Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE09C/EEF762C0907511EE87D26680C4F9AE02/79F1941C24D811EF99AFCA58C4F9AE02.roa
File: 79F1941C24D811EF99AFCA58C4F9AE02.roa (raw, json)
Hash identifier: 5KLcL6vDEapp3/9LoDQO97yKcaHA8mpQIhtYjrk3VkQ=
Subject key identifier: 08:3C:7E:6A:0E:14:BD:4F:0C:5F:63:62:48:A0:DE:E5:BC:4A:7A:70
Certificate issuer: /CN=A91EE09C/serialNumber=3C69B9B601D2C9F2A3915A6FFBCA3DAD62E99245
Certificate serial: A7
Authority key identifier: 3C:69:B9:B6:01:D2:C9:F2:A3:91:5A:6F:FB:CA:3D:AD:62:E9:92:45
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PGm5tgHSyfKjkVpv-8o9rWLpkkU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EE09C/EEF762C0907511EE87D26680C4F9AE02/79F1941C24D811EF99AFCA58C4F9AE02.roa
Signing time: Mon 08 Jul 2024 09:19:12 +0000
ROA not before: Mon 08 Jul 2024 09:19:12 +0000
ROA not after: Fri 31 Jan 2025 00:00:00 +0000
asID: 137453
IP address blocks: 203.99.144.0/24 maxlen: 24
203.99.145.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 11 Oct 2024 09:28:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167 (0xa7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EE09C/serialNumber=3C69B9B601D2C9F2A3915A6FFBCA3DAD62E99245
Validity
Not Before: Jul 8 09:19:12 2024 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=668baf0f-60c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:3e:71:2b:29:2d:bf:01:6c:1a:82:32:c5:cf:
e3:b0:29:38:c4:3c:5a:87:f2:28:91:b8:31:ad:84:
fe:27:b6:73:be:c5:5c:2f:25:39:64:32:05:41:0f:
c6:1f:14:b2:22:66:31:4c:42:d7:3a:2e:80:72:0a:
75:01:d5:ee:88:8c:8b:8c:43:e3:0c:11:ec:78:5b:
3e:c7:60:ae:3a:62:26:32:00:a8:fc:7f:c7:03:43:
ff:54:55:56:d7:d6:4d:1e:f0:52:d0:6d:c9:cd:31:
98:09:11:29:77:8b:db:f3:84:6a:cd:39:97:d5:09:
e3:cd:aa:06:b4:6c:65:05:5c:75:6e:5f:a1:40:68:
3a:03:9b:d0:9d:22:20:bf:3f:1a:e1:60:bc:1d:8e:
f4:89:f4:f9:36:fc:c9:81:79:5d:c0:d3:45:59:2b:
49:c5:a3:4b:f7:37:03:31:15:27:cd:ff:6f:c3:60:
ef:3d:c7:b7:66:bf:e7:fe:8a:2f:a8:42:02:82:d7:
14:f6:26:2a:66:d0:8c:83:1c:bd:17:2f:02:ae:89:
2d:89:f7:47:65:72:5e:e1:f3:f9:b6:c7:28:d2:9c:
3d:06:c1:76:48:74:78:fd:71:d8:fa:2f:9d:35:78:
41:5d:30:9e:68:6d:ab:26:69:df:a2:b8:81:24:4c:
74:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:3C:7E:6A:0E:14:BD:4F:0C:5F:63:62:48:A0:DE:E5:BC:4A:7A:70
X509v3 Authority Key Identifier:
keyid:3C:69:B9:B6:01:D2:C9:F2:A3:91:5A:6F:FB:CA:3D:AD:62:E9:92:45
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EE09C/EEF762C0907511EE87D26680C4F9AE02/PGm5tgHSyfKjkVpv-8o9rWLpkkU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PGm5tgHSyfKjkVpv-8o9rWLpkkU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE09C/EEF762C0907511EE87D26680C4F9AE02/79F1941C24D811EF99AFCA58C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.99.144.0/23
Signature Algorithm: sha256WithRSAEncryption
74:44:12:db:5a:d5:2a:d3:04:61:90:be:f9:f8:cd:87:62:55:
d9:dd:43:ee:2c:34:07:dc:70:7d:8c:32:b9:e5:ae:81:46:1e:
d3:73:16:5a:78:e0:d1:bc:56:1b:1d:23:38:b7:61:89:7c:0f:
b8:1c:22:60:b8:fb:3b:50:8a:55:0c:83:11:cf:f2:12:3c:f2:
f8:79:ef:eb:3c:9f:82:03:45:b6:1e:54:10:4c:a4:4e:b7:bf:
e0:c1:84:c2:01:11:ce:47:36:6b:17:0a:45:14:c4:8d:48:af:
ee:28:1c:56:50:4f:9d:e8:5f:d4:97:82:73:d4:ef:7a:f1:94:
5a:b8:cd:c8:83:e9:92:56:d9:fc:81:83:4e:2f:e8:19:53:3b:
18:4f:cf:71:11:25:b4:95:48:b6:1d:bc:06:e5:6f:e9:a5:04:
85:9c:0d:92:56:df:32:6a:af:ff:83:e4:de:1e:3e:97:7a:ce:
63:7b:18:20:9a:51:8a:f8:8f:d4:dd:64:14:81:18:5e:2b:d5:
38:da:6f:ae:b5:95:aa:95:8a:50:84:a8:3a:77:7f:33:d9:3b:
79:b6:25:c8:4c:f3:d8:77:bb:46:4d:fb:8a:20:c1:8f:4b:9d:
bb:f3:33:27:a6:d6:54:a5:84:4e:91:8c:a1:9f:86:d9:58:d6:
96:a7:69:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 11 13:27:56 2024 by rpki-client on console-ams.rpki-client.org