Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/20068130702111EABA90E923C4F9AE02.roa
File: 20068130702111EABA90E923C4F9AE02.roa (raw, json)
Hash identifier: klXDKYT+Diyzs3UwDrfLwBlLTOabtuGGcpE7Ra7QhQM=
Subject key identifier: 72:85:B0:03:88:01:5A:77:A8:2E:A7:47:AF:94:42:A7:4E:D6:3F:2B
Certificate issuer: /CN=A91510AD/serialNumber=E1E6908A16EC813DAA0BD64797AE9DBDEB092257
Certificate serial: 344E
Authority key identifier: E1:E6:90:8A:16:EC:81:3D:AA:0B:D6:47:97:AE:9D:BD:EB:09:22:57
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/20068130702111EABA90E923C4F9AE02.roa
Signing time: Wed 04 Oct 2023 14:50:27 +0000
ROA not before: Wed 04 Oct 2023 14:50:27 +0000
ROA not after: Mon 30 Dec 2024 00:00:00 +0000
asID: 136897
IP address blocks: 175.29.120.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 31 Jul 2024 10:07:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13390 (0x344e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91510AD/serialNumber=E1E6908A16EC813DAA0BD64797AE9DBDEB092257
Validity
Not Before: Oct 4 14:50:27 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=651d7bb3-70be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d8:20:0d:2e:8a:62:13:6c:19:62:49:94:03:
44:3a:86:6a:f0:c5:25:c5:67:29:33:9a:68:b6:e5:
0a:7e:9a:50:52:97:64:ba:c0:f9:6d:44:b0:6d:90:
a1:26:f8:b5:9e:a2:25:28:42:14:f4:fa:d6:d1:92:
23:1d:ad:fd:c7:c9:22:65:b2:e5:cd:a0:33:81:1e:
51:43:61:a3:c3:d1:69:67:e6:b4:87:c9:53:94:fd:
f4:74:9b:e8:36:c0:8a:c7:c1:be:7a:0e:84:64:69:
49:dc:95:31:db:bc:13:1d:5b:c0:b5:ad:9e:fa:e5:
62:28:ef:ed:5e:9b:54:c8:5a:c7:95:b1:4d:80:55:
47:8a:75:a9:87:ca:5b:4a:af:0f:34:5c:73:89:f8:
20:cf:5f:89:12:fb:b6:4b:94:b0:05:a8:02:69:44:
93:6e:ee:34:ba:a5:0d:31:f2:ac:1b:88:d7:91:73:
3e:25:1b:82:02:0c:9b:df:92:c2:88:6c:a1:bc:03:
00:25:e1:a8:41:6b:4b:ed:08:05:88:01:f6:a2:c5:
44:b2:3b:32:7f:15:3c:3d:ac:5c:8b:af:ef:96:e6:
e8:e0:a1:9e:b3:bc:f6:b0:7b:20:44:f7:3f:31:11:
0e:59:a9:e1:7e:4f:f4:de:a4:fa:5c:6a:18:ac:74:
05:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:85:B0:03:88:01:5A:77:A8:2E:A7:47:AF:94:42:A7:4E:D6:3F:2B
X509v3 Authority Key Identifier:
keyid:E1:E6:90:8A:16:EC:81:3D:AA:0B:D6:47:97:AE:9D:BD:EB:09:22:57
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/20068130702111EABA90E923C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
175.29.120.0/22
Signature Algorithm: sha256WithRSAEncryption
ac:f5:62:c7:0b:ad:b5:03:e4:d4:94:56:a5:16:13:66:eb:1a:
46:b3:44:2a:a3:de:11:31:23:fe:45:4e:38:c8:fd:d9:33:99:
e1:20:7b:ef:cb:f5:4a:3e:c0:4a:e5:ea:fc:13:40:25:f2:76:
d2:e4:c1:26:67:27:83:47:d6:e9:cb:bb:f7:24:1e:e5:9c:01:
ac:37:4d:a0:d8:13:bc:96:ab:48:a1:ab:c4:18:e2:84:f5:71:
61:ac:71:6d:db:24:bf:a7:a5:2f:c8:63:39:3c:80:ef:26:64:
bb:19:a8:a0:c8:d6:cb:89:4d:e6:6e:0a:63:41:d5:65:fe:2d:
54:87:80:23:16:9f:48:93:3c:12:9b:3b:07:84:89:b3:e3:28:
25:f1:ac:a3:6b:ce:3b:33:68:cf:44:5f:0c:f3:0c:50:6b:a9:
97:cd:04:f1:07:88:e0:26:d4:02:51:98:d9:7c:dc:37:27:6b:
24:82:3b:70:5a:95:b1:7e:f1:0c:f3:ea:a6:b2:a6:df:a8:b8:
3c:b1:84:b1:fc:34:2f:26:e9:9a:6c:bb:89:4b:de:b8:6f:7c:
3b:00:75:ab:e1:d1:86:b8:44:ff:c4:99:15:90:98:ba:f4:aa:
c0:26:d5:97:7c:0f:6c:ef:b7:38:b3:c9:11:48:8d:61:2f:22:
09:65:74:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 31 12:40:22 2024 by rpki-client on console-fra.rpki-client.org