Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/869AD544331411EFBF45260AC4F9AE02.roa
File: 869AD544331411EFBF45260AC4F9AE02.roa (raw, json)
Hash identifier: x8Pc0ttepVI13zOqnSBWN/2FSWc/c3OMyBaR8VUvuco=
Subject key identifier: F6:F7:36:48:78:68:0C:91:E6:B9:1B:C5:BA:67:80:50:16:CA:32:A2
Certificate issuer: /CN=A915A0CD/serialNumber=38193720821E07D6918E3A79FBE0823C6732E264
Certificate serial: 09D1
Authority key identifier: 38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/869AD544331411EFBF45260AC4F9AE02.roa
Signing time: Wed 26 Jun 2024 21:14:06 +0000
ROA not before: Wed 26 Jun 2024 21:14:06 +0000
ROA not after: Tue 30 Sep 2025 00:00:00 +0000
asID: 6762
IP address blocks: 14.192.140.0/22 maxlen: 22
14.192.154.0/23 maxlen: 23
Validation: Failed, certificate revoked on Sat 24 Aug 2024 11:11:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2513 (0x9d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915A0CD
Validity
Not Before: Jun 26 21:14:06 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=667c849d-4509
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:72:92:00:4d:27:53:32:10:d8:b1:7c:76:2b:
ab:69:16:ba:0e:5a:0d:cf:79:a1:20:87:f8:70:a4:
c0:cb:8a:d9:2c:e2:8d:e5:1b:79:9c:cf:72:de:ed:
29:ec:81:a9:3f:70:86:7d:6b:6c:49:4f:58:72:fd:
15:ef:5c:ed:b2:d3:9f:12:94:33:fa:0d:1c:76:0c:
3c:0d:95:35:ad:bd:b4:f8:d5:9f:14:64:5a:6a:8c:
09:3a:7a:af:f7:6f:65:fe:4d:ad:71:e9:70:54:90:
50:db:8e:c7:2e:da:46:f2:15:18:cb:48:15:5f:a4:
4d:8a:77:70:d0:8f:b3:62:38:10:35:23:09:2c:7a:
17:95:00:2e:b8:64:74:24:a8:73:fd:f1:38:21:69:
8d:2e:2a:21:2f:e7:76:99:4a:42:fe:be:8c:2c:fb:
7e:9e:94:90:79:8b:63:de:87:d7:ad:2b:3d:b8:07:
35:36:9a:0b:cc:1d:e9:ce:cd:53:07:11:07:af:b6:
9c:d1:4f:2c:e9:54:35:4b:64:d0:66:ba:3f:1a:79:
cc:87:2f:cf:7c:01:f4:5e:37:47:cc:41:33:a3:10:
83:97:a7:02:30:36:aa:e0:a2:dc:6a:53:fd:83:c9:
e5:9e:67:90:49:69:4c:cd:20:bc:67:93:39:e9:ad:
ad:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:F7:36:48:78:68:0C:91:E6:B9:1B:C5:BA:67:80:50:16:CA:32:A2
X509v3 Authority Key Identifier:
keyid:38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/869AD544331411EFBF45260AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
14.192.140.0/22
14.192.154.0/23
Signature Algorithm: sha256WithRSAEncryption
24:16:dd:b4:48:fb:56:7d:0e:cc:1c:ef:f1:75:a6:93:c8:e5:
06:97:23:0f:c3:2a:53:87:73:5e:84:78:ee:86:c4:d2:f1:06:
92:b0:ca:e2:9b:8e:ba:af:be:83:26:eb:3b:7f:8d:0e:16:0e:
41:48:e3:99:c4:c3:b4:7e:8b:3c:92:a6:59:2c:e1:49:30:76:
5e:eb:10:7e:b0:92:5e:19:63:2a:14:d0:65:f8:10:0d:e2:22:
e9:3c:3f:33:a5:38:6d:a7:db:7c:2d:ac:e0:de:51:70:80:cc:
44:a7:3d:38:3c:26:d2:f8:2b:d6:01:f5:f6:9a:2d:d6:77:0f:
1b:2b:bd:0b:89:4d:3e:0f:5b:28:b8:f7:eb:8e:c4:a3:fc:f3:
70:57:f6:5d:6f:da:91:bc:78:e8:5c:69:39:1f:68:13:07:c0:
f4:4c:e2:4c:28:78:c0:e5:c1:6a:1a:11:6a:21:e3:b6:b9:c9:
66:81:0f:fb:04:9d:96:23:b3:67:e5:ac:a7:d6:ad:c1:74:89:
e5:0e:c4:be:ef:c8:12:29:f8:c4:28:c8:48:c5:28:99:1d:5d:
bb:f7:71:00:b1:13:d5:66:8a:1d:21:58:d9:18:eb:19:41:2f:
96:46:87:4f:40:57:55:09:0e:d4:62:94:e2:5c:db:b6:0c:10:
dc:80:1f:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:31:18 2025 by rpki-client