Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A912F190/57B405943A8411EFA5731584C4F9AE02/B3D09B9E44B611EF90BAE227C4F9AE02.roa
File: B3D09B9E44B611EF90BAE227C4F9AE02.roa (raw, json)
Hash identifier: SZ4js2b3s7PX+NzgLPvEfqCKDROEklz/e+Tt+DViP1s=
Subject key identifier: 7E:F6:27:E1:EC:35:DA:04:C0:DD:BA:E0:BD:9C:E0:DD:D9:E4:92:5C
Certificate issuer: /CN=A912F190/serialNumber=D6BF3DE16441ED7D87506DE09E4DD5D638E0BA69
Certificate serial: 1F
Authority key identifier: D6:BF:3D:E1:64:41:ED:7D:87:50:6D:E0:9E:4D:D5:D6:38:E0:BA:69
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1r894WRB7X2HUG3gnk3V1jjgumk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912F190/57B405943A8411EFA5731584C4F9AE02/B3D09B9E44B611EF90BAE227C4F9AE02.roa
Signing time: Thu 18 Jul 2024 03:34:56 +0000
ROA not before: Thu 18 Jul 2024 03:34:56 +0000
ROA not after: Mon 31 Mar 2025 00:00:00 +0000
asID: 38809
IP address blocks: 202.12.25.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 18 Jul 2024 03:52:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31 (0x1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912F190/serialNumber=D6BF3DE16441ED7D87506DE09E4DD5D638E0BA69
Validity
Not Before: Jul 18 03:34:56 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=66988d60-8aa7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:3e:77:f4:b5:ca:fb:fc:26:f6:5f:95:dc:f3:
7a:af:41:96:b8:7c:02:46:5a:73:e3:77:dd:f5:61:
9c:b4:18:e4:b1:ba:3f:da:03:47:dc:f9:e9:2a:ac:
20:c9:e6:63:5a:12:11:c7:14:27:1c:1a:ee:80:e6:
fd:7e:56:77:3c:83:e3:c9:23:d1:c7:81:f3:8f:d0:
54:bd:ef:a3:6d:22:10:48:c0:32:02:27:cc:bd:39:
4b:4e:97:d5:ee:42:15:91:12:c6:ca:30:2c:1a:10:
7b:34:0e:5d:f9:03:b1:a1:bc:02:65:7c:5a:03:11:
dd:04:21:97:83:e1:20:2e:81:c3:1e:31:3a:c7:8e:
f4:48:b0:2f:cc:5e:3b:78:7d:89:d1:7f:30:6d:38:
66:99:d8:e8:b4:09:bc:00:b6:16:8d:fe:1d:33:47:
37:cc:53:94:b2:4f:17:d9:1a:8e:0e:2c:e1:81:09:
9f:ee:9e:75:aa:cd:07:1d:2d:1e:0f:76:f1:dd:63:
0c:72:54:df:db:c5:0d:66:c9:b1:ef:9b:13:46:59:
9e:17:1d:28:03:17:ca:31:38:e7:a6:0c:1e:ee:18:
64:3e:8b:a9:2f:38:bd:36:4b:e7:42:a5:e7:4a:7f:
a0:7b:24:17:7a:6a:78:f7:9f:37:66:f7:de:09:f3:
16:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:F6:27:E1:EC:35:DA:04:C0:DD:BA:E0:BD:9C:E0:DD:D9:E4:92:5C
X509v3 Authority Key Identifier:
keyid:D6:BF:3D:E1:64:41:ED:7D:87:50:6D:E0:9E:4D:D5:D6:38:E0:BA:69
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912F190/57B405943A8411EFA5731584C4F9AE02/1r894WRB7X2HUG3gnk3V1jjgumk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1r894WRB7X2HUG3gnk3V1jjgumk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F190/57B405943A8411EFA5731584C4F9AE02/B3D09B9E44B611EF90BAE227C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.12.25.0/24
Signature Algorithm: sha256WithRSAEncryption
89:17:62:be:69:2c:69:2c:9c:26:a3:df:61:24:bb:a1:ec:45:
f4:8d:a4:80:94:3e:ce:1b:fa:fd:3c:51:78:ce:a9:ee:7b:1b:
0f:a4:f1:5c:28:27:30:42:6c:72:bf:42:5a:15:6f:5a:48:55:
22:24:09:73:56:76:04:a6:b5:91:c1:8f:39:5e:f9:38:98:90:
81:34:2a:95:a1:08:3f:7b:b1:2c:2f:a6:bf:b0:ee:ac:86:80:
7b:4a:46:9c:41:e9:fd:2b:9e:7b:bb:42:88:ae:4d:ef:b5:0d:
f5:da:79:59:f8:27:08:05:03:cb:c5:73:05:4b:1d:c6:32:a9:
24:08:e6:ca:af:3b:28:6f:cf:71:9a:67:27:85:b3:62:ea:5d:
17:90:5c:69:28:67:b9:e7:31:04:9a:fa:43:2f:07:49:6e:5b:
4d:a7:f5:06:6c:76:34:96:23:58:74:54:e1:c9:af:df:2b:f7:
d7:da:15:06:d6:fb:b7:cc:5d:cf:b8:2a:12:93:8a:5b:f6:61:
46:15:14:6b:ec:70:03:91:1c:74:09:d9:bb:82:06:cb:df:e6:
a5:29:d1:e2:6b:f3:ba:31:5c:71:d4:a6:ae:1c:88:fe:05:63:
97:72:f5:42:e6:c1:3c:2c:23:67:bd:b2:5c:1f:66:1e:37:87:
59:00:75:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 18 05:56:55 2024 by rpki-client on console-fra.rpki-client.org