Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/548E092EFD4311EE91EAC679C4F9AE02.roa
File: 548E092EFD4311EE91EAC679C4F9AE02.roa (raw, json)
Hash identifier: ZG2RpkKLdPon/CDtt4wvSkZVKwUjtEipKDn4xLT+0Xw=
Subject key identifier: 1F:5E:1A:7D:CD:E4:68:68:2C:F9:73:11:58:95:FF:FA:4F:4F:E0:FC
Certificate issuer: /CN=A9155647/serialNumber=AD3445DB42010B1215A49E427F1AE7400D788BFB
Certificate serial: 0A
Authority key identifier: AD:34:45:DB:42:01:0B:12:15:A4:9E:42:7F:1A:E7:40:0D:78:8B:FB
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rTRF20IBCxIVpJ5CfxrnQA14i_s.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/548E092EFD4311EE91EAC679C4F9AE02.roa
Signing time: Thu 18 Apr 2024 05:20:12 +0000
ROA not before: Thu 18 Apr 2024 05:20:12 +0000
ROA not after: Wed 28 May 2025 00:00:00 +0000
asID: 834
IP address blocks: 43.231.204.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 19 Apr 2024 06:51:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10 (0xa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9155647/serialNumber=AD3445DB42010B1215A49E427F1AE7400D788BFB
Validity
Not Before: Apr 18 05:20:12 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=6620ad8c-e0bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f5:63:e4:17:d0:ef:76:55:43:45:be:cd:5b:
2b:22:fc:8d:5a:30:25:46:72:45:33:19:ce:59:3d:
f9:ac:a1:46:46:2d:81:5c:34:16:71:fe:0d:09:32:
96:9f:82:df:86:d4:ef:e8:29:28:c7:b2:ce:da:fc:
28:0b:47:45:1d:b5:2c:0c:1a:ba:ab:51:0d:92:2c:
38:43:c6:c0:c0:35:28:df:a0:a2:83:cb:1d:5c:df:
bd:69:3b:71:8f:07:26:9a:f4:bb:01:ca:e7:9c:32:
f4:bb:54:d0:5d:f8:7f:67:89:0a:a7:06:c3:c5:bb:
f5:da:c8:ff:d1:3d:1f:4f:84:4f:32:4b:7d:c7:1f:
3b:8f:48:e2:5c:c7:d8:33:12:b8:d5:23:c7:7b:41:
67:3f:eb:ee:43:92:cc:32:dd:72:ab:21:a1:f3:6e:
09:16:19:8b:18:aa:48:70:d9:06:69:ed:73:b6:76:
98:62:fb:c6:59:3b:65:a4:64:43:6b:cf:ac:3a:23:
4e:54:7d:8e:dc:d9:29:46:22:38:d4:0a:7b:d1:c5:
e6:3c:49:57:2e:82:12:5b:bf:35:c3:5d:1c:a6:e9:
a5:b0:c5:9f:b7:32:7b:8f:7c:e0:4b:35:36:69:19:
e6:6b:9d:7c:4a:a7:5f:d1:55:ae:a1:97:6e:a1:cc:
ec:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:5E:1A:7D:CD:E4:68:68:2C:F9:73:11:58:95:FF:FA:4F:4F:E0:FC
X509v3 Authority Key Identifier:
keyid:AD:34:45:DB:42:01:0B:12:15:A4:9E:42:7F:1A:E7:40:0D:78:8B:FB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/rTRF20IBCxIVpJ5CfxrnQA14i_s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rTRF20IBCxIVpJ5CfxrnQA14i_s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/548E092EFD4311EE91EAC679C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.231.204.0/24
Signature Algorithm: sha256WithRSAEncryption
04:d1:e5:b9:50:f0:b8:db:22:10:c7:cf:b0:b0:5f:4b:ca:5a:
3d:fb:71:6c:97:2c:a6:e5:d8:d5:f0:5a:73:30:a0:0b:a6:f2:
ef:15:19:65:15:00:75:6f:a7:f4:41:b6:0a:b7:65:7c:87:29:
b8:a8:4a:9a:bb:ce:2e:7e:36:30:1f:a1:98:5d:33:fa:6e:40:
a0:2d:f5:74:34:92:28:f7:1d:96:3f:97:dc:66:b8:5e:23:88:
6a:f4:a4:db:4a:5f:bc:d5:5d:60:af:5e:c1:2e:01:d4:4a:cd:
78:e6:be:ac:70:a0:b7:2e:0a:ce:f4:b6:2b:93:74:cd:9e:e7:
b5:6f:51:0e:18:fc:25:8a:5e:e2:53:99:24:32:47:e7:de:6f:
ca:b6:e5:85:c4:f2:d0:f4:c6:9d:44:64:91:eb:d3:ee:b3:03:
76:56:1e:2a:be:93:ea:14:fa:7f:2d:5f:e8:57:b7:ee:35:c5:
f3:3a:cc:50:9c:92:35:07:78:eb:72:5e:39:93:dd:de:72:55:
02:bd:c5:6f:64:5e:05:45:81:bd:eb:0e:24:10:e1:9b:3e:53:
3b:3e:3b:5c:94:a6:cb:bd:26:f9:7c:df:56:f6:89:05:6e:d8:
fd:eb:b8:12:35:3a:4a:cb:fa:a6:a2:7a:64:7f:a2:33:12:a3:
7b:82:35:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 09:42:50 2024 by rpki-client on console-ams.rpki-client.org