Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/0E00E262D3BB11EE919DC63EC4F9AE02.roa
File: 0E00E262D3BB11EE919DC63EC4F9AE02.roa (raw, json)
Hash identifier: +eNtPYgKSPSxU/6p4SyEmqz3BGCcFi8dT0uJDZSORGY=
Subject key identifier: 1C:AD:26:86:79:FB:27:74:1D:AD:6F:37:E7:00:34:9D:23:BE:BC:80
Certificate issuer: /CN=A9178AF2/serialNumber=1005CCD5E18230FBA9ADD3D27F85DA38F13E4172
Certificate serial: 027C
Authority key identifier: 10:05:CC:D5:E1:82:30:FB:A9:AD:D3:D2:7F:85:DA:38:F1:3E:41:72
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EAXM1eGCMPuprdPSf4XaOPE-QXI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/0E00E262D3BB11EE919DC63EC4F9AE02.roa
Signing time: Sun 25 Feb 2024 08:52:29 +0000
ROA not before: Sun 25 Feb 2024 08:52:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5065
IP address blocks: 43.243.193.0/24 maxlen: 24
45.113.82.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 25 Mar 2024 04:59:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 636 (0x27c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9178AF2/serialNumber=1005CCD5E18230FBA9ADD3D27F85DA38F13E4172
Validity
Not Before: Feb 25 08:52:29 2024 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=65daffcc-5ddc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:82:62:69:ff:4f:9b:05:4b:f9:fa:be:73:f6:
9f:85:fe:12:63:50:d3:25:f0:14:24:6e:5e:12:b8:
03:16:8d:80:cb:a1:e8:43:bf:32:e0:be:50:02:a5:
33:e3:ca:69:75:b7:fd:4d:c5:ac:2f:c3:b9:aa:aa:
b1:1e:7e:c8:64:5b:53:a4:38:61:a4:66:a7:16:f4:
20:18:11:dd:5f:de:e4:c0:74:01:af:2c:b8:1e:f0:
90:69:0c:5b:a8:8d:ce:0f:d1:60:0f:26:ef:71:35:
18:d1:25:4e:0f:50:7f:1f:21:d9:af:ee:24:ef:c9:
98:e2:48:7e:a4:c8:02:80:44:23:0d:e5:6c:b8:90:
c2:8a:d8:77:74:59:58:3c:7f:ee:2b:f1:f6:ef:79:
2d:a5:37:e5:1b:57:ef:5d:f8:28:9b:a8:5b:4c:69:
5c:98:30:4e:46:40:e8:86:f5:da:dd:73:47:6c:95:
16:89:cb:f0:78:d6:56:06:b2:f2:4c:53:38:76:c8:
92:32:6a:26:00:6f:b3:25:96:04:49:e7:3c:a0:e1:
f4:6b:cd:84:c3:98:4b:7b:a2:aa:f3:31:55:5f:4a:
27:33:f0:c3:df:2a:99:c5:08:86:6b:19:0d:74:fc:
3a:e7:6b:ff:80:0c:ce:04:24:6e:74:c9:43:87:b3:
9c:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:AD:26:86:79:FB:27:74:1D:AD:6F:37:E7:00:34:9D:23:BE:BC:80
X509v3 Authority Key Identifier:
keyid:10:05:CC:D5:E1:82:30:FB:A9:AD:D3:D2:7F:85:DA:38:F1:3E:41:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/EAXM1eGCMPuprdPSf4XaOPE-QXI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EAXM1eGCMPuprdPSf4XaOPE-QXI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/0E00E262D3BB11EE919DC63EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.243.193.0/24
45.113.82.0/24
Signature Algorithm: sha256WithRSAEncryption
58:2a:8a:65:a5:84:1c:9c:5f:e6:02:8f:8e:01:bc:4c:a5:9c:
ff:ab:b6:bd:f3:f3:ba:61:97:8e:84:84:43:ab:d7:95:91:6d:
95:46:e5:51:ba:5a:61:6f:f7:1b:b0:2b:03:a7:79:39:af:68:
ca:32:1a:60:33:a8:86:90:35:62:80:9c:5a:04:71:c8:62:c5:
aa:f9:6d:8e:ba:c7:41:14:45:12:c2:eb:97:81:69:90:62:35:
64:bd:4b:91:84:b0:ca:ac:3b:07:28:ea:e2:01:f4:82:8d:9c:
b1:b3:de:63:58:7d:8a:ab:a0:e9:63:8f:72:4e:aa:49:86:bd:
5a:ff:a1:47:a1:ea:93:b0:b8:f9:a9:63:46:7e:fa:69:98:6f:
17:d7:f2:ab:12:09:d2:c3:1b:3a:7c:d5:9d:5e:d4:38:13:2c:
f1:b1:f9:86:15:3a:dd:41:e4:98:3d:98:aa:e0:c4:27:a8:74:
e7:ac:11:5d:08:cb:49:e1:4d:08:a9:6d:fe:73:00:4e:eb:33:
e0:9a:0b:d7:22:99:0e:5c:3a:4d:32:08:79:b3:ba:e4:09:8a:
ba:a2:b1:78:f9:b0:4c:ae:cc:d4:3d:6c:9b:63:c6:c9:0f:5d:
23:e0:85:08:61:4c:77:4f:34:cf:e6:df:c7:ec:27:c9:ab:c3:
9b:6b:2f:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 25 05:26:44 2024 by rpki-client on console-ams.rpki-client.org