Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/ADC36352169511EFA865F817C4F9AE02.roa
File: ADC36352169511EFA865F817C4F9AE02.roa (raw, json)
Hash identifier: ej2MR6CIxuqlM9apxouCV4Ed4sbr3FK31No1BsIKVe0=
Subject key identifier: 2D:52:1F:67:65:86:89:01:13:C0:97:DF:5F:36:DF:BD:14:19:2C:87
Certificate issuer: /CN=A912FCD6/serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B
Certificate serial: 2130
Authority key identifier: 53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/ADC36352169511EFA865F817C4F9AE02.roa
Signing time: Mon 20 May 2024 10:43:26 +0000
ROA not before: Mon 20 May 2024 10:43:26 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 180.210.221.0/24 maxlen: 24
180.210.223.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 21 May 2024 18:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8496 (0x2130)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912FCD6/serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B
Validity
Not Before: May 20 10:43:26 2024 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=664b294e-c7f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:dd:04:52:3d:5e:6c:0c:01:68:bb:36:da:42:
15:ad:0c:ea:ce:a3:db:1b:ab:08:3c:4d:c9:2c:59:
6c:6c:99:00:7f:ec:e9:ec:fb:6c:dc:e6:02:c3:5f:
16:e6:39:02:16:e2:a9:ed:6b:4e:5d:34:69:fd:ce:
70:54:25:b8:b7:53:06:bd:83:de:90:34:c2:f4:d7:
8a:b4:9f:fb:44:f2:38:f3:2f:9f:2b:8b:a2:0f:54:
40:8b:2e:2b:3b:70:d6:62:8c:20:ac:32:22:3e:be:
60:ee:79:c6:06:e3:0c:2b:d0:86:10:23:95:57:45:
39:5d:fe:e5:42:6a:20:02:4d:97:49:d3:2d:e4:47:
dd:ca:19:b3:29:ce:a1:41:74:08:37:21:38:f5:a0:
e3:ac:fe:7a:10:e9:b7:b7:0c:25:ff:99:d2:b7:a8:
24:ad:e2:f9:6b:32:02:ad:8a:ca:3f:88:b6:89:06:
3b:7a:d4:95:95:e7:d0:b5:cc:52:75:41:f7:5e:d0:
db:eb:d6:80:c2:19:d0:a8:35:8e:05:03:d7:b6:5e:
3c:5b:d4:a6:13:2e:3b:f1:a9:0f:73:24:7d:6a:ca:
f9:9c:c9:38:d7:3b:85:92:c6:6b:c4:77:73:9c:79:
72:5c:91:15:4d:01:cb:c1:62:7b:a1:83:a6:4f:b7:
04:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:52:1F:67:65:86:89:01:13:C0:97:DF:5F:36:DF:BD:14:19:2C:87
X509v3 Authority Key Identifier:
keyid:53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/ADC36352169511EFA865F817C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
180.210.221.0/24
180.210.223.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:6a:30:bd:76:fa:8d:ce:ce:74:36:aa:5a:7e:23:ab:c1:cc:
9c:42:f5:94:bb:a6:34:9d:f4:06:1a:a2:21:87:66:20:0f:b6:
e9:cf:e7:35:ec:b7:35:99:ff:39:21:51:02:0e:6a:aa:7b:17:
a3:12:f2:fe:6c:35:63:30:6d:4a:62:48:f8:78:ab:b3:d9:03:
73:92:7e:8c:b8:3c:db:00:c8:83:7b:39:2e:19:14:36:7e:1b:
94:1a:36:b4:35:2d:1e:d4:d1:bd:d4:78:a5:08:d3:4b:3c:c4:
d4:83:b0:99:6a:48:db:99:ce:f9:15:c1:b4:d0:d8:86:c4:7f:
d1:6d:03:49:55:fe:86:35:ad:a6:a2:a6:c4:94:9b:46:87:04:
ce:56:e0:b4:97:ca:a0:99:60:27:99:bd:65:87:36:7a:28:7a:
0a:1f:8c:43:54:9d:70:4b:ef:12:6d:88:bd:0c:c6:0b:fa:9c:
5a:9c:0c:4a:e7:fc:e5:f3:b7:2d:66:82:4e:f9:e9:c4:bf:29:
61:e4:f1:23:9c:b4:79:b4:f8:c4:ca:3c:16:af:80:13:f1:cd:
ec:31:4d:e3:ab:c4:a0:ac:d5:cb:74:10:a0:58:21:e8:f6:a2:
06:ad:44:a0:a3:5f:49:b6:e0:7e:95:6e:95:43:e9:16:cd:a9:
25:b9:a9:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:53 2024 by rpki-client on console-ams.rpki-client.org