Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/95894E4E881D11ED8D8C9A65C4F9AE02.roa
File: 95894E4E881D11ED8D8C9A65C4F9AE02.roa (raw, json)
Hash identifier: hNjFg1/KZDzPXLVDxZUBGGO0SmiVHocvHKfcAU9HDy4=
Subject key identifier: CF:F1:BD:EF:9D:95:75:BB:05:BE:88:65:75:8D:94:55:7A:A8:28:A3
Certificate issuer: /CN=A916D0D2/serialNumber=D5E53AF115997C7FA3B86552F95F5114AF3405E9
Certificate serial: 05FC
Authority key identifier: D5:E5:3A:F1:15:99:7C:7F:A3:B8:65:52:F9:5F:51:14:AF:34:05:E9
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1eU68RWZfH-juGVS-V9RFK80Bek.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/95894E4E881D11ED8D8C9A65C4F9AE02.roa
Signing time: Wed 31 May 2023 00:57:13 +0000
ROA not before: Wed 31 May 2023 00:57:13 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 136557
IP address blocks: 45.114.189.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1532 (0x5fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916D0D2/serialNumber=D5E53AF115997C7FA3B86552F95F5114AF3405E9
Validity
Not Before: May 31 00:57:13 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=64769b69-5d39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:32:95:31:c1:fd:29:87:82:95:6e:42:ba:93:
cd:01:68:f7:35:4e:43:e2:60:b8:9e:94:88:07:f2:
98:2a:79:39:b8:d8:a8:78:db:9b:dc:ea:d7:54:1d:
1b:16:45:15:23:8a:00:98:61:9c:b7:56:04:7e:68:
bc:7a:52:36:07:35:cc:bf:bb:ee:bc:73:36:2e:b2:
51:a6:d6:a1:f1:41:a7:2b:30:2c:17:f0:41:4a:23:
a2:41:35:07:e1:b4:57:13:4f:f8:a8:88:45:8b:52:
93:4c:d9:89:75:09:1d:0c:77:7d:7b:45:bb:57:ec:
82:10:fd:60:49:7a:bf:c3:7f:fd:98:38:ed:77:ef:
96:8f:7a:fd:62:ef:f8:86:f4:9e:93:09:ba:50:d2:
13:d3:7a:ee:6c:c9:6a:a0:f8:cd:ae:28:85:d2:bc:
d4:14:a9:14:3c:59:65:b6:14:33:4a:21:24:e4:62:
fc:25:7f:b6:fe:43:d7:7e:60:78:b3:8a:d8:fb:ae:
1d:e4:61:e8:7d:84:0e:b4:dc:e9:8b:1e:d2:5d:94:
b1:4c:05:c4:04:72:10:c7:fa:f8:60:76:85:46:77:
cf:b1:fe:69:c4:fd:99:74:97:78:c0:c7:d4:ec:8f:
69:c6:c2:f4:68:da:46:30:39:41:82:0c:07:bb:50:
4b:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:F1:BD:EF:9D:95:75:BB:05:BE:88:65:75:8D:94:55:7A:A8:28:A3
X509v3 Authority Key Identifier:
keyid:D5:E5:3A:F1:15:99:7C:7F:A3:B8:65:52:F9:5F:51:14:AF:34:05:E9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1eU68RWZfH-juGVS-V9RFK80Bek.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1eU68RWZfH-juGVS-V9RFK80Bek.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/95894E4E881D11ED8D8C9A65C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.114.189.0/24
Signature Algorithm: sha256WithRSAEncryption
71:cb:3b:7a:f8:11:a1:ca:1f:d6:c1:0e:b5:fa:14:1e:14:23:
24:d2:f7:7e:7c:3c:e3:76:b5:f4:b5:bf:4b:cc:34:60:01:b7:
7d:2a:bb:89:f3:47:78:dc:1c:2c:aa:83:39:eb:17:5e:55:fd:
ef:97:7d:fb:01:9d:6d:d9:7d:71:30:b5:ef:69:7e:93:ac:79:
d4:17:10:fc:75:e4:d4:84:6d:5c:a9:58:6f:20:f2:b8:51:47:
88:8f:8a:20:3b:66:9b:43:be:1a:96:bf:21:62:65:19:45:1e:
ac:1a:e4:1e:f1:41:87:13:f8:67:6e:4c:a6:a4:5f:bc:9b:10:
30:e5:34:75:cd:9c:5d:9e:cb:86:ac:6e:47:e7:78:4f:0f:11:
38:58:f4:3f:48:f8:bf:01:18:d0:b9:a6:39:d7:59:c3:0a:2e:
d9:36:ea:b5:48:98:eb:7e:c4:b1:64:1b:df:af:40:97:2f:70:
2c:a7:7b:e4:0b:8f:d4:23:2c:73:3d:45:25:43:6a:df:ec:7d:
5d:5a:0c:57:78:bf:35:f8:f9:4e:ce:04:af:7c:5e:87:eb:e3:
5d:e8:fe:0c:90:f4:78:73:fb:66:c7:af:35:53:80:b7:e2:68:
74:dd:ae:01:0a:54:ff:4f:18:f6:44:fc:04:19:83:64:40:ec:
2d:52:1c:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 13 00:51:44 2023 by rpki-client on console-ams.rpki-client.org