Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/5A1871661D6111EF99DFD286C4F9AE02.roa
File: 5A1871661D6111EF99DFD286C4F9AE02.roa (raw, json)
Hash identifier: X6VLEYdu7rYlMq2S5VPho4CD1DtbkYVqlc9VDVKg2/4=
Subject key identifier: 57:28:9F:EA:56:50:9E:83:6F:98:6F:20:D2:B0:D8:9B:A0:FF:97:3C
Certificate issuer: /CN=A91DC5BE/serialNumber=ADA8AED32B15B87E611252D29D1E1D5BDE581646
Certificate serial: 34A8
Authority key identifier: AD:A8:AE:D3:2B:15:B8:7E:61:12:52:D2:9D:1E:1D:5B:DE:58:16:46
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/5A1871661D6111EF99DFD286C4F9AE02.roa
Signing time: Wed 29 May 2024 02:15:43 +0000
ROA not before: Wed 29 May 2024 02:15:43 +0000
ROA not after: Mon 31 Mar 2031 00:00:00 +0000
asID: 4608
IP address blocks: 202.12.29.0/24 maxlen: 24
203.119.76.0/23 maxlen: 24
203.119.100.0/22 maxlen: 24
203.119.104.0/21 maxlen: 24
2001:dc0::/32 maxlen: 32
2001:dc0:2000::/35 maxlen: 35
2001:dc0:4000::/34 maxlen: 35
2001:dc0:8000::/33 maxlen: 33
2001:dc0:8000::/34 maxlen: 35
2001:dc0:e000::/35 maxlen: 35
2001:dd8:8::/45 maxlen: 45
2001:dd8:8::/48 maxlen: 48
2001:dd8:9::/48 maxlen: 48
2001:dd8:a::/48 maxlen: 48
2001:dd8:b::/48 maxlen: 48
2001:dd8:c::/48 maxlen: 48
2001:dd8:d::/48 maxlen: 48
2001:dd8:f::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 12 Jul 2024 05:17:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13480 (0x34a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DC5BE/serialNumber=ADA8AED32B15B87E611252D29D1E1D5BDE581646
Validity
Not Before: May 29 02:15:43 2024 GMT
Not After : Mar 31 00:00:00 2031 GMT
Subject: CN=66568fcf-ce60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:e7:b6:47:c3:26:6a:49:0d:97:ba:af:da:04:
a2:11:bd:f3:ec:9b:74:68:1b:5b:60:eb:63:1e:fb:
3a:30:48:6c:c6:e8:3b:db:96:88:23:70:8d:80:ed:
e3:40:7c:4a:03:b7:8f:9b:ed:17:23:08:93:7a:93:
bb:e9:87:e6:3d:24:07:a6:01:b9:8b:b2:8e:f8:2e:
26:bc:d7:9a:bd:ca:4f:f0:a3:6c:4c:ad:a6:80:8d:
a4:84:8f:86:7a:be:5a:4e:25:d5:09:0b:c9:91:26:
20:bc:71:37:57:18:de:b6:51:15:f8:a9:64:d3:e5:
cf:8d:a3:40:aa:cc:8d:ba:dd:a7:a0:04:13:13:37:
aa:d6:37:2e:60:f0:6d:f7:9d:d3:0c:d4:b6:98:da:
8f:a4:b6:a4:c5:05:c7:0b:b6:04:12:60:f4:87:89:
b1:1c:8b:dc:f8:75:f4:ab:5f:34:41:f0:2a:95:ee:
fe:13:b2:1d:00:84:bf:aa:2d:1c:2c:f5:3a:bb:cb:
98:9b:c1:8c:ac:93:5a:a7:4e:d2:fc:08:ab:db:ff:
2f:5e:fc:4e:f0:d8:b8:c4:6a:04:55:a2:9d:d4:93:
7c:a6:bb:db:91:91:eb:c9:b2:d2:aa:4e:80:2a:10:
7f:56:66:ef:27:3e:bb:dd:04:d7:86:fa:11:ab:fe:
50:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:28:9F:EA:56:50:9E:83:6F:98:6F:20:D2:B0:D8:9B:A0:FF:97:3C
X509v3 Authority Key Identifier:
keyid:AD:A8:AE:D3:2B:15:B8:7E:61:12:52:D2:9D:1E:1D:5B:DE:58:16:46
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/5A1871661D6111EF99DFD286C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.12.29.0/24
203.119.76.0/23
203.119.100.0-203.119.111.255
IPv6:
2001:dc0::/32
2001:dd8:8::/45
Signature Algorithm: sha256WithRSAEncryption
b3:3d:20:32:88:f7:91:78:d5:4c:96:61:7b:73:01:49:cf:2e:
b9:a0:b9:0e:d8:3b:58:99:e0:11:7f:89:5a:b6:68:11:95:16:
36:3f:26:a5:a0:e9:ac:fa:56:cd:37:b0:8f:c6:c6:77:bc:d8:
91:55:ee:cb:f9:85:6e:3e:7b:fd:77:ea:7d:61:04:86:2d:8e:
43:c6:4c:04:24:a4:4d:cc:c4:80:c6:44:1f:7a:c5:0e:a0:54:
8f:35:52:7b:0a:17:6e:71:58:0b:ce:92:44:71:f8:0a:a8:96:
ab:e7:ce:82:97:ff:3d:96:26:af:e3:ad:60:d8:c5:68:91:21:
93:c6:67:8a:8a:63:93:cb:29:88:3b:0f:0b:28:0c:e2:c8:f0:
ed:24:46:b8:04:37:7b:ca:95:eb:11:02:43:80:98:7d:3a:b7:
00:54:ff:bc:d5:0b:a8:28:3d:4b:ed:09:8e:4a:e9:df:be:8a:
9f:e9:0e:b9:65:de:38:c0:21:cd:e9:61:a9:8f:60:fa:86:ae:
33:e0:f9:08:5b:32:28:58:38:89:5d:1c:92:df:b1:28:47:58:
6d:f4:a3:39:92:12:24:e6:69:bd:38:df:58:64:75:97:07:86:
d0:49:7d:55:59:c0:dc:c9:68:09:af:bf:c4:e4:dd:f8:7d:4e:
2f:62:c9:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 12 06:06:59 2024 by rpki-client on console-ams.rpki-client.org