13:38:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159 (0x9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CEAE0
Validity
Not Before: Dec 27 12:52:47 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=676ea31e-2992
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:8f:f6:bc:32:73:63:4c:26:96:4a:db:ba:12:
4a:02:8a:71:ed:43:56:36:b2:b4:2d:35:c9:52:f9:
69:aa:3a:08:d1:80:ad:af:16:3e:6e:9d:ea:8d:fb:
42:e5:3a:e2:6b:b2:e9:95:54:83:51:a6:de:05:9b:
93:be:04:88:f1:d9:e0:b2:b4:34:cc:5d:fe:94:c3:
02:86:cc:e1:8a:00:d6:b9:3b:8c:74:87:b6:cb:d5:
1c:66:1c:e8:31:7b:d5:46:8a:cf:4c:98:25:ba:39:
86:7a:a1:a2:6d:36:e0:46:06:11:30:2b:85:d3:a8:
30:89:cc:43:30:e0:39:ac:75:7b:97:1f:4f:dc:3d:
78:b7:4f:1c:9b:f3:28:ce:75:5d:a6:78:d3:30:5b:
70:57:33:3d:7f:76:23:d4:ca:09:c1:1b:38:1c:d3:
bf:cf:cc:8c:98:05:54:d8:42:75:19:cc:13:00:bb:
dc:04:0a:ad:e7:57:b8:3b:4d:a8:b5:70:61:59:0c:
45:28:fa:cd:e7:e9:e2:29:d6:de:e3:0e:9d:76:20:
5e:5c:c8:b1:3e:df:01:ae:a0:b4:61:07:5d:57:ce:
c0:a0:ce:2d:e6:12:73:43:75:d4:39:d9:71:b0:11:
1f:e5:18:9d:f8:f9:bc:d9:4d:46:25:04:f4:f1:c7:
a3:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:E4:26:04:EB:22:3F:50:B1:22:3A:07:34:C6:4A:18:A8:46:0B:33
X509v3 Authority Key Identifier:
keyid:9D:F4:FE:DF:F9:2A:9E:7F:6E:02:BF:C0:54:AD:33:98:53:D9:DD:32
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/78841A1EC45111EF9D399128C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.22.155.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:ed:62:df:5d:3d:51:1c:13:c0:cb:42:f2:07:69:d9:5b:68:
cf:69:1b:ea:d4:7c:2e:3d:73:bd:c9:44:31:1e:f6:d6:6a:b5:
2d:da:5b:95:3d:a6:f8:76:8f:0a:57:1e:d3:36:68:0c:8c:c4:
13:5b:d3:98:66:50:0b:68:4a:af:b3:cc:1f:64:92:28:84:c1:
21:d3:ee:23:77:02:cb:4e:9a:96:3a:fc:b1:7a:45:0d:8e:a5:
48:91:1b:71:6e:4a:b6:33:e5:ab:36:c3:d8:e3:00:1a:50:a0:
48:db:ba:03:67:ad:1e:67:dc:76:e7:ee:48:2b:bd:95:f2:76:
12:4f:96:db:d2:ae:31:8d:8e:34:44:7b:f2:eb:24:f5:b0:21:
f8:be:36:33:a7:45:bd:50:69:ed:b7:99:3f:e5:cb:61:ab:12:
3b:b4:44:d0:c1:cb:a6:43:5a:30:17:0e:3b:a4:a7:c3:92:c3:
4f:86:c4:fa:c7:8f:35:d7:25:ca:95:57:cc:03:ec:30:86:7b:
30:96:09:c7:43:11:03:85:10:29:5a:cd:52:8e:15:3f:70:36:
eb:ee:03:f1:c4:47:b4:a7:d7:f3:65:b4:3c:71:e1:09:b6:ef:
9a:ba:6b:f4:b5:3c:26:02:73:63:fb:5c:0d:30:e9:cb:d1:cd:
9e:e2:ef:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 18:21:26 2025 by rpki-client