Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/0E13F724C20B11EE94453C87C4F9AE02.roa
File: 0E13F724C20B11EE94453C87C4F9AE02.roa (raw, json)
Hash identifier: xnAx5cBU/CmcNkUSRgzmpHFQScPlQSMUOWpBeDMJ08Q=
Subject key identifier: A3:01:3F:7C:B1:13:44:BB:6B:66:2F:A9:C9:4E:B6:C4:BF:B8:53:76
Certificate issuer: /CN=A91D366A/serialNumber=B067C6BB70DF0DC04CE77F7C8D76706A49F6CB85
Certificate serial: 0169
Authority key identifier: B0:67:C6:BB:70:DF:0D:C0:4C:E7:7F:7C:8D:76:70:6A:49:F6:CB:85
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/0E13F724C20B11EE94453C87C4F9AE02.roa
Signing time: Fri 02 Feb 2024 20:38:43 +0000
ROA not before: Fri 02 Feb 2024 20:38:43 +0000
ROA not after: Thu 31 Oct 2024 00:00:00 +0000
asID: 147287
IP address blocks: 203.18.98.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 20 Feb 2024 20:56:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 361 (0x169)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D366A/serialNumber=B067C6BB70DF0DC04CE77F7C8D76706A49F6CB85
Validity
Not Before: Feb 2 20:38:43 2024 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=65bd52d3-df27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e0:70:08:76:35:d7:e0:94:c8:1d:2d:17:b2:
8a:de:bf:c8:1e:bb:60:0a:e8:aa:db:d8:fe:d7:0d:
ea:a1:d8:b1:5f:14:98:5e:48:f2:db:5d:36:01:70:
5f:27:ae:e4:e0:87:44:12:9a:f4:f4:b7:81:fe:fd:
a1:32:30:ed:a1:d2:a1:6b:fc:de:57:6e:36:e0:53:
f6:ca:37:c0:7b:c5:be:a6:52:de:a6:55:ef:a0:20:
05:73:52:33:31:e8:c3:19:d1:89:33:4e:6a:00:40:
5d:dc:37:09:00:86:0f:72:e0:84:dd:9d:60:e6:a1:
59:08:9f:9a:40:cf:c1:cb:09:0b:34:bd:a3:e1:c2:
37:9b:e4:07:9c:3b:a6:10:61:b1:83:f3:9b:e3:c4:
13:eb:c3:e2:4c:f6:bb:2a:e3:d3:2d:15:75:c9:c4:
eb:8b:7e:30:42:4e:b1:1c:25:05:db:db:bb:d1:78:
06:38:85:56:c9:73:56:74:fc:c4:4b:ce:6a:cd:a4:
09:e0:a4:d1:dc:6c:1d:42:73:32:0b:33:d9:e8:bf:
bf:16:eb:b5:5b:53:4f:79:e9:72:20:c5:d8:c8:a7:
3e:98:b4:8a:f5:6f:9f:d5:7a:21:4c:fe:dc:78:b5:
c5:06:02:89:53:3d:e6:d8:25:ac:89:d1:26:db:81:
de:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:01:3F:7C:B1:13:44:BB:6B:66:2F:A9:C9:4E:B6:C4:BF:B8:53:76
X509v3 Authority Key Identifier:
keyid:B0:67:C6:BB:70:DF:0D:C0:4C:E7:7F:7C:8D:76:70:6A:49:F6:CB:85
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/0E13F724C20B11EE94453C87C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.18.98.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:8e:14:cf:4f:95:38:1f:e6:fa:58:fc:ee:a1:da:c3:a6:10:
b2:de:a6:e5:b8:5a:0d:f1:a8:0f:51:2e:fc:6d:5c:02:29:f7:
9f:f9:4f:8b:4a:f2:29:47:99:aa:da:99:23:38:5a:ef:40:c8:
a8:c4:1b:62:9b:0c:10:34:67:ff:dc:26:af:45:ce:68:4d:54:
00:0f:4c:b7:66:c7:76:40:c0:70:35:6e:70:ea:8f:9e:6f:31:
af:37:44:b3:78:75:e3:23:19:45:e9:e7:ec:96:2b:41:ed:f1:
ef:74:db:8f:c3:a7:8b:61:c9:bc:db:cb:45:08:aa:e4:3d:83:
42:1c:f1:b0:1a:40:ed:44:14:28:aa:e2:b8:a3:e3:a0:16:1d:
88:d9:dc:04:5e:41:01:45:ec:7f:57:ca:47:45:c8:0d:ee:cb:
f2:2a:5a:91:9f:b9:c1:06:d6:bc:9d:01:de:e8:c9:f6:83:8b:
74:51:52:06:8f:00:16:09:66:7e:fe:68:9f:14:a5:4c:6c:f7:
d8:30:13:47:ef:be:73:5e:f7:09:5c:0c:ef:ff:66:dd:d5:9b:
f7:59:27:d5:f6:4e:6b:55:0d:c1:74:dc:0b:1c:24:90:67:9c:
79:8d:a5:70:b1:29:ab:93:e0:8c:82:c7:de:6e:ce:f1:e7:b9:
d5:2e:99:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 21 00:23:08 2024 by rpki-client on console-fra.rpki-client.org