Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9121E13/183F99FA8D7B11EB8D8BD60BC4F9AE02/A0A4CA843A8611EF9666E043C4F9AE02.roa
File: A0A4CA843A8611EF9666E043C4F9AE02.roa (raw, json)
Hash identifier: Mrz6lFX4ZgLXhJOflFLDdy+IMa2fmRTxDzb378R/vSY=
Subject key identifier: A7:2F:D5:20:70:2D:28:0C:DE:4A:E7:F2:D5:4D:A8:35:AB:CE:88:64
Certificate issuer: /CN=A9121E13/serialNumber=74E1CB833626873478932CA21188A88FDF2E9DE0
Certificate serial: 05A4
Authority key identifier: 74:E1:CB:83:36:26:87:34:78:93:2C:A2:11:88:A8:8F:DF:2E:9D:E0
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dOHLgzYmhzR4kyyiEYioj98uneA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9121E13/183F99FA8D7B11EB8D8BD60BC4F9AE02/A0A4CA843A8611EF9666E043C4F9AE02.roa
Signing time: Fri 05 Jul 2024 04:25:37 +0000
ROA not before: Fri 05 Jul 2024 04:25:37 +0000
ROA not after: Wed 28 May 2025 00:00:00 +0000
asID: 58713
IP address blocks: 203.1.24.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 Jul 2024 23:37:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1444 (0x5a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9121E13/serialNumber=74E1CB833626873478932CA21188A88FDF2E9DE0
Validity
Not Before: Jul 5 04:25:37 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=668775c0-0507
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:8c:3f:77:45:ae:60:b5:76:a2:5b:00:c6:77:
2e:e2:9c:3a:79:95:67:6d:dc:b1:20:d1:9a:94:e6:
19:a6:12:fb:1f:bf:04:bd:73:4d:75:eb:b0:7d:29:
8d:72:39:00:89:41:31:47:88:70:c7:d9:56:66:82:
fa:37:ad:e6:50:ba:17:7f:23:aa:fe:be:95:27:46:
39:0f:66:03:c9:26:67:0b:25:39:a8:52:a8:69:1c:
6a:66:16:2a:f8:55:f4:48:22:ca:b2:8d:4b:56:ed:
b7:06:46:db:ac:70:d8:46:0d:09:c1:fb:95:a0:2e:
9a:fc:30:e6:2b:99:24:67:22:d9:02:08:06:7b:ff:
39:7f:9a:7d:28:15:a9:be:d5:34:9b:d0:a8:21:8b:
62:fe:38:ea:69:e6:81:03:51:c1:66:e8:be:08:7b:
01:51:66:52:5a:f9:02:99:42:c4:f8:18:67:1e:c7:
39:08:0c:bb:ed:22:5e:5c:f3:c2:45:39:76:71:8b:
51:ef:ee:ab:0a:59:9d:ab:48:24:c3:33:34:0c:ce:
d8:fd:c7:02:54:ba:52:7f:ff:96:42:15:f8:6e:7b:
74:2d:76:f2:10:ad:ec:bb:50:4c:54:5d:a8:fe:a7:
45:f6:23:fc:5d:3c:31:04:f3:3d:07:d4:0f:98:d9:
3e:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:2F:D5:20:70:2D:28:0C:DE:4A:E7:F2:D5:4D:A8:35:AB:CE:88:64
X509v3 Authority Key Identifier:
keyid:74:E1:CB:83:36:26:87:34:78:93:2C:A2:11:88:A8:8F:DF:2E:9D:E0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9121E13/183F99FA8D7B11EB8D8BD60BC4F9AE02/dOHLgzYmhzR4kyyiEYioj98uneA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dOHLgzYmhzR4kyyiEYioj98uneA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9121E13/183F99FA8D7B11EB8D8BD60BC4F9AE02/A0A4CA843A8611EF9666E043C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.1.24.0/24
Signature Algorithm: sha256WithRSAEncryption
73:c0:54:4e:c5:1e:ee:52:4f:ad:5d:f5:a7:39:54:00:3c:06:
7f:7b:79:0e:c8:1c:46:a7:54:57:c9:47:84:51:54:dc:c4:29:
ab:d4:e4:b9:81:d3:66:09:ef:4a:0d:7a:bd:b8:56:b1:69:bc:
e2:47:29:3a:e8:5b:06:91:56:f1:80:ee:ce:f5:e3:15:7d:07:
6a:9c:86:5c:d8:18:da:f7:b4:57:d3:c9:1f:15:7f:c7:6b:8a:
f9:ef:83:ff:3f:78:6e:a1:8a:a7:5c:b9:f4:cf:42:96:8e:f8:
9c:10:51:0b:6a:0d:4e:5c:5d:61:53:11:1a:ff:95:81:a5:4b:
2f:52:9f:fa:64:40:d7:34:f6:b5:b6:0f:ba:12:1b:95:e8:a8:
50:43:f4:26:f0:f1:b2:ab:6c:05:84:ed:a9:dd:cf:2c:f2:16:
b5:f8:b8:3f:52:d7:c1:1f:c7:53:eb:34:7f:5b:7e:e8:fb:f0:
be:f7:10:bf:33:9d:08:f1:a5:64:eb:3c:c6:b0:2c:08:55:d2:
2e:6a:95:3d:ed:70:99:d7:4f:28:02:01:01:cb:22:1c:81:da:
44:11:19:74:17:f3:ec:3c:9b:13:5c:8b:96:d1:a5:eb:05:b2:
a5:56:2f:89:dc:7e:71:10:95:39:1d:de:47:db:ff:ba:bb:cd:
96:33:28:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 10 01:14:41 2024 by rpki-client on console-fra.rpki-client.org