Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/96407462457711EEBBEB9C25C4F9AE02.roa
File: 96407462457711EEBBEB9C25C4F9AE02.roa (raw, json)
Hash identifier: EUQqBMUSpFnlrLdUKjwERGDutGtMbF64d7cwZt5nNKA=
Subject key identifier: 5D:3B:26:DB:7B:59:6C:D2:46:62:85:E6:6B:06:AA:6D:90:EE:31:B5
Certificate issuer: /CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013
Certificate serial: 0623
Authority key identifier: ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/96407462457711EEBBEB9C25C4F9AE02.roa
Signing time: Tue 03 Sep 2024 01:14:02 +0000
ROA not before: Tue 03 Sep 2024 01:14:02 +0000
ROA not after: Mon 01 Dec 2025 00:00:00 +0000
asID: 135951
IP address blocks: 43.254.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 29 Sep 2024 23:28:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1571 (0x623)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013
Validity
Not Before: Sep 3 01:14:02 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=66d662da-7852
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:98:57:1c:e9:3b:1c:b2:f1:c5:f3:ed:18:f0:
a3:ec:71:a0:a9:44:c0:ea:cc:37:c8:71:86:15:73:
0e:f4:b6:f4:da:11:23:04:b6:54:3d:53:4f:07:7a:
b1:62:13:76:01:1d:29:89:75:4c:67:68:31:06:e8:
9d:ae:f9:23:2c:f9:6e:f3:1b:f8:5b:b9:de:5b:8f:
96:7b:7b:37:3c:8b:fb:11:08:3f:8d:07:1d:a1:b7:
8c:59:a6:54:9d:99:e3:70:5f:e0:bb:84:7f:b2:24:
5e:ec:7c:30:e9:fa:21:06:5c:c8:3e:bb:57:d9:b6:
a6:38:8a:c8:eb:7b:f0:96:85:12:a8:dc:f4:09:65:
64:57:ce:72:89:65:c5:62:27:ea:db:03:b8:23:94:
98:a9:5a:6f:80:72:1e:83:0c:25:90:51:6c:bf:a6:
ae:82:18:26:70:08:77:4c:ef:7c:74:c5:ea:bd:d9:
06:72:1e:ba:c3:3c:d1:ca:b0:d2:26:97:74:d2:af:
14:0c:c9:29:ea:5c:6f:78:41:98:3e:cd:4a:90:fe:
05:9d:fe:bb:c6:d3:87:a0:42:58:f3:bd:54:bd:01:
6c:38:4f:5a:98:15:fc:c9:f3:bf:2c:00:9b:28:2a:
ea:01:04:b4:2b:04:fa:ec:aa:e1:42:cc:b2:58:f2:
cc:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:3B:26:DB:7B:59:6C:D2:46:62:85:E6:6B:06:AA:6D:90:EE:31:B5
X509v3 Authority Key Identifier:
keyid:ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/96407462457711EEBBEB9C25C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.254.166.0/24
Signature Algorithm: sha256WithRSAEncryption
37:69:1b:3f:c5:2b:7d:81:07:07:d2:8a:e7:3f:ac:67:d3:3c:
50:8f:9a:49:27:8c:01:93:62:c3:98:a9:4f:f9:10:83:c7:77:
a1:b5:76:aa:d6:e9:ba:c6:9d:22:ee:c0:b1:30:4b:3b:d7:8a:
59:26:50:a1:3a:88:05:85:a6:7b:43:6d:14:a2:1d:7c:32:1a:
8a:a1:63:ca:43:7c:cc:cd:c0:df:41:60:e5:bc:cd:7d:dd:43:
f5:d5:57:61:39:0d:98:13:0d:99:e7:3a:69:60:75:48:35:2c:
fa:b1:1d:f9:a2:c1:a7:d1:e5:b6:63:17:23:7a:21:d7:22:60:
37:63:ef:af:d3:e8:b9:99:3f:79:66:66:20:b0:7a:8c:61:d6:
ac:8d:49:14:d1:aa:9a:19:34:17:c3:49:e1:ca:bf:a6:9c:3d:
a6:57:7b:e2:a6:22:32:fa:ba:3f:1b:b1:e4:3d:ef:ac:cc:61:
d1:33:7d:2d:fa:5b:33:90:28:f3:74:f9:99:67:76:aa:43:58:
6b:36:c1:16:60:8d:c0:72:b4:6d:e9:5c:56:9c:7c:e8:0e:7a:
c8:8a:a5:b8:a0:36:89:d2:8c:3f:3b:46:95:db:62:c8:ac:0c:
b2:e2:71:13:91:3c:70:e2:25:9c:3a:3a:39:03:ca:67:e1:a1:
fa:9b:2f:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 30 02:01:09 2024 by rpki-client on console-ams.rpki-client.org