Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/005179483F3B11EEB8342C54C4F9AE02.roa
File: 005179483F3B11EEB8342C54C4F9AE02.roa (raw, json)
Hash identifier: ttnVfyqMUXku05iU26PP63JT4nkU0Nt4Yi+s037SK28=
Subject key identifier: DA:8B:78:D7:80:58:07:E3:EB:06:C8:4D:0F:19:34:CD:8D:1F:68:18
Certificate issuer: /CN=A91ECE62/serialNumber=89027890033D5D623BD4E43986E880F6AB138494
Certificate serial: 0A
Authority key identifier: 89:02:78:90:03:3D:5D:62:3B:D4:E4:39:86:E8:80:F6:AB:13:84:94
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/005179483F3B11EEB8342C54C4F9AE02.roa
Signing time: Sun 20 Aug 2023 09:21:54 +0000
ROA not before: Sun 20 Aug 2023 09:21:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9889
IP address blocks: 202.36.70.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 20 Aug 2023 09:24:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10 (0xa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91ECE62/serialNumber=89027890033D5D623BD4E43986E880F6AB138494
Validity
Not Before: Aug 20 09:21:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=64e1db31-1d13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:f2:ed:99:8f:1b:a7:19:c5:98:58:77:a9:0e:
4e:b6:75:25:d8:b5:5b:7c:64:1c:e7:95:60:7e:c6:
fe:47:08:05:5c:04:3b:44:c5:92:1a:ec:da:4d:95:
64:be:32:38:d1:9b:4f:b6:8e:1a:9e:31:60:ee:f5:
2f:ec:07:3e:8e:42:aa:a0:52:4c:54:91:55:bb:0f:
23:f1:02:ee:f1:62:e7:79:03:80:fb:77:93:e1:81:
57:8f:2d:a6:a7:c7:ee:80:40:10:55:07:f2:92:f5:
52:8a:76:8a:8a:78:d1:c3:11:98:6b:db:91:fd:97:
e9:84:30:26:f2:6f:4f:3a:6a:b6:2e:90:5e:63:d0:
75:06:6e:79:f6:bc:b1:97:c9:ea:7e:cf:34:94:d8:
96:94:19:93:86:e8:67:9c:de:a2:8e:d2:19:2c:6a:
92:b3:5a:14:c9:fc:e6:04:6a:b3:fd:04:bf:9b:cd:
60:1c:b7:1d:9d:fc:8a:53:4e:56:25:03:48:ff:ad:
06:65:20:4f:ed:41:27:ba:fa:64:c5:65:09:50:e3:
cd:30:8b:af:b0:23:32:e6:a8:07:b8:a8:7a:29:8f:
ad:0f:7d:e1:4b:2c:3e:53:37:c7:1d:27:11:85:5a:
1c:3a:af:cb:d8:fb:dc:92:b4:00:8d:66:8e:bd:86:
8e:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:8B:78:D7:80:58:07:E3:EB:06:C8:4D:0F:19:34:CD:8D:1F:68:18
X509v3 Authority Key Identifier:
keyid:89:02:78:90:03:3D:5D:62:3B:D4:E4:39:86:E8:80:F6:AB:13:84:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/005179483F3B11EEB8342C54C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.36.70.0/24
Signature Algorithm: sha256WithRSAEncryption
03:1f:08:8f:0d:66:ea:74:be:e0:5a:0d:f1:85:5e:4c:60:20:
9d:9a:9f:7d:c1:64:77:fa:b4:a2:7d:a8:8b:70:7f:0e:88:e2:
be:20:f9:87:26:2d:02:30:b1:0c:5c:2f:6d:da:dd:55:c7:ff:
44:54:d0:eb:53:ec:d0:41:74:c7:22:c2:5e:53:51:cb:c3:bc:
03:7b:03:51:40:e5:f8:83:9f:b6:6e:e4:c7:a3:19:4c:d6:16:
bd:1d:46:bc:10:7b:a8:57:0a:66:a4:cc:62:16:65:d2:ce:3c:
5e:81:bc:b8:f3:76:93:36:7e:e9:cb:67:af:28:ec:f6:81:98:
e0:9d:69:80:28:3b:b2:6d:74:7e:3a:ab:72:61:f0:7b:3b:5f:
ec:a7:6e:fe:f0:dd:88:ff:ea:50:2f:09:0f:4e:92:b9:2c:05:
aa:ba:4c:b0:37:13:88:26:84:89:4d:2c:74:e1:71:9a:97:ae:
a3:dd:92:69:d2:a9:9f:e5:12:f2:6d:1f:93:98:3b:4d:e7:0d:
2b:fa:5d:1e:ef:15:a2:6a:20:e2:1d:c6:c3:35:b7:07:53:d2:
a1:95:c0:ad:54:77:85:e4:d7:d2:cc:ff:a8:85:57:eb:75:64:
ec:04:9d:3e:41:bd:b6:d5:9b:1d:1e:c8:27:ed:2f:4a:ea:59:
b9:25:df:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:37 2024 by rpki-client on console-ams.rpki-client.org