Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/760C74EC021A11EF9D39D267C4F9AE02.roa
File: 760C74EC021A11EF9D39D267C4F9AE02.roa (raw, json)
Hash identifier: rh4X+qJ7ZDKocjLDVjEf80yULt0Eazfld4AaA5ZlTz0=
Subject key identifier: 7C:AD:15:3A:65:4B:33:13:3C:0C:71:0D:AD:E2:99:B3:0F:B7:CA:0C
Certificate issuer: /CN=A915370F/serialNumber=BB5B8156B037E5D22263EAC7F6A11C052FDF633F
Certificate serial: 3357
Authority key identifier: BB:5B:81:56:B0:37:E5:D2:22:63:EA:C7:F6:A1:1C:05:2F:DF:63:3F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1uBVrA35dIiY-rH9qEcBS_fYz8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/760C74EC021A11EF9D39D267C4F9AE02.roa
Signing time: Sun 28 Apr 2024 02:31:28 +0000
ROA not before: Sun 28 Apr 2024 02:31:28 +0000
ROA not after: Wed 28 May 2025 00:00:00 +0000
asID: 53356
IP address blocks: 122.8.32.0/22 maxlen: 22
122.8.36.0/23 maxlen: 23
122.8.38.0/24 maxlen: 24
122.8.48.0/22 maxlen: 22
122.8.64.0/22 maxlen: 22
122.8.112.0/22 maxlen: 22
122.8.116.0/22 maxlen: 22
122.8.124.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 24 May 2024 07:20:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13143 (0x3357)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915370F/serialNumber=BB5B8156B037E5D22263EAC7F6A11C052FDF633F
Validity
Not Before: Apr 28 02:31:28 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=662db500-7810
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:4b:f9:bd:e2:e2:7e:71:d5:38:21:ca:cd:69:
94:5e:92:2f:22:c4:78:2e:0d:ff:1d:19:e2:13:14:
cc:50:a2:44:17:78:34:a0:f1:f0:36:df:71:4b:64:
f3:fc:0c:30:03:a6:8f:c1:ef:af:77:4f:a2:7e:dd:
b3:d1:45:09:75:e0:fb:dc:6a:3e:e3:1e:48:49:64:
d2:c6:6b:3b:fc:82:ab:28:e3:ab:6e:2b:9c:8a:98:
72:25:1f:ff:10:0b:9f:d1:6a:ab:a2:2d:73:a8:a4:
66:74:89:1e:fd:70:5a:c0:db:18:ea:2b:98:4b:8d:
fa:94:01:03:55:1e:f2:7a:0e:e4:24:aa:76:43:0c:
16:93:ca:6c:39:1b:48:b8:05:1e:5e:cf:5a:72:ea:
11:9b:92:f0:01:8f:ef:be:de:3f:37:68:60:5b:31:
44:36:a6:63:35:a0:d7:92:ac:79:a7:00:19:57:ca:
6c:e3:88:c6:63:91:12:e9:30:44:a6:28:7e:16:71:
ab:91:ce:5b:86:ae:4d:ed:87:71:a8:f1:be:15:b8:
30:a5:89:8c:e2:10:5e:bb:d0:81:43:4e:1b:1f:ba:
02:8e:71:08:78:73:fb:e5:44:1a:9f:33:69:dd:79:
d9:df:f7:e1:60:9d:07:07:3e:7f:ef:e0:d4:34:36:
74:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:AD:15:3A:65:4B:33:13:3C:0C:71:0D:AD:E2:99:B3:0F:B7:CA:0C
X509v3 Authority Key Identifier:
keyid:BB:5B:81:56:B0:37:E5:D2:22:63:EA:C7:F6:A1:1C:05:2F:DF:63:3F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/u1uBVrA35dIiY-rH9qEcBS_fYz8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1uBVrA35dIiY-rH9qEcBS_fYz8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/760C74EC021A11EF9D39D267C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
122.8.32.0-122.8.38.255
122.8.48.0/22
122.8.64.0/22
122.8.112.0/21
122.8.124.0/22
Signature Algorithm: sha256WithRSAEncryption
b5:d0:ae:d9:b2:b5:78:87:95:64:b1:f1:a1:d9:bd:c1:31:64:
88:47:11:70:ef:11:7c:e4:e3:93:e4:9c:a1:56:bc:1f:73:95:
e4:5b:f3:30:c3:67:bb:01:7a:59:de:c0:d7:ba:10:3d:9a:f3:
ea:f4:70:de:eb:a9:d8:5e:61:84:6c:ae:b8:5a:2d:31:28:17:
15:da:35:1e:73:18:17:d1:ec:a5:94:29:a1:a5:92:d1:f2:eb:
e5:9d:45:31:50:9e:72:a8:ca:b3:a7:21:97:ac:cf:10:8f:4e:
ab:85:ee:3b:c4:dc:56:ca:f5:74:28:9b:4f:ac:d0:2a:f9:8e:
65:15:bc:9d:4e:3d:4c:c4:ab:36:13:9c:6a:d0:d2:7d:b4:21:
b8:ea:65:f0:0a:83:3e:bb:b1:f3:7a:90:a9:ee:1b:01:4b:9f:
3d:73:af:0d:03:6d:72:f7:9e:3a:f6:aa:58:86:ce:2a:7f:fe:
74:71:e9:13:2a:9a:7a:02:c4:5f:06:2a:1d:b1:62:22:cf:dd:
e2:14:c5:d2:43:e0:2a:a0:4b:c6:35:f7:93:69:74:44:b5:95:
92:a9:a5:58:fa:64:26:e1:21:a1:7e:c1:34:b8:29:03:8a:63:
fa:9c:1f:9d:f5:23:4c:26:f0:4a:ee:8e:f9:f1:fa:ef:28:60:
4c:4b:ea:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:06 2024 by rpki-client on console-ams.rpki-client.org