Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/5D38C6D0135111EF9CB17D1DC4F9AE02.roa
File: 5D38C6D0135111EF9CB17D1DC4F9AE02.roa (raw, json)
Hash identifier: O2t+sZWXQDxmw+oMxBg4i8LR9meNvoQy4HtyOnezVkM=
Subject key identifier: 8D:81:96:58:07:C5:18:0D:D7:93:EB:F5:F2:FE:EF:3A:DC:2A:10:65
Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA
Certificate serial: 1DA2
Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/5D38C6D0135111EF9CB17D1DC4F9AE02.roa
Signing time: Thu 16 May 2024 06:56:05 +0000
ROA not before: Thu 16 May 2024 06:56:05 +0000
ROA not after: Sun 01 Dec 2024 00:00:00 +0000
asID: 58777
IP address blocks: 202.67.0.0/22 maxlen: 24
202.73.128.0/22 maxlen: 24
202.191.72.0/21 maxlen: 24
203.33.67.0/24 maxlen: 24
203.33.68.0/24 maxlen: 24
203.33.73.0/24 maxlen: 24
203.33.79.0/24 maxlen: 24
203.33.100.0/24 maxlen: 24
203.33.122.0/24 maxlen: 24
203.33.129.0/24 maxlen: 24
203.33.131.0/24 maxlen: 24
240e:108:4040::/48 maxlen: 48
240e:108:4047::/48 maxlen: 48
240e:108:4060::/48 maxlen: 48
240e:108:4360::/48 maxlen: 48
240e:108:4820::/48 maxlen: 48
240e:108:4840::/48 maxlen: 48
240e:108:4847::/48 maxlen: 48
240e:108:4860::/48 maxlen: 48
240e:108:4b60::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 16 May 2024 07:55:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7586 (0x1da2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA
Validity
Not Before: May 16 06:56:05 2024 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=6645ae05-1661
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:db:85:00:ab:42:85:b3:ec:f3:7e:a9:03:1f:
38:0a:98:58:c9:8f:b5:61:af:31:2d:35:10:3e:4e:
cf:45:76:8d:ac:81:4e:6f:65:05:c2:d2:9e:fc:f3:
4d:c3:ae:71:e4:66:6f:7f:d6:02:51:5f:0d:b2:82:
5c:b5:57:bc:f5:5a:1f:9a:3a:45:75:55:a7:5b:6e:
e2:3c:cd:6d:87:e2:f8:cb:50:23:7a:bf:cf:14:1e:
91:b5:29:54:18:cc:28:2c:9f:32:24:bc:69:d8:34:
0f:4a:9d:51:0f:a7:33:a0:4b:6f:cb:ea:e3:1f:b7:
56:f0:12:7f:e7:68:58:34:b5:ac:c5:f7:ab:1f:be:
71:b9:1a:a4:5c:6e:64:3b:1f:a7:8b:e2:fd:af:05:
6d:47:b4:28:98:d2:ec:70:6e:df:e7:9a:8f:3b:8b:
47:ea:4e:36:e2:0f:c3:9c:a3:60:7c:fc:45:6f:f7:
6a:fb:83:b5:fd:c6:8f:d3:27:c2:19:3b:03:4f:a9:
c3:f7:c5:4e:9e:b4:86:f1:6d:95:6f:8e:a9:97:03:
d8:b5:0b:2b:68:01:ea:4e:cc:a6:34:5d:ed:8d:63:
91:5d:56:82:2c:84:d5:ca:a9:c7:28:09:00:db:e4:
a1:05:21:cb:ec:c2:61:d1:ad:2e:64:e4:13:dd:c9:
8d:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:81:96:58:07:C5:18:0D:D7:93:EB:F5:F2:FE:EF:3A:DC:2A:10:65
X509v3 Authority Key Identifier:
keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/5D38C6D0135111EF9CB17D1DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.67.0.0/22
202.73.128.0/22
202.191.72.0/21
203.33.67.0-203.33.68.255
203.33.73.0/24
203.33.79.0/24
203.33.100.0/24
203.33.122.0/24
203.33.129.0/24
203.33.131.0/24
IPv6:
240e:108:4040::/48
240e:108:4047::/48
240e:108:4060::/48
240e:108:4360::/48
240e:108:4820::/48
240e:108:4840::/48
240e:108:4847::/48
240e:108:4860::/48
240e:108:4b60::/48
Signature Algorithm: sha256WithRSAEncryption
8f:85:ad:d6:ae:b7:1b:50:f4:ba:06:f4:76:0a:0c:16:90:3d:
4b:39:9b:d8:ff:53:83:53:74:a4:bc:b8:80:bc:85:1d:85:52:
76:65:fc:26:82:57:f3:79:9a:cc:bd:de:be:af:ab:3e:3a:1a:
e4:26:83:fc:90:46:71:11:db:99:89:92:ac:55:41:b8:f1:c3:
55:82:59:16:5e:44:cd:0e:68:86:0e:07:1c:56:f5:dd:05:f0:
d2:dd:b3:c2:e6:44:54:28:cd:91:ca:90:ed:49:99:f2:61:af:
be:57:cb:73:b6:9d:43:2e:82:13:9c:cf:5a:f3:89:03:18:ca:
1b:8e:37:3c:79:79:df:de:a8:f0:57:d5:b8:72:7d:69:67:ef:
f3:71:3a:a1:c8:af:42:92:1f:08:93:16:e7:a2:17:87:39:50:
7d:04:de:ab:f2:c5:7c:66:09:7c:ed:ee:2f:ea:ce:be:68:41:
5d:98:e0:1d:b2:1f:08:9a:e9:f6:f3:28:fe:7e:7a:bc:b0:cc:
18:c3:84:c2:59:d7:11:cc:73:99:76:cb:65:9e:13:94:fa:58:
d2:4d:2c:ce:be:d6:10:e3:bb:86:14:65:05:11:5f:48:8b:31:
38:29:46:22:97:77:4d:0b:45:f0:ba:cd:f0:94:eb:c4:3b:a8:
d1:86:61:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:05 2024 by rpki-client on console-fra.rpki-client.org