Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A914EBB2/F37F246E329511EF9A482F55C4F9AE02/57B94536329611EFA6000E56C4F9AE02.roa
File: 57B94536329611EFA6000E56C4F9AE02.roa (raw, json)
Hash identifier: WzYaLQTvvCC/O9env2/dK4BTkU7johBso6xUw+nS9DI=
Subject key identifier: 86:10:D7:5B:C5:16:D2:EC:97:B9:DB:06:EB:2C:26:F2:9B:A8:B9:B2
Certificate issuer: /CN=A914EBB2/serialNumber=CD3DF53AA0E9A398595E957015155BCCAC568D15
Certificate serial: 02
Authority key identifier: CD:3D:F5:3A:A0:E9:A3:98:59:5E:95:70:15:15:5B:CC:AC:56:8D:15
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zT31OqDpo5hZXpVwFRVbzKxWjRU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914EBB2/F37F246E329511EF9A482F55C4F9AE02/57B94536329611EFA6000E56C4F9AE02.roa
Signing time: Tue 25 Jun 2024 01:57:57 +0000
ROA not before: Tue 25 Jun 2024 01:57:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 17476
IP address blocks: 202.36.160.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 03 Jul 2024 19:18:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914EBB2/serialNumber=CD3DF53AA0E9A398595E957015155BCCAC568D15
Validity
Not Before: Jun 25 01:57:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=667a2425-2c1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:fc:e4:1e:3b:f6:2d:ae:2d:c1:cd:c5:f9:d6:
7d:3b:3e:1e:e5:44:8f:1e:d7:0d:46:5a:65:c6:a2:
ea:b2:cb:62:0f:f0:74:ee:3d:16:49:69:f2:a0:20:
41:e4:61:b0:1d:9f:21:0d:2d:9c:f6:86:9c:49:f6:
f1:6c:4d:3b:18:4f:17:cd:85:05:d1:af:8e:cf:38:
9b:63:a0:b2:f4:7d:da:8b:cf:d8:73:d7:3f:1b:4a:
b2:a3:a2:d6:46:71:09:f6:bc:48:07:59:17:54:ee:
6a:b6:13:ab:a4:e4:5a:dc:14:c4:22:01:5d:c4:1b:
45:22:6a:87:bf:53:eb:af:61:8f:80:06:09:e0:14:
c9:ea:25:a3:24:85:81:69:70:a4:16:a1:0a:51:37:
d3:b4:cb:be:44:86:a5:34:e9:42:7d:40:67:ae:3f:
72:64:44:ac:0e:7e:1f:20:94:62:df:6e:f0:79:45:
5f:f8:e0:22:a7:0d:c5:1d:bb:e7:65:3f:cb:39:a0:
34:a1:e0:ab:fa:c5:5b:02:44:e7:e1:42:24:93:55:
42:1c:8a:98:62:7e:cd:1b:44:61:84:b6:47:4f:2a:
21:87:f6:4f:d8:1d:bc:f4:bb:38:6c:15:82:05:e5:
12:4c:e7:42:75:26:28:6a:74:e7:07:45:06:20:25:
f4:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:10:D7:5B:C5:16:D2:EC:97:B9:DB:06:EB:2C:26:F2:9B:A8:B9:B2
X509v3 Authority Key Identifier:
keyid:CD:3D:F5:3A:A0:E9:A3:98:59:5E:95:70:15:15:5B:CC:AC:56:8D:15
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914EBB2/F37F246E329511EF9A482F55C4F9AE02/zT31OqDpo5hZXpVwFRVbzKxWjRU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zT31OqDpo5hZXpVwFRVbzKxWjRU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EBB2/F37F246E329511EF9A482F55C4F9AE02/57B94536329611EFA6000E56C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.36.160.0/23
Signature Algorithm: sha256WithRSAEncryption
80:bb:21:b2:54:35:33:f0:f4:a0:c4:96:5d:45:03:0d:ec:83:
c7:17:b0:f5:d9:10:d2:fd:ba:c2:61:32:08:88:1b:80:7c:a2:
b6:41:91:14:79:bd:e3:40:38:cb:3d:51:6d:3f:a7:43:03:a1:
59:cb:14:92:2c:db:9f:76:87:9e:38:ec:34:17:93:d8:11:a4:
1f:23:6c:ae:1a:bc:aa:ad:b0:24:73:7e:4f:fc:79:ec:ba:fd:
cd:bd:59:5f:55:8c:f0:c6:53:4a:d4:3b:f0:c0:f2:b5:ed:92:
5b:1e:95:9b:7b:c7:8f:ca:cd:3a:1c:c6:30:3e:e8:9c:47:7d:
b8:b8:12:73:ac:4f:cb:91:c5:60:40:83:48:d7:7b:b4:fc:0e:
e3:de:76:bd:a6:77:02:9c:0a:59:ba:fc:28:59:5f:df:18:2a:
41:65:50:b7:41:57:ce:b4:96:34:c7:6e:da:8e:75:34:e2:14:
6e:ed:d5:eb:3e:f8:85:3e:44:a5:bc:ca:13:53:b5:86:1e:0a:
35:8a:ea:da:91:d9:ea:22:e3:6d:8b:c0:09:af:de:8a:2f:93:
8e:bc:bc:8c:ac:c8:2b:6f:29:5c:5f:59:f0:cb:a7:30:9c:ec:
6f:88:29:2a:53:7c:4a:d3:02:bf:a4:ab:26:08:61:85:d0:a6:
b3:88:5c:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 3 21:23:36 2024 by rpki-client on console-ams.rpki-client.org