Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/61A8E078855911EEB7658825C4F9AE02.roa
File: 61A8E078855911EEB7658825C4F9AE02.roa (raw, json)
Hash identifier: WHOXnSl7y2qrDf0aeGNkzJtVBTzY8crwoldasFxEMqo=
Subject key identifier: 36:64:08:64:59:61:8D:58:70:BB:ED:C2:21:E1:70:DE:68:C3:17:10
Certificate issuer: /CN=A912FCD6/serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B
Certificate serial: 20C2
Authority key identifier: 53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/61A8E078855911EEB7658825C4F9AE02.roa
Signing time: Fri 17 Nov 2023 14:55:43 +0000
ROA not before: Fri 17 Nov 2023 14:55:43 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 205663
IP address blocks: 180.210.223.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 18 May 2024 15:30:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8386 (0x20c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912FCD6/serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B
Validity
Not Before: Nov 17 14:55:43 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=65577eef-0e05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:40:c3:8b:3c:1b:b7:cd:ee:6a:e3:2d:d8:04:
1b:eb:6a:25:42:e7:ef:6e:a2:3e:ca:6a:23:f5:db:
cb:5a:84:98:32:21:66:b8:79:75:8e:3e:86:dc:e4:
d9:c0:00:45:f8:fe:f7:9f:4c:25:62:ce:02:fc:95:
19:45:6c:13:4c:af:d1:d8:f5:0d:47:cf:b6:21:bb:
01:b4:f1:9a:09:21:57:53:25:96:ef:db:f3:c2:b0:
18:2e:1e:60:9b:b0:e1:96:db:3d:fe:33:5b:e5:ed:
6c:04:4e:c0:32:be:5a:c9:cf:97:93:97:8f:d0:31:
84:84:aa:9a:20:93:44:59:04:60:ec:20:3e:9c:fb:
8c:3c:8c:7b:90:4d:61:e4:68:6b:b1:e6:0c:14:1c:
0a:54:4a:11:61:78:d4:00:b2:48:ba:c8:c6:25:e3:
c9:d9:73:49:8b:4d:12:08:3c:d0:bb:eb:17:a6:28:
71:d4:33:92:ff:8c:41:ae:ea:94:74:86:f0:4a:28:
2c:77:ff:13:7c:84:1f:25:1b:a1:0a:50:50:31:f0:
b2:2d:c1:2d:cb:25:6f:4b:dd:a0:39:f3:5a:a9:da:
50:e2:44:73:41:8e:63:4f:db:cf:5a:82:73:02:1a:
c3:38:92:25:72:0b:33:05:0c:ee:f7:35:c8:d7:be:
c1:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:64:08:64:59:61:8D:58:70:BB:ED:C2:21:E1:70:DE:68:C3:17:10
X509v3 Authority Key Identifier:
keyid:53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/61A8E078855911EEB7658825C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
180.210.223.0/24
Signature Algorithm: sha256WithRSAEncryption
75:7a:a6:b2:21:8c:b8:78:3e:3b:23:90:26:3b:93:1a:44:95:
b5:7a:ac:5f:80:e2:25:7d:ad:af:e5:51:a1:4e:16:94:90:d8:
23:8e:e2:89:d1:92:2c:34:ec:49:50:8c:84:ad:22:52:c6:f1:
9e:0a:0f:73:9b:cf:ba:24:72:69:db:f1:13:e6:d5:db:e8:da:
f3:bc:57:b7:7c:a3:10:2d:c9:75:fd:8e:d6:f9:ab:a2:8d:9e:
b7:fd:5e:e9:20:c6:2f:e0:ea:d7:a0:2e:63:7d:01:d3:bb:1f:
4e:b7:d9:78:62:80:42:31:6e:4e:9c:e3:9d:3a:21:f2:d7:b2:
3a:12:4e:0b:6d:db:ee:c2:17:49:dd:6c:8a:72:6e:fe:c9:15:
74:0d:eb:66:0a:bf:c9:55:39:3f:37:5f:8b:8c:38:08:84:2b:
b4:04:04:eb:0a:82:16:48:79:25:f2:74:07:1a:11:e9:bf:e4:
3b:85:ec:5c:19:18:12:f7:1f:f6:0d:87:29:b1:e5:c8:d0:6a:
79:4b:e7:8d:f0:ac:fc:a9:4e:8a:a5:d5:d0:8e:a5:8c:0c:74:
82:f9:cf:20:e8:67:30:3d:b8:3c:7f:c1:40:50:fe:12:52:f5:
da:8f:16:03:bb:2a:9a:1b:15:d5:e3:4c:24:0c:e4:00:2b:3b:
f6:0e:10:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:53 2024 by rpki-client on console-ams.rpki-client.org