Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/CAD350DA070111EBA5091979C4F9AE02.roa
File: CAD350DA070111EBA5091979C4F9AE02.roa (raw, json)
Hash identifier: 10pIS4s8Ix6aZGvkJbvCpa4jO4i/9MTOZCcBg/rAveY=
Subject key identifier: 29:EF:9A:C0:64:86:D4:B1:C4:D8:5A:8B:E9:8A:0D:C3:02:3A:71:69
Certificate issuer: /CN=A91E7E45/serialNumber=C4829B6C07FD804DF0925CFFC161C6702807A026
Certificate serial: 0906
Authority key identifier: C4:82:9B:6C:07:FD:80:4D:F0:92:5C:FF:C1:61:C6:70:28:07:A0:26
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIKbbAf9gE3wklz_wWHGcCgHoCY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/CAD350DA070111EBA5091979C4F9AE02.roa
Signing time: Wed 28 Feb 2024 21:29:41 +0000
ROA not before: Wed 28 Feb 2024 21:29:41 +0000
ROA not after: Thu 01 May 2025 00:00:00 +0000
asID: 18013
IP address blocks: 210.16.122.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 19 Mar 2024 15:21:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2310 (0x906)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E7E45/serialNumber=C4829B6C07FD804DF0925CFFC161C6702807A026
Validity
Not Before: Feb 28 21:29:41 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=65dfa5c5-83de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:4d:a8:62:0b:d6:67:27:23:2d:df:80:cb:7a:
3b:a1:30:f4:c0:89:0e:47:1b:57:05:dd:91:fa:7e:
ed:50:10:66:b2:89:b6:51:7e:d7:3e:ae:fe:33:ec:
bb:9b:82:c4:af:8d:96:4d:f7:2c:64:4c:13:d2:0c:
92:bd:3e:8e:36:bc:69:8b:41:2d:24:40:3a:bc:d6:
ce:96:4d:03:5f:1d:0b:0f:d0:9c:20:8a:0e:39:02:
52:31:b7:4c:0e:e7:87:2b:cb:ed:19:a9:69:de:54:
82:81:b9:2c:f4:d9:fe:91:62:5b:58:03:43:73:db:
2b:4d:32:83:4f:74:fb:95:d0:21:62:e6:00:64:6b:
fd:5c:36:c9:74:45:e2:81:63:65:54:fa:51:fc:f5:
57:10:1f:e9:63:8f:c0:69:8b:d7:85:ea:22:ef:a0:
2c:b4:3c:a6:d5:39:0d:41:cd:3c:61:62:35:17:28:
11:2b:9e:42:a2:9c:1e:7e:2d:32:b7:60:33:53:cd:
27:bf:42:21:a4:dd:e8:e1:d2:de:48:85:4f:22:11:
47:1d:e8:db:27:03:bb:f6:da:82:3b:ab:50:71:10:
ab:91:0b:0b:49:7a:bf:54:36:a2:56:8d:c0:f4:f0:
e0:58:8c:3e:35:44:0c:b3:3b:90:c7:36:27:8b:df:
f4:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:EF:9A:C0:64:86:D4:B1:C4:D8:5A:8B:E9:8A:0D:C3:02:3A:71:69
X509v3 Authority Key Identifier:
keyid:C4:82:9B:6C:07:FD:80:4D:F0:92:5C:FF:C1:61:C6:70:28:07:A0:26
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIKbbAf9gE3wklz_wWHGcCgHoCY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/CAD350DA070111EBA5091979C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
210.16.122.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:c2:41:3c:84:13:0b:2e:c3:ce:35:cb:e7:d8:4b:3f:16:f4:
1e:4f:4a:a6:42:3c:eb:4b:61:1b:d5:42:32:34:c1:6e:2d:b2:
66:eb:da:26:97:86:b8:e7:c5:39:d7:e7:39:d0:65:82:96:1a:
ea:fb:a4:ce:ba:09:65:bb:f6:c2:13:a3:27:4d:31:ef:9b:2d:
7d:00:a4:67:77:7c:be:1e:a3:31:95:70:4c:e7:c8:b7:18:49:
66:81:7e:34:63:5e:bd:a4:16:3d:0b:c7:4f:2a:18:61:97:f3:
52:0b:04:b3:dc:13:7f:78:7f:72:78:b9:50:80:11:6a:13:2f:
21:0e:52:f8:b7:93:9b:69:dc:25:89:63:51:2f:ea:16:21:49:
bb:1d:b1:5c:10:c3:e8:40:59:e9:d3:73:18:a4:be:95:ce:f3:
02:fc:66:50:82:53:1b:42:78:b6:8a:76:15:3d:d6:cc:39:07:
81:0c:a1:09:f8:54:39:2f:ba:b7:d1:03:f9:15:b1:8b:df:7e:
c9:97:2a:b6:f6:7e:06:81:c1:d1:fe:0f:8f:96:04:50:61:02:
2a:8d:4a:1f:a9:a3:32:b7:b6:4b:f3:21:30:20:ce:11:cc:71:
68:4b:0c:42:ca:f5:eb:f5:5b:5f:25:39:94:1a:c6:d4:f6:55:
41:61:8d:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:46 2024 by rpki-client on console-fra.rpki-client.org