Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A914D5F5/9B18B43088F211EA899EBE67C4F9AE02/01CD0726931B11EA974F0D67C4F9AE02.roa
File: 01CD0726931B11EA974F0D67C4F9AE02.roa (raw, json)
Hash identifier: iaU3o+uFuyP+1JdLlLqeJZxLVMtA9KumLc4oAIkM1xA=
Subject key identifier: 0B:12:C5:27:58:B2:0B:D1:81:3F:C7:E0:8C:4A:CE:41:1A:D4:10:DA
Certificate issuer: /CN=A914D5F5/serialNumber=45D8610FCE17D9FF4E8C9E2D7A253DA5C2F87F9B
Certificate serial: 0938
Authority key identifier: 45:D8:61:0F:CE:17:D9:FF:4E:8C:9E:2D:7A:25:3D:A5:C2:F8:7F:9B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RdhhD84X2f9OjJ4teiU9pcL4f5s.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914D5F5/9B18B43088F211EA899EBE67C4F9AE02/01CD0726931B11EA974F0D67C4F9AE02.roa
Signing time: Thu 04 Jul 2024 20:58:31 +0000
ROA not before: Thu 04 Jul 2024 20:58:31 +0000
ROA not after: Sun 01 Dec 2024 00:00:00 +0000
asID: 14618
IP address blocks: 122.252.145.0/24 maxlen: 24
122.252.146.0/24 maxlen: 24
122.252.147.0/24 maxlen: 24
122.252.148.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 26 Jul 2024 01:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2360 (0x938)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914D5F5/serialNumber=45D8610FCE17D9FF4E8C9E2D7A253DA5C2F87F9B
Validity
Not Before: Jul 4 20:58:31 2024 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=66870cf6-6100
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ac:e0:a9:69:4a:a5:53:a3:87:ae:d9:06:6f:
87:c7:09:d8:92:64:9f:c4:f2:71:b2:02:62:84:05:
b4:1e:a2:6a:7e:90:51:98:79:da:b4:39:da:3c:34:
b9:48:5b:12:7d:2f:f2:1c:2a:e5:d7:38:51:b8:db:
63:53:1f:c9:d4:68:7c:6e:99:ce:f7:4a:e1:08:aa:
9a:02:9f:b1:ed:41:04:f4:8f:5b:ec:fb:8b:f2:43:
28:bb:cb:92:a8:b3:76:69:62:4d:fe:06:42:83:7c:
fc:f4:08:42:bf:90:f2:06:bc:22:9f:dc:0c:e8:34:
d8:09:2f:b9:63:97:5c:14:21:e4:fd:7f:2c:f8:a8:
2c:0a:6d:c2:16:4a:78:ce:f3:59:42:19:5a:a8:96:
b2:44:14:a6:aa:88:ac:e6:8d:a0:a0:93:be:d7:6b:
41:99:d3:0a:82:04:dc:c6:57:fa:99:0c:3e:4f:0a:
9c:8e:7a:78:e0:f9:92:80:fb:e8:8a:99:b1:5f:30:
14:78:2c:e1:97:56:f8:b6:d5:67:82:ed:a3:44:20:
6f:d4:9c:36:0b:f6:dd:09:b2:c6:e6:95:ed:4c:07:
16:29:08:a2:48:e2:fb:de:b1:4e:93:9a:0e:b8:49:
28:07:39:2f:d8:2a:22:6c:eb:86:8a:6e:f5:a4:1e:
c1:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:12:C5:27:58:B2:0B:D1:81:3F:C7:E0:8C:4A:CE:41:1A:D4:10:DA
X509v3 Authority Key Identifier:
keyid:45:D8:61:0F:CE:17:D9:FF:4E:8C:9E:2D:7A:25:3D:A5:C2:F8:7F:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914D5F5/9B18B43088F211EA899EBE67C4F9AE02/RdhhD84X2f9OjJ4teiU9pcL4f5s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RdhhD84X2f9OjJ4teiU9pcL4f5s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D5F5/9B18B43088F211EA899EBE67C4F9AE02/01CD0726931B11EA974F0D67C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
122.252.145.0-122.252.151.255
Signature Algorithm: sha256WithRSAEncryption
4c:dc:38:a7:2e:c7:5f:8c:dc:c0:62:52:14:ee:e2:1f:35:91:
2b:9c:02:ee:c1:3b:cb:58:5f:b6:8b:47:f3:ac:43:5f:e4:dc:
68:6e:5a:ce:f1:ec:a4:6e:18:14:75:fe:bd:74:6c:38:fa:2a:
e7:81:c5:16:ab:c8:fc:8f:95:f9:70:63:f3:51:79:d0:09:e7:
7d:d7:09:d9:47:dd:41:23:57:ec:d7:0f:60:28:4e:73:db:2e:
da:ff:98:3f:d9:a1:c7:68:11:08:79:ee:8d:0a:b2:d6:c0:76:
cd:9e:4d:2f:22:b4:38:cf:99:69:2d:ee:8d:03:dc:a2:01:35:
96:a2:02:d0:5b:2e:9b:d1:0d:ed:96:d1:14:d2:ff:9e:78:6f:
8d:08:8e:32:41:96:7a:24:7a:88:7a:fb:50:85:90:32:91:af:
ac:a2:2c:90:a4:f8:f6:6c:b2:7f:da:83:fe:25:13:45:8d:44:
18:ce:b2:46:e5:30:10:f5:f8:f6:6b:62:d3:86:85:a1:6a:45:
d7:34:75:14:01:09:ba:84:03:ab:0b:1d:7f:da:32:f8:cc:1f:
25:3e:37:9a:d1:89:29:61:9b:88:2b:27:90:61:ad:fe:6d:ed:
92:41:b7:88:42:49:7b:0b:ff:8d:ef:6e:e3:46:9f:18:0c:9a:
48:60:35:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 26 04:12:01 2024 by rpki-client on console-fra.rpki-client.org